Job Title: Penetration Tester
Location: Leeds (Hybrid; 4 days in office)
Job Type: Contract (Inside IR35)
Duration: 6 Months Job Summary: Join Tata Consultancy Services (TCS) as a Pen Tester and play a critical role in safeguarding some of the largest and most innovative clients in the UK and worldwide. You'll be part of a purpose-led transformation company, making a meaningful impact through challenging projects that demand ambitious innovation and thought leadership. Key Responsibilities: Lead client engagements from kickoff through to scoping, penetration testing, and reporting, ensuring delivery within agreed scope and deadlines.
Perform comprehensive penetration testing across networks, web applications, APIs, cloud security, thick client applications, wireless, social engineering, and physical environments.
Execute red team assessments to highlight gaps impacting organizational security postures.
Identify and exploit security vulnerabilities in a wide array of systems and scenarios.
Conduct in-depth analysis of penetration testing results and create detailed reports with findings, exploitation procedures, risks, and actionable recommendations.
Communicate complex technical security concepts to both technical and non-technical audiences, including executive stakeholders.
Perform technical quality reviews and engage in direct technical conversations with clients.
Utilize tools such as BurpSuite, Nessus, Nmap, Kali Linux for effective vulnerability assessment and penetration testing.
Apply knowledge of OWASP Top 10 and SANS Top 25 vulnerabilities and communicate methodologies with development teams.
Skills, Experience, and Abilities Required: Essential: Proficient with pen testing tools such as Cobalt Strike, Caldera, Atomic Red Team, Pentera, Nessus, Burp, OSINT .
Solid understanding of software testing methodologies and techniques .
Experience with both manual and automated testing tools .
Excellent problem-solving and debugging skills .
Ability to write clear and concise test plans and reports .
Strong communication and collaboration skills .
Familiarity with the software development life cycle .
Proven ability to deliver high-quality software solutions .
Desirable: Bachelor's degree in Computer Science, Cybersecurity, or a related field (Master's preferred).
8+ years of experience in information security, with a focus on technical cyber security.
Minimum of 5 years' experience in a network/cloud security environment.
Certifications such as CISSP, CCSP, OSCP, SANS or equivalent.
Certification in one or more cloud vendor offerings (AWS, GCP, Azure, OCI).
TPBN1_UKTJ