Back to careers

Junior Penetration Test Consultant

An opportunity for a (full time, permanent) Junior Penetration Test Consultant to join Commissum’s UK offices.

Think you can hack anything? Infrastructure? IoT stuff? People? Well, we want you to prove it!

The Commissum test team are passionate about what we do and we aim to deliver outstanding services to clients by thinking the same way as an attacker would, treating testing engagements as a challenge to our own skills and knowledge as well as to their defences.

The person:

You will be an enthusiastic graduate looking to take your first steps into the world of penetration testing. You’ll be passionate about information security, and be constantly researching the latest vulnerabilities, aiming at all times to be at the leading edge of industry knowledge.

You have either completed your university degree with excellent marks and/or published a tool/script or blogged about a weakness or vulnerability outside of your curriculum.

You will have participated at CTF events and are an active member of the cyber community.

You must be a UK citizen or eligible for a visa to work in the UK.

Key responsibilities

  • Deliver a variety of engagements for clients across the UK and overseas
  • Write narrative reports in Business English including management summaries
  • Carry out Quality Assurance and Peer Review of other consultants’ output
  • Maintain an internal database of findings and tooling
  • Write whitepapers and technical articles for industry press
  • Identify opportunities for automation of delivery process

Required skills and qualifications

  • Attention to detail and quality
  • Strong and holistic technical diagnostic skills
  • Excellent communication, both written and verbal
  • A passion for cyber security

Preferred skills and qualifications

  • Publication of blog/research material or tooling/script
  • CRT/OSCP would be advantageous

The role will provide an attractive package including excellent salary and opportunity to join the company pension and healthcare schemes.

UK applicants will be based out of either the Edinburgh or Birmingham office. The role will require extensive travel to client sites as well as regular visits to the Edinburgh HQ. You must be a UK citizen or a citizen of a full member EU state that has been a resident in the UK for a minimum of two years.

The role:

As a Junior Cyber Security Consultant, you will be part of a talented and collaborative international team who are positioning Commissum as an industry leader in the delivery of penetration testing services.

You will be expected to follow the highest standards of quality during the testing and reporting process.

You will receive full, extensive training that will include development of a comprehensive skillset for either infrastructure or web application testing within your first year of employment. Example skill paths include:

  • Internal and external infrastructure testing
  •  Firewall review
  • WiFi and VoIP testing
  • Web and mobile application testing (iOS and Android)
  • Red teaming
  • Source code reviews

Additionally, full training will be given on any internal software programs and through a full induction program. The successful candidate will also have a driving license and car. Due to the nature of some of our work and exposure to sensitive information, the candidate will be required to complete Government SC vetting. You can find out more about vetting and the process here.


  • Competitive salary
  • Option to participate in company private healthcare scheme
  • Opportunities to gain further qualifications in the future

You will also have the opportunity to join a number of schemes operated by the company.

Want to be part of the team?

Apply by sending your CV and cover letter to