CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Software Development

Offensive Security Tester

United Kingdom, London · Job Posted January 26, 2026
Apply Position
Job Link Share

Job Description

The Offensive Security Tester role at NTT DATA involves conducting advanced penetration testing to identify vulnerabilities in various IT environments. Candidates should have 3-5 years of experience in offensive security, a bachelor's degree in a related field, and relevant certifications. Strong communication skills and technical writing abilities are essential for producing detailed reports and engaging with clients effectively.

Job Responsibility

  • Conduct comprehensive penetration tests across web applications, network infrastructure, and mobile applications
  • Perform external and internal network penetration testing using industry-standard methodologies
  • Execute wireless security assessments, social engineering engagements, and red team exercises
  • Conduct application security testing, including API and web service assessments
  • Identify, validate, and prioritize security vulnerabilities discovered during testing
  • Analyze attack paths and assess the business impact of identified vulnerabilities
  • Develop proof-of-concept exploits to demonstrate security risks
  • Produce detailed technical reports documenting findings, risks, and remediation recommendations
  • Create executive summaries highlighting business impact and strategic risk concerns
  • Present findings to technical teams and management stakeholders
  • Follow industry-standard penetration testing methodologies (e.g., OWASP, PTES, NIST)
  • Maintain and update penetration testing tools and exploitation frameworks
  • Stay current with the latest attack techniques, vulnerabilities, and security research
  • Communicate effectively with clients throughout testing engagements
  • Coordinate testing activities to minimize business disruption
  • Support scoping discussions and provide security awareness briefings to client teams

Requirements

  • CREST Registered Penetration Tester (CRT) certification required
  • Must meet UK SC Clearance eligibility guidelines
  • Bachelor’s degree in computer science, Cybersecurity, or related field
  • 3–5 years of experience in penetration testing or offensive security roles
  • Strong technical writing and verbal communication skills
  • Ability to explain complex technical issues to non-technical audiences
  • Excellent time management and attention to detail
  • Direct experience working in government, military, or intelligence organizations advantageous

Nice to have

  • Additional certifications preferred (e.g., OSCP, GPEN, CEH)
  • Experience conducting red team exercises and adversarial attack simulations
  • Familiarity with threat modeling and risk assessment methodologies
  • Background in information security or IT security operations

What we offer

  • Tailored benefits that support physical, emotional, and financial wellbeing
  • Continuous growth and development opportunities
  • Flexible work options
  • Inclusive work environment with mutual respect, accountability, and continuous learning
  • Range of Inclusion Networks (e.g., Women’s Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network, Parent Network)
NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Offensive Security Tester

8 matching positions

Offensive Security Tester

The Offensive Security Consultant role involves leading advanced penetration tes...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5 years of demonstrable professional experience in penetration testing
  • Strong emphasis on understanding, emulating, and leveraging adversarial tactics and threat intelligence
  • Comprehensive understanding of OT and IT asset profiles, technologies, and security best practice principles
  • In-depth knowledge of network protocols, cryptography, security vulnerabilities, and common attack vectors
  • Demonstrated proficiency in utilizing a wide range of penetration testing tools and methodologies
  • Proven experience in scoping and executing complex penetration tests
  • Exceptional written and verbal communication skills
  • Strong organizational and time management skills
  • Current CREST CRT certification or higher is essential
  • Must hold or be eligible for SC Clearance
Job Responsibility
Job Responsibility
  • Lead and manage the full lifecycle of complex penetration testing engagements
  • Execute advanced penetration tests across a broad range of environments (applications, infrastructure, web, APIs, O365, Azure, AWS, OT)
  • Develop and maintain sophisticated test plans, execution plans, and targeted use cases
  • Identify and prioritize OT and IT assets, services, and systems based on their criticality and potential exposure
  • Strategically prioritize, plan, and schedule penetration testing engagements
  • Produce high-quality, detailed reports
  • Clearly and effectively communicate complex security concepts
  • Collaborate closely with client IT and cybersecurity teams
  • Track the progress of remediation efforts
  • Conduct proactive security research and contribute to the creation of technical content
What we offer
What we offer
  • Tailored benefits that support physical, emotional, and financial wellbeing
  • Continuous growth and development opportunities
  • Flexible work options
Read More
Arrow Right

