Penetration Tester

About Scaled 🤝

We are Scaled. We specialize in connecting amazing South African talent with leading UK businesses. We handle the recruitment process to ensure you find a role that offers global exposure, competitive remuneration, and a great work-life balance, all while working remotely from home.

About Our Client 🛡️

We are recruiting on behalf of a fast-growing UK-based Cyber Security Scale-Up. They are currently revolutionizing the industry by combining AI-driven automation with expert human insight.

Their mission is to redefine cybersecurity through AI-augmented penetration testing. By blending AI efficiency with human ingenuity, they deliver comprehensive, CREST-approved testing that saves time without compromising quality. They are looking for talented individuals to help them streamline testing and provide actionable intelligence to keep businesses one step ahead of threats.

The Role 🎯

As a Penetration Tester, you will play a central role in delivering high-quality, manual security testing to the client’s customer base across a variety of sectors.

This role is perfect for someone who wants to move away from rigid scripts and bureaucracy. You will take ownership of full test cycles—scoping, delivery, reporting, and client communication—while helping to mentor junior testers and enhance the company's technical capabilities.

Key Responsibilities 🛠️

What you will be doing:

• Execution: Delivering web, API, mobile, and infrastructure penetration tests remotely.
• Analysis: Identifying, analyzing, and exploiting vulnerabilities that go beyond automated tools.
• Reporting: Producing detailed, high-quality reports for developers and security teams.
• Collaboration: Working with internal testers to refine methodologies and internal tooling.

Interested in remote work opportunities in QA & Testing? Discover QA & Testing Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

• Mentorship: guiding and mentoring junior testers to help them level up.

What you won’t be doing:

• ❌ Following rigid scripts—you are encouraged to think critically and creatively.
• ❌ Getting lost in bureaucracy—our client empowers testers to deliver results via an intuitive portal.
• ❌ Working in silos—collaboration is the driver of their quality.
  

Timeline & Expectations 📅

• Month 1: Become familiar with the testing platform and delivery process.
• Month 3: Lead your own engagements end-to-end and produce client-ready reports.
• Month 6: Contribute to internal tooling, mentor junior testers, and help shape new methodologies.
  

Working Hours & Setup 🌍

• Remote First: The client is UK-based, but their team is distributed. You will work remotely from South Africa.
• Core Hours: You must be available between 10:00 – 16:00 UK Time (roughly 11:00/12:00 – 17:00/18:00 SAST depending on daylight savings).
• Flexibility: Outside of core hours, it is up to you and your manager to find a schedule that works best for you.
  

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

About You 🧠

This role is a great fit if you have:

• ✅ Minimum 2 years of experience delivering penetration tests in one or more disciplines.
• ✅ Strong knowledge of OWASP Top 10 and common vulnerability classes.
• ✅ Excellent written and verbal communication skills.
• ✅ An enthusiastic attitude towards collaboration and quality delivery.
• Desirable: OSCP, CRT, or equivalent qualification.
  

The Offer 💎

Career Growth:

• A clear progression plan with opportunities to try new things, lead others, and challenge the status quo.
• Paid study leave to help you level up your skills.
• Mentorship, coaching, and annual performance reviews.

Benefits & Culture:

• Generous Leave: 30 days of paid annual leave plus bank holidays.
• Socials: Regular online and in-person activities to keep the distributed team connected.