We are seeking an experienced Penetration Tester to conduct security assessments for UK and EU-based clients remotely. The role involves performing web application and API penetration tests, infrastructure reviews, cloud security assessments, and producing professional reports. Candidates must have 2-3 years of commercial penetration testing experience and be comfortable working UK/EU-aligned hours.
Key Highlights
Key Responsibilities
Technical Skills Required
Benefits & Perks
Nice to Have
Job Description
Penetration Tester / Cyber Security Consultant
Location: Remote, India
Working hours: Aligned with UK/EU business hours
Employment type: Full-time, remote
Salary: ₹30k -₹44k based on experience + perfomance bonus
About the Role
We are working with a growing UK-based cyber security consultancy that supports clients across the UK and Europe. The company works with experienced overseas cyber security consultants to deliver high-quality penetration testing and security review services to SMEs.
We are looking for an experienced Penetration Tester / Cyber Security Consultant based in India to join the team remotely.
This role is best suited to someone who already has hands-on experience working for a cyber security consultancy and is comfortable managing penetration testing engagements, writing professional reports in English, and communicating findings clearly.
This is not a junior or entry-level role.
What You Will Do
You will carry out hands-on security assessments for UK and EU-based clients, including:
- Perform web application and API penetration tests.
- Perform external infrastructure and network security assessments where required.
- Carry out cloud security reviews across AWS, Microsoft Azure, and Microsoft 365 environments.
- Identify, validate, and document security vulnerabilities.
- Produce clear, concise penetration testing reports in English, including evidence and proof of concept where appropriate.
- Explain technical risks and remediation advice in a way that both technical and non-technical stakeholders can understand.
- Perform remediation validation and retesting to confirm whether identified vulnerabilities have been fixed correctly.
- Work independently while following defined testing methodologies, scope requirements, and client rules of engagement.
Working Arrangements
Interested in remote work opportunities in QA & Testing? Discover QA & Testing Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.
This is a fully remote position. No travel or office attendance is required.
You will be expected to work during UK/EU-aligned hours, approximately:
1:30 PM to 10:00 PM India Standard Time
You must have a reliable internet connection and your own laptop. All client testing work will be carried out through a company-provided remote working environment. Client data, assessment tooling, and testing activity must not be stored or performed on your personal device.
Mandatory Requirements
Please only apply if you meet all of the following requirements:
- At least 2–3 years of commercial penetration testing experience.
- Previous experience working as a Penetration Tester, Cyber Security Consultant, Offensive Security Consultant, or similar role within a cyber security consultancy or managed security services provider.
- Comfortable working daily during UK/EU-aligned hours, approximately 1:30 PM to 10:00 PM IST.
- Strong practical experience testing web applications and APIs.
- Experience writing client-facing penetration testing reports in professional English.
- Ability to work independently in a remote environment and manage assigned assessment tasks responsibly.
- A reliable home working environment, laptop, and internet connection.
- Commitment to ethical testing, confidentiality, and following agreed scopes and rules of engagement.
Technical Skills and Experience
The ideal candidate will have:
- Strong understanding of penetration testing methodology, vulnerability classes, threat modelling, and secure architecture principles.
- Hands-on web and API security testing experience, including familiarity with common vulnerabilities from the OWASP Top 10.
- Experience using common penetration testing tools such as Burp Suite, Nmap, Metasploit, Wireshark, Kali Linux, and similar tools.
- Familiarity with infrastructure and external network testing.
- Experience reviewing cloud environments, ideally including AWS, Azure, and Microsoft 365.
- Knowledge of common authentication, access control, session management, API, and input validation weaknesses.
- Practical scripting or programming skills in Python, PowerShell, Bash, or a similar language for task automation and custom tooling.
- Ability to provide clear proof of concept evidence while working safely and within scope.
- Strong written and verbal communication skills in English.
Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.
Preferred Qualifications
The following are beneficial but not essential:
- OSCP, OSCP+, OSCE, CREST, GPEN, PNPT, eWPT, or similar security certifications.
- A degree in Computer Science, Information Security, or a related field.
- Experience working with UK or European clients.
- Experience performing remediation reviews and retesting.
- Familiarity with reporting platforms, vulnerability management tools, or project tracking systems.\
Benefits
- 100% remote working.
- No travel or office attendance required.
- UK bank holiday entitlement.
- Performance-based bonus opportunities.
- Opportunity to work on a variety of client environments across the UK and Europe.
Please Do Not Apply If
This role is unlikely to be suitable if:
- You are looking for an entry-level, internship, or junior penetration testing position.
- You do not have at least 2–3 years of commercial penetration testing experience.
- Your experience is mainly academic, lab-based, CTF-based, or limited to personal projects.
- You have not previously written professional penetration testing reports for clients.
- You are unable to work the required UK/EU-aligned hours.
- You are unable to work from a secure and reliable remote home-working environment.
Similar Jobs
Explore other opportunities that match your interests
aisquared
QA Engineer
kestra