← Back to jobs
What You’ll Be Doing
As a Pentester at Cyber Defence, you'll play a key role in simulating attacks to identify system vulnerabilities across networks, applications, and cloud infrastructure. This is a hands-on technical role with a strategic impact on our clients' resilience and regulatory compliance.
Pentester
Cyber Defence›
📍GB
remoteCyber Defence Open Roles
Posted 10mo ago · via personio
Apply on personio→Job Description
Role Overview
Cyber Defence is a fast-growing cybersecurity company on a mission to protect digital assets and build client trust through robust, ethical, and forward-thinking cyber practices. From our office in Pueblo Nuevo, we serve clients across the UK, Spain, and beyond, working with CREST-certified practices and delivering government-grade security services. https://cyber-defence.io/What You’ll Be Doing
As a Pentester at Cyber Defence, you'll play a key role in simulating attacks to identify system vulnerabilities across networks, applications, and cloud infrastructure. This is a hands-on technical role with a strategic impact on our clients' resilience and regulatory compliance.
Key Responsibilities
- Plan and execute manual and automated penetration tests across web apps, networks, and APIs.
- Perform internal and external vulnerability assessments.
- Create comprehensive reports on findings with clear mitigation guidance.
- Collaborate with SOC Analysts, DevSecOps, and IT teams to implement remediations.
- Stay updated on the latest attack vectors and security research.
- Support Red Team and Purple Team exercises.
- Assist with incident response investigations when needed.
Skills and Qualifications
Must-Haves- 3+ years of experience in penetration testing or offensive security.
- Strong understanding of common vulnerabilities (OWASP Top 10, MITRE ATT&CK).
- Proficiency in tools such as Burp Suite, Nmap, Metasploit, Nessus, and Wireshark.
- Experience with scripting languages (Python, Bash, PowerShell).
- Excellent written and verbal communication (English).
- Eligibility to work in Spain and occasional travel if required.
- CREST CRT or equivalent (OSCP, OSWE, CEH, etc.).
- Experience with cloud pentesting (AWS, Azure, GCP).
- Familiarity with compliance standards (ISO 27001, GDPR, NIST, PCI DSS).
- English & Spanish language skills.
OUR BENEFITS
- Be part of a mission-driven cybersecurity firm with global impact.
- Work alongside CREST-certified experts and forward-thinking leadership.
- Professional development budget & certification support.
- On-site work with flexibility (based out of Pueblo Nuevo office).
- Vibrant office culture near the coast – good vibes only!
Details
- Department
- Cyber Defence Open Roles
- Work Type
- remote
- Locations
- GB
- Posted
- June 3, 2025
- Source
- personio