Role: Penetration Tester (Infrastructure Focus) ️ Work Type & Location: Hybrid – London preferred (other UK cities possible) ️ Role Type: Permanent Salary: £70,000–£105,000 (London) depending on experience Other regional packages available for Cambridge, Manchester, Bristol, or Edinburgh Our client – a global innovation consultancy – is expanding its Digital & Data capability and is on the lookout for an experienced Penetration Tester (Infrastructure Focus) to join a high-trust, hands-on team. This role is all about deep technical work inside live infrastructure environments – think Active Directory, internal networks, and sensitive systems where precision matters. If you’re the kind of tester who thrives in complex, undocumented environments and enjoys real-world impact over checkbox testing, this is the challenge for you. As a Penetration Tester (Infrastructure Focus), you will: Deliver internal infrastructure tests in high-risk, high-impact environments Focus on Active Directory, lateral movement, and privilege escalation techniques Communicate directly with clients to present findings and advise on remediation Produce clear, actionable reports for both technical and non-technical stakeholders Contribute to improving internal tooling and methodologies Work with autonomy and initiative – this is a consulting-facing role requiring independence What you bring: 4 years of hands-on experience in infrastructure penetration testing Strong expertise in AD exploitation, lateral movement, and privilege escalation Confident working in live production and legacy environments High command-line fluency (Windows & Linux) Strong client communication and reporting skills It’d be great if you also have: Python scripting skills for tooling or automation Experience or awareness of Operational Technology (OT) environments Familiarity with internal exploitation tools and techniques Certifications like CREST CTM/CTL/CSTM, Cyber Scheme Practitioner, or OSCP (lapsed certs accepted if skills are current) What to expect: A small, high-trust team (2–3 testers) operating with autonomy and technical depth Hybrid work model (typically remote 80% of the time), with 2 days/week on-site or at client locations Meaningful projects in defence, critical infrastructure, and high-security sectors Real responsibility and room to influence tooling, process, and delivery A hands-on technical interview including an AD lab simulation and live debrief Location & Clearance: London preferred, but open to candidates UK-wide based on flexibility Must be SC clearable (current SC clearance is a strong advantage) Other regional packages available for Cambridge, Manchester, Bristol, or Edinburgh Apply now to become a Penetration Tester (Infrastructure Focus) and help secure the systems that matter most.