For the best user experience please upgrade your browser

Careers at Pen Test Partners

We’re only as good as the people in our team, so we’re always looking for great people. Maybe that’s you?

PTP is acutely aware of the lack of diversity in our industry, and are keen to address that.

We are an equal opportunities employer, welcoming applications from people from all walks of life.

It’s very simple, if you have the skills and experience we’d love to talk with you.

Our vision and values

We have a vision statement and values which we strive to live by. Please take the time to read and absorb them. They’re important to us.

What you can expect from us

  • Competitive salary based on experience
  • 25 days holiday + 8 bank holidays
  • Private Medical Insurance and Healthcare Benefit on completion of probation
  • Group personal pension
  • Time and resource for research / pet projects / blogging
  • Financing available for training and conference attendance
  • EV lease salary sacrifice scheme on completion of probation
  • An environment where you can flourish, learn, and grow, as a person not just as an employee

PTP works with clients globally providing cyber security consultancy and testing services. We work in the most cutting-edge industries, including automotive, aviation, and maritime.

Roles:

All roles are UK based.

How to apply

Send your CV with a covering email to:

By submitting your CV you are confirming you have read and understood our privacy policy and authorise us to keep your CV on file for 6 months in case future job opportunities arise.

Back To Roles▲

Security Consultant

We are seeking an enthusiastic security consultant, who is eager to learn to join our team.  Working alongside some of the best hacking minds in the country, you’ll be delivering pen testing services to clients across all sectors.

You will need:

  • A minimum of 2 years experience delivering pen test services
  • To be proficient in infrastructure and web application testing, experience in API testing is desirable
  • Hold or previously held an industry recognised certification (this can be at any level from OSCP to CTL equivalent)

You will be:

  • Reporting into a managing security consultant where you will be delivering pen testing services, from presales through to delivery and debriefs
  • Assisting on scoping and QA
  • Contributing towards research projects and our internal knowledge sharing hubs

Our consultants aren’t just limited to working on web and infrastructure engagements. You’ll have the opportunity to get involved in some more of our niche areas and who knows, you might even find yourself hacking a ship one day.

Knowledge development is part of our culture. We take professional development seriously and as member of the team you will receive:

  • 24 development days per year
  • Time to go to conferences
  • Access to Internal workshops, training platforms including A cloud Guru, HTB, TryHackMe, and many more resources
  • Paid training & exams
  • Access to our blog bounty programme

You’ll be working from home, though some onsite travel to client sites (including international) may be required. Although we are a remote working company, we pay for our teams to meet regularly throughout the year holding local and company meet ups.

Back To Roles▲

Hardware Security Consultant

We are seeking a hardware security consultant, who is eager to learn, to join our team.  Working alongside some of the best hacking minds in the country you’ll be delivering a mixture of hardware and pen testing services to clients across all sectors.

You will need:

  • Strong skills in web application, API and mobile testing
  • Excellent ability to learn new technologies, systems, and languages
  • A keen interest in embedded systems and hardware
  • Demonstrated hardware security skills either in professional or hobbyist sphere
  • Strong network protocol analysis using tools such as Wireshark
  • An understanding of reverse engineering, experience using tools such as IDA and Ghidra, with particular focus on ARM architecture

Desirable:

  • Ability to code in various languages, particularly C and Python
  • An understanding of cryptography and common mistakes made
  • Experience of working with a variety of SoC and microprocessors

You will be:

  • Reporting into the head of hardware delivering hardware and pen testing services, from presales through to delivery and debrief
  • Assisting on scoping and QA
  • Contributing towards research and our internal knowledge sharing hubs
  • Helping to upskill others into the hardware team

Here are some examples of the services you may provide to clients:

  • Penetration testing of a cloud-connected consumer IoT system including the device, messaging platforms, infrastructure, and mobile application
  • Producing a threat model for a complex system such as a crypto wallet, aiming to uncover inherent outstanding risks in the design and implementation
  • Reviewing custom cryptographic systems to identify common issues such as hardcoded keys, use of insecure block modes, unauthenticated encryption, and use of deprecated algorithms
  • Testing routers and other networking equipment before they are deployed across Critical National Infrastructure, to ensure that they are suitably protected from physical attack and contain no secrets that can impact the wider system
  • Working with the ICS team to perform lab-based testing of complex control systems used in Critical National Infrastructure, allowing more aggressive and invasive techniques to be used than in traditional ICS environments
  • Reverse engineering the protocol used in a legacy specialised machine tool to allow it to be serviceable long into the future
  • Attempting to bypass a custom digital rights management system to provide assurance that their product is adequately secure
  • Testing network segmentation and infrastructure on a variety of ships, including cruise ships and oil rigs

We recognise that the tasks carried out by members of the hardware team are varied and challenging and we do not expect any member of the team to know everything. We operate as a team, providing advice, guidance and mentoring to each other.