Security Systems/ Software Developer and Tester

As part of our HPE Operations Cybersecurity Lab, the Security Systems/Software E...
Location
Location
United States , Aguadilla
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Systems, or equivalent
  • Typically 4-6 years experience
  • Expertise in multiple software systems design tools and languages
  • Experience of relational database management systems and their query languages (e.g. SQL)
  • Strong Experience writing software using any modern language and technology stack, i.e Python, Javascript, and frameworks for building APIs and user interfaces
  • Knowledge of tools like Metasploit, Nmap, Burp Suite, Wireshark, vulnerability scanning tools, network mapping, and packet analysis
  • Experience in overall architecture of software systems for products, solutions and IT systems
  • Expertize working in a DevSecOps environment
  • Knowledge of OWASP Top 10 vulnerabilities, web-based attacks (SQL injection, XSS, CSRF), and web protocols
  • Experience with encryption methods and their applications
Job Responsibility
Job Responsibility
  • Designs security enhancements, updates, and programming changes for portions and subsystems of systems software, including operating systems, compliers, networking, utilities, databases, and Internet-related tools
  • Analyzes design and determines coding, programming, and integration activities required based on security requirements and general objectives and knowledge of overall architecture of product or solution
  • Design, develop, test, and maintain robust, scalable, and high-quality security and software solutions
  • Supports application and systems security strategy, architecture and roadmaps, review application architectures, code and system services from a security perspective
  • Writes and executes complete security testing plans, protocols, and documentation for assigned portion of application
  • identifies and debugs, and creates solutions for issues with code and integration into application architecture
  • Leads a project team of other software systems engineers and internal and outsourced development partners to develop reliable, cost effective and high quality solutions for assigned systems portion or subsystem
  • Collaborates and communicates with management, internal, and outsourced development partners regarding software systems design status, project progress, and issue resolution
  • Represents the software systems engineering team for all phases of larger and more-complex development projects
  • Provides guidance and mentoring to less-
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Security Systems/ Software Developer and Tester

The Security Systems/Software Developer and Tester will support the design, deve...
Location
Location
United States , Aguadilla
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Systems, or equivalent
  • Typically 4-6 years experience
  • Expertise in multiple software systems design tools and languages
  • Experience of relational database management systems and their query languages (e.g. SQL)
  • Strong experience writing software using any modern language and technology stack, i.e Python, Javascript, and frameworks for building APIs and user interfaces
  • Knowledge of tools like Metasploit, Nmap, Burp Suite, Wireshark, vulnerability scanning tools, network mapping, and packet analysis
  • Experience in overall architecture of software systems for products, solutions and IT systems
  • Expertise working in a DevSecOps environment
  • Knowledge of OWASP Top 10 vulnerabilities, web-based attacks (SQL injection, XSS, CSRF), and web protocols
  • Experience with encryption methods and their applications
Job Responsibility
Job Responsibility
  • Design security enhancements, updates, and programming changes for portions and subsystems of systems software, including operating systems, compilers, networking, utilities, databases, and Internet-related tools
  • Analyze design and determine coding, programming, and integration activities required based on security requirements and general objectives
  • Design, develop, test, and maintain robust, scalable, and high-quality security and software solutions
  • Support application and systems security strategy, architecture, and roadmaps
  • Review application architectures, code, and system services from a security perspective
  • Write and execute complete security testing plans, protocols, and documentation
  • Identify and debug issues, and create solutions for code and integration
  • Lead a project team of software systems engineers and outsourced development partners
  • Collaborate and communicate with management and development partners regarding software systems design status, project progress, and issue resolution
  • Represent the software systems engineering team for all phases of larger and more-complex development projects
What we offer
What we offer
  • Comprehensive suite of benefits that supports physical, financial, and emotional wellbeing
  • Investment in personal and professional development through specific career programs
  • Inclusive work environment and recognition of individual uniqueness.
  • Fulltime
Read More
Arrow Right

