Internal Pentester
Start : ASAP | Duration : 6 months | Location : London (Hybrid, 23 days in office) | Rate : Market
About the Role
Our client, a leading global organization, is looking for a skilled Internal Pentester to join a leading security team in London. This contract role is perfect for someone experienced in penetration testing across networks, systems, web applications, APIs, and cloud environments, who can identify vulnerabilities, simulate attacks, and deliver actionable remediation advice. Youll work in a compliance-driven, high-security environment, collaborating with cross-functional teams to strengthen the organizations security posture.
What Youll Do
Conduct full-scope penetration tests on applications, APIs, internal infrastructure, networks, and cloud environments (AWS, Azure, GCP).
Identify and exploit security flaws: insecure authentication, authorization bypass, input validation issues, cloud misconfigurations, AD misuse, etc.
Perform internal/external network testing, AD enumeration, privilege escalation.
Automate security testing where possible, integrating IaC and ServiceNow workflows.
Simulate real-world attacks using the same techniques and tools as malicious actors.
Produce detailed, actionable reports with executive summaries and technical findings.
Collaborate with development, cloud, and infrastructure teams on remediation.
Keep up to date with latest vulnerabilities, exploit techniques, and pentesting tools.
Essential Skills & Experience
37+ years in penetration testing, red teaming, or offensive security.
Strong application security knowledge (OWASP Top 10, API security).
Proven end-to-end pentest experience: internal, external, cloud, AD, web apps, APIs.
Familiarity with pentest reporting formats (CVSS, MITRE ATT&CK mapping).
Comfortable in NDA-restricted, compliance-driven, sensitive environments.
Excellent reporting skills for both technical and executive audiences.
Scripting for automation/exploit development: Python, Shell, Bash.
Infrastructure: Windows, Linux, Active Directory, Entra ID / Azure AD, VPNs, VLANs.
Experience in both waterfall and agile delivery environments.
Security Tools:
Recon & Infra: Nmap, Nessus, Masscan, Amass, Recon-ng
Exploitation: Metasploit, ExploitDB, Cobalt Strike, Empire, Mimikatz
Web Apps: Burp Suite, ZAP, Nikto, SQLmap
Cloud: ScoutSuite, CloudSploit, Pacu
Nice to Have
OSCP, OSWA, OSEP, OSCE, CRTP, CRTE, GPEN, GXPN, eCPPT or equivalent certifications.
Cloud security certifications (AWS/Azure).
Advanced AD/cloud/red teaming trainings (SANS, HackTheBox Pro Labs).
Strong analytical, problem-solving, troubleshooting, and customer engagement skills.
Experience in agile, cross-functional teams, documenting findings, and supporting remediation cycles.
If youre ready to take on your next challenging role in offensive security, send through your CV and well be in touch.
TPBN1_UKTJ