Penetration Tester / Ethical Hacker – Visa Support Provided

About the Company

Sophos is a global leader in next-generation cybersecurity, protecting over 500,000 organizations and millions of users in more than 150 countries from today’s most advanced cyberthreats. Powered by SophosLabs and SophosAI, Sophos offers a broad portfolio of advanced products and services, including managed detection and response (MDR), incident response, endpoint, network, email, and cloud security. Join us in our mission to secure the future.

Job Description

We are seeking a highly skilled and motivated Penetration Tester / Ethical Hacker to join our dynamic cybersecurity team in Brighton. This is an exciting opportunity for a professional with a passion for uncovering vulnerabilities and strengthening defenses. You will be responsible for conducting comprehensive penetration tests across our diverse range of products, systems, and networks. We offer full visa sponsorship and relocation support for exceptional candidates looking to make a significant impact in a leading cybersecurity firm.

Key Responsibilities

• Perform web application, network, mobile, and cloud penetration tests.
• Conduct vulnerability assessments and provide detailed reports with remediation recommendations.
• Develop and execute attack simulations, including red team and purple team exercises.
• Research new threats, attack techniques, and penetration testing tools.
• Collaborate with development and operations teams to integrate security into the SDLC.
• Stay up-to-date with the latest security trends, best practices, and regulatory requirements.
• Document findings clearly and concisely for both technical and non-technical audiences.
• Participate in security audits and compliance initiatives.

Required Skills

• Minimum of 3 years of professional experience in penetration testing or ethical hacking.
• Strong understanding of networking protocols, operating systems (Windows, Linux), and web technologies.
• Proficiency with penetration testing tools such as Burp Suite, Nmap, Metasploit, Kali Linux.
• Solid knowledge of common web application vulnerabilities (OWASP Top 10) and mitigation strategies.
• Experience with scripting languages (Python, PowerShell, Bash).
• Excellent report writing and presentation skills.
• Ability to work independently and as part of a team.

Preferred Qualifications

• Relevant industry certifications (e.g., OSCP, OSWE, OSCE, CEH, GPEN, GWAPT).
• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.
• Experience with cloud security assessments (AWS, Azure, GCP).
• Familiarity with containerization technologies (Docker, Kubernetes).
• Knowledge of exploit development and reverse engineering.

Perks & Benefits

• Competitive salary and performance bonuses.
• Comprehensive health, dental, and vision insurance.
• Generous paid time off and public holidays.
• Company pension scheme.
• Full visa sponsorship and relocation assistance for eligible candidates.
• Continuous learning and professional development opportunities.
• Access to cutting-edge security tools and technologies.
• Modern office environment in a vibrant city.
• Employee assistance program and wellness initiatives.

Apply Now