Knowledge development is part of our culture. We take professional development seriously and as member of the team you will receive:

    • 24 development days per year
    • Time to go to conferences
    • Access to Internal workshops, A cloud Guru, HTB, TryHackMe and many more resources
    • Paid training & exams
    • Access to our blog bounty programme

    You’ll be working from home, though we may ask you into the lab to work on pieces of hardware. Some onsite travel to client sites (including international) may also be required. Although we are a remote working company, we pay for our teams to meet regularly throughout the year holding local and company meet ups.

    Back To Roles▲

    Information Security Officer

    Location: Hybrid (Home & Office)

    Pen Test Partners works with clients globally providing cyber security consultancy and testing services. We work with the most cutting-edge industries, including Automotive, Aerospace, and Maritime.

    With over 120 employees across pen testing, consultancy, digital forensics, sales and support functions, we pride ourselves in working on cool research, delivering exceptional work for our customers, helping the greater good of cyber security, enabling people to sleep better at night.

    The IT team at PTP are expanding and have created a new role to complement the current team. The role of Information Security Officer will be working in close collaboration with the IT team and numerous internal and external stakeholders. This role will contribute to all aspects of information security at PTP including the development, maintenance, and monitoring of our Information Security Management System (ISMS), provide continuous improvement in existing business processes and activities through provision of advice and guidance to business functions.

    Role Requirements:

    • Define and ensure security best practices and standards are embedded and followed and support the business in identifying new and emerging compliance, and regulatory requirements
    • Plan, develop and maintain the current Information Security Management System (ISMS)
    • Support the continuing development and improvement of the businesses Policies and standards
    • Work with external auditors and internal teams during assessments to maintain accreditations such as ISO27001 and Cyber Essentials.
    • Contribute to the dissemination of security documentation and practices
    • Support the sales teams in responding to security assurance requests, and security related aspects of RFPs and other formal tender responses.
    • Working with the IT team, maintain and improve incident response and disaster recovery plans
    • Support in the management of risk assessments and threat/vulnerability mitigations
    • Collaborate with IT and others to collect, analyse and report metrics and analysis to monitor security controls’ efficiency and effectiveness
    • Take part in discussions with stakeholders and managers about cybersecurity issues, recommendations, and plans, as well as any audit support
    • Work alongside the IT team to provide operational security control support and monitoring.
    • Provide reports about security controls, compliance and incidents
    • Ensure consistent compliance through an ongoing internal audit program
    • Monitor ongoing security awareness and training activity

    Skills and Experience:

    • Minimum 3 years of security-related work experience
    • Demonstrable experience and knowledge of cybersecurity, risk management and security controls
    • Experience in developing and / or maintaining an information security management system (ISMS)
    • Suitable SecOps experience operating point security solutions, patch management, anti-malware etc.
    • Experience of security relating to cloud and SaaS environments, and familiarity with Azure and AWS environments.
    • ISO27001 Lead Implementer

    Desirable:

    • Formal information security certifications or qualifications (e.g. BSc or MSc in Information Security, CISSP, CISM, CRISC)
    • Knowledge of the following frameworks, accreditations and regulations – TISAX, HIPAA, SOX, UNECE R155, NIST CSF, CSA CCM, ISO 17025, GDPR

    Back To Roles▲

    Chief Financial Officer

    Location: Hybrid (Home & Office)

    Pen Test Partners (PTP) works with clients globally providing cyber security consultancy and testing services. We work with the most cutting-edge industries, including Automotive, Aerospace, and Maritime.

    With over 120 people across pen testing, consultancy, digital forensics, sales and support functions, we pride ourselves in working on cool research, delivering exceptional work for our customers, helping the greater good of cyber security, enabling people to sleep better at night.

    PTP has never needed to raise funds having always been self-funded since it was founded in 2011. The company now intends to raise additional funds for growth in the near future, with an IPO on AIM in the next 12-24 months.

