Cyber Security Consultant

We are working with a growing cyber security consultancy looking to hire a technically strong Cyber Security Consultant / Infrastructure Pen Tester to join their offensive security team.

This role is best suited to someone who already has hands-on penetration testing experience combined with a strong infrastructure or networking background. The business places huge value on people who understand how environments actually work beneath the surface, rather than relying purely on automated tooling or checklist-driven testing.

The ideal candidate will likely have come from a background such as:

• Infrastructure Engineering

• Systems Administration

• Networking

• Security Engineering before moving into offensive security and penetration testing.

This is a consultancy environment where communication, technical quality, and customer interaction are just as important as technical capability. The team is looking for someone who can hit the ground running, contribute technically from day one, and continue developing alongside a highly passionate and security-focused group.

Key Responsibilities

• Deliver infrastructure and internal network penetration tests across a range of customer environments

• Conduct Active Directory and “lay of the land” assessments

• Produce high-quality technical reports with clear remediation guidance

• Support customer discussions and communicate technical findings clearly

• Work across Microsoft, Linux, networking, and cloud environments

• Contribute to improving testing methodologies, tooling, and technical capability within the team

• Attend occasional customer site visits, industry events, and team touchpoints where required

Technical Skills & Experience

Candidates should demonstrate strong hands-on technical knowledge across several of the following areas:

• Infrastructure penetration testing

• Active Directory security and internal network testing

• Networking fundamentals including subnetting, segmentation, routing, and switching

• Microsoft 365, Microsoft Entra, Defender, and CrowdStrike

• Linux administration and operating system fundamentals

• Windows infrastructure and identity management

• Vulnerability assessment and security testing methodologies

• Report writing and remediation planning

• Security tooling alongside genuine infrastructure understanding rather than reliance on automated scanning alone

The consultancy is particularly interested in technically curious individuals who genuinely enjoy security outside of work. Personal projects, home labs, certifications, research, HackTheBox, community involvement, or other demonstrable passion for cyber security are highly valued.

Desired Certifications

• OSCP

• CSTL

• CCNA

The ideal candidate will:

• Have around 18 months to 3 years of hands-on penetration testing experience

• Be technically strong with solid infrastructure knowledge

• Be comfortable speaking with customers and explaining technical findings clearly

• Be self-motivated, curious, and genuinely passionate about offensive security

• Enjoy learning, researching, and continuously improving technically

• Be capable of working independently while contributing positively to a collaborative team environment

Requirements

• Must be UK based

• Must have lived in the UK for at least the past 5 years

• Strong written and spoken English is essential

• Eligible for UK security clearance

• No sponsorship available

Additional Information

The consultancy has strong internal quality assurance processes and places significant emphasis on delivering high-quality work to customers. They are looking for individuals who care about the craft of penetration testing, take pride in their work, and want to continue developing within a growing technical consultancy.

This is an excellent opportunity for someone who enjoys offensive security, infrastructure testing, and solving technical problems properly within a supportive and technically driven environment.

NRG is an equal opportunities employer committed to promoting a diverse and inclusive workplace. We oppose all forms of unlawful or unfair discrimination on the grounds of any protected characteristic. Our aim is to create an environment that encourages diversity, builds on individual differences, and responds equitably to the needs of all. We proactively take steps to fulfil our legal obligations, remove barriers, monitor for fairness, reflect the communities we serve, and enforce a zero-tolerance policy for breaches of our Equality and Diversity policy.