Penetration Tester

We’re Fever, the world’s leading tech platform for culture and live entertainmen...
Location
Location
Argentina
Salary
Salary:
Not provided
https://feverup.com/fe Logo
Fever
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master’s Degree in Computer Science, Information Security, or another similar relevant degree (or equivalent experience in a Cybersecurity role)
  • 4+ years of hands-on experience in the Offensive Security area, such as penetration testing
  • Strong knowledge about cloud security environments (AWS, microservices, SaaS applications, cryptography, etc)
  • Detailed knowledge of global cyber threats, including tactics, techniques, and procedures used by cyber adversaries
  • Solid understanding of hardware, web, network protocols, APIs, security issues, common attacks (OWASP Top 10), etc
  • Experience in developing security tooling and automation
  • Professional proficiency in English
  • Analytical skills, autonomy, and accountability
  • Good communication skills
Job Responsibility
Job Responsibility
  • Conducting high-quality application and infrastructure penetration tests independently, or as part of a team
  • Perform technical reviews and assessments of new systems and features
  • Document and communicate findings, including identified vulnerabilities, exploitation techniques, and recommended remediation steps in clear and concise reports
  • Coordinate and monitor the remediation of penetration testing findings
  • Effectively communicate findings at both the technical and executive levels
  • Configure and safely use hacking tools, tactics, and procedures against authorized targets
  • Contributing to team tooling, innovation, and improvements
What we offer
What we offer
  • Attractive compensation package consisting of base salary and the potential to earn a significant bonus for top performance
  • Stock options
  • Opportunity to have a real impact in a high-growth global category leader
  • 40% discount on all Fever events and experiences
  • Osde 410 as medical insurance
  • Home office friendly
  • Responsibility from day one, and professional and personal growth
  • Great work environment with a young, international team of talented people to work with
  • English Lessons
  • Gympass
  • Fulltime
Read More
Arrow Right

Senior Penetration Tester

NTT DATA Inc is expanding its internal cybersecurity capabilities and is seeking...
Location
Location
Romania , Bucuresti
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in penetration testing across web apps, APIs, containers, networks, OS, databases, and cloud platforms
  • Strong experience in technical writing and producing detailed security reports
  • Deep understanding of offensive security operations and secure development practices
  • Familiar with OWASP Top 10, NIST, CIS, MITRE ATT&CK, and threat actor methodologies
  • Skilled in scripting languages: Python, PowerShell, Ruby, Bash
  • Advanced exploit development and evasion techniques
  • Proficient in tools: Kali, Metasploit, Nessus, Nuclei, Nmap, Burp Suite, PowerSploit, Impacket
  • Flexible, analytical, and adaptable
  • degree or certifications (OSCP, OSEP, etc.) preferred but not required
Job Responsibility
Job Responsibility
  • Perform network penetration, web application testing, source code reviews, threat analysis, and social-engineering assessments
  • Develop scripts, tools, or methodologies to enhance NTT DATA, Inc's Purple Team and Security Operations capabilities
  • Monitor available open source intelligence feeds for any NTT DATA related information
  • Develop detailed threat models
  • Thoroughly document techniques, tactics and proofs of concept used during security testing and red team exercises
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences
  • Fulltime
Read More
Arrow Right