    As a member of the Executive Leadership Team, the Chief Financial Officer will provide strategic financial leadership to the company, continuing the growth profile while also being an instrumental part of the IPO, including helping to deliver successful roadshows with institutional investors. The ideal candidate will have previous experience at board level in a public company environment and will have been involved in an IPO and/or subsequent capital raises.

    The CFO will take responsibility for all areas of investor relations, external stakeholder financial reporting and strategic plans. The CFO will also work closely with the Finance Director to deliver internal management reporting including forecasting and actual results. They will actively assist the CEO in managing the business and advise on commercial and strategic decisions.

    The CFO will have a major impact on how successful the company becomes. This is also an opportunity to work in one of the most exciting and interesting industries in the IT sector with multiple growth opportunities constantly presenting themselves.

    PTP is growing quickly and holds high ambitions for the future.  The newly created role of CFO is expected to be a key sponsor, contributor, and enabler of the delivery of the vision. The successful candidate will likely see themselves as a commercial leader first and a financial leader second.

    PTP also has a unique culture, based upon teamwork, community and the desire to be a force for good in terms of ethical standards within the industry. This is derived from its historic development, and it is important that the new CFO understands and respects this, in a business that is highly dependent upon its people and creative specialists.

    As a CFO, you will play a critical role in shaping our financial strategy, working closely with the Finance Director in managing financial operations, and driving sustainable growth.

    This is a unique opportunity to lead the financial transformation of our company and contribute to its long-term success.

    Role Requirements:

    • Act as a strategic partner to the CEO and wider leadership team to help shape the overall direction of the business.
    • Management of financial strategy in conjunction with the CEO.
    • Ability to be strategic and focus on the detail at the same time.
    • Ability to be hands-on when necessary and work through the ‘nitty-gritty’ with the Finance Director and Finance team.
    • Partner with the CEO on investor relations, board presentations and allocation of resources.
    • Contribute to the development of short, medium, and long-term strategies.
    • Support the current work led by the Finance Director around enabling the finance function to be a strategic asset in analysing and supporting the expansion.
    • Regular liaison with investors, directors and managers throughout the business with a view to monitoring, understanding and enhancing the performance of the business.

    Financial and Commercial Strategy:

    • Collaborate with the executive team to develop and execute the company’s financial and commercial strategy.
    • Identify opportunities for revenue growth, cost optimization, and operational efficiency.
    • Provide strategic guidance and financial analysis for new business initiatives.

    Leadership:

    • Work closely and collaboratively with the Finance Director to support the high functioning output of the existing team.
    • Working with the Finance Director, provide financial leadership across PTP with openness, clarity, and in way that makes financial information appropriately accessible to all.

    Technology & Data:

    • With the Finance Director and Finance team, review the tools, system and relevant KPIs to future proof the finance function.
    • Champion the technology and data driven mindset in the finance function and beyond.
    • Continue to support existing work to design and implement internal controls to safeguard the business.

    Functional responsibility:

    • Oversee the planning, preparation and output of monthly accounts, forecasts, budgets and strategic planning financials.
    • Reporting and accounting in accordance with regulatory and legal requirements (including international jurisdictions).
    • Ensure compliance with financial standards.
    • Board reporting.
    • Support the Finance Director in the company audit process, building relationships with internal and external stakeholders.

    Skills and Experience:

    • Experience as a CFO/VP Finance or senior finance leader in a professional services environment.
    • ACA/ACCA/CIMA Qualified or equivalent – an MBA or similar is advantageous.
    • Demonstrable track record of leading and retaining high-performing and execution-oriented teams.
    • Experience of the US market would be a plus.
    • Strikes a fine balance between strategic and hands-on.
    • Lateral thinker with an ability to thrive in an agile environment.
    • Excellent investor relations presentation skills.
    • Strong leadership, communication and influencing skills.
    • Business savvy with strong commercial acumen.
    • Oversee the corporate governance environment and policies.
    • Passionate about technology and staying abreast with current trends across the industry and how it can deliver shareholder returns.
    • Creating opportunities and a culture that promotes new thinking and generating disruptive change as needed.
    • Analytical and strategic thinker with a solutions-oriented approach to solving problems.
    • Represents the essence of PTP and its values while simultaneously engaging and energising all aspects of the organisation.

    Back To Roles▲

    Agencies, please read…

    Any CVs received from agencies with whom we do not already have terms will be considered a gift.