Penetration Tester

Do you want to help secure some of Microsoft’s most critical and high‑impact onl...
Location
Location
United States , Redmond
Salary
Salary:
84200.00 - 165200.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field OR equivalent experience.
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 2+ years’ experience in security or related field OR equivalent experience.
  • Experience with one or more of the following is a plus: Penetration testing
  • Vulnerability research
  • Scripting/automation
  • Threat Hunting
  • Detection Engineering
Job Responsibility
Job Responsibility
  • Identify security vulnerabilities and variants across critical cloud services.
  • Perform source code reviews, dynamic analysis, and operational security assessments.
  • Validate software quality and adherence to security development practices.
  • Work with engineering and defense teams to improve detection, response, and operational awareness.
  • Contribute to static and runtime analysis capabilities to detect software security issues.
  • Help design automated analysis workflows for managed code and modern web services.
  • Explore and prototype automation that improves consistency, speed, and depth of security assessments.
  • Stay current on offensive security tactics, penetration testing tools, and defensive techniques.
  • Conduct research that supports training and awareness for internal engineering teams.
  • Support innovation efforts across MSC Security, including tooling, methodology improvements, and knowledge sharing.
  • Fulltime
Read More
Arrow Right

Automated Security Testing Engineer

We are looking for an experienced Security Testing Engineer to join our cybersec...
Location
Location
Salary
Salary:
Not provided
itransition.com Logo
Itransition
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3–5 years of experience in security testing and penetration testing
  • Required Certification (one of the following): CREST Practitioner Security Analyst (CPSA), CREST Registered Penetration Tester (CRT), CREST Certified Tester (CCT), Offensive Security Certified Professional (OSCP)
  • Experience testing web, mobile, and desktop applications
  • Strong understanding of application security and common vulnerabilities (OWASP Top 10)
  • Ability to produce clear, structured security documentation and reports
  • Strong analytical and problem-solving skills
  • English skills should be sufficient for taking part in conversations on the technical aspects of projects
Job Responsibility
Job Responsibility
  • Conduct penetration testing and vulnerability assessments for web, mobile, and desktop applications
  • Identify security vulnerabilities and provide clear remediation recommendations
  • Develop and maintain security testing strategies and methodologies
  • Prepare technical documentation and security reports for stakeholders
  • Collaborate with engineering and development teams to address security issues and improve system resilience
What we offer
What we offer
  • Projects for such clients as PayPal, Wargaming, Xerox, Philips, Adidas and Toyota
  • Competitive compensation that depends on your qualification and skills
  • Career development system with clear skill qualifications
  • Flexible working hours aligned to your schedule
  • Options to work remotely
  • Corporate medical insurance covering services of private and public medical centers
  • English courses online
  • Corporate parties and events for employees and their children
  • Internal conferences, workshops and meetups for learning and experience sharing
  • Gym membership compensation
Read More
Arrow Right

Penetration tester

As a penetration tester on the Global Services team at Rapid7, you will help our...
Location
Location
United Kingdom
Salary
Salary:
Not provided
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in an active technical security role
  • Strong knowledge of Advanced Social engineering techniques and tactics
  • Strong knowledge of Infrastructure management and deployment (domain records, web servers, terraform, ansible, phishing website creation)
  • Strong knowledge of Modern penetration testing tools and methods
  • Strong knowledge of Network, wireless and web application security concepts
  • Experience using interpreted languages (Ruby, Python, PHP, etc.)
  • Knowledge of common regulatory structures and obligations and common I.T. governance
  • Bug Bounty experience, identifying novel vulnerabilities in arbitrary internet-facing attack surfaces
  • Certifications such as OSCP, OSCE, GXPN, OSEE, CREST
  • Experience with Red & Purple Teams
Job Responsibility
Job Responsibility
  • Deliver Rapid7’s Vector Command Continuous Red Teaming service
  • Design social engineering campaigns which function at scale, supporting numerous customers each month, emulating modern adversary TTPs
  • Deploy, configure, and maintain social engineering infrastructure to perform phishing operations at scale
  • Perform manual and automated reconnaissance at scale to identify targets for social engineering operations each month
  • Leverage external network vulnerabilities reported by Vector Command team members in targeted real-world social engineering attacks
  • Research the latest techniques in social engineering and implement them in monthly campaigns
  • Research and test methods to bypass social engineering defenses such as email filters, download restrictions, multi-factor authentication mechanisms, etc
  • Be an expert in sending phishing emails which make it to the client’s inbox
  • Design and execute vishing campaigns
  • Incorporate payloads provided by the Red Team lead into phishing and vishing operations
Read More
Arrow Right