Securing business data

Careers at CNS Group


Penetration Tester


The CNS Penetration testing team is currently extremely busy.  The team performs a wide variety of technical assessments, including web application tests, internal penetration tests, application tests, mobile application tests, configuration reviews, social engineering tests, reverse engineering, malware analysis, attack simulation, design reviews and a number of other bespoke tests.

We have consultants who are members of the CHECK Scheme who work on Government projects and consultants who are purely commercial.  We are open to either for applicants to this role.

We take great pride in the technical ability of the team, we do not just run Nessus scans and tidy up the reports.  Our consultants actively exploit vulnerabilities and even find zero day attacks for customers.  We put a huge amount of effort into reporting and communicating our work and consultants must have soft skills to explain the technical work to non technical consultants.

In addition consultants will be expected to help support the sales team.

We actively work with consultants to improve there level of skill and qualifications.  We have an excellent track record of getting consultants through exams.

In addition to the consultancy work, we actively participate in the community, consultants are encouraged to publish articles, speak at conferences, lecture at universities and contribute to the wider knowledge base. 


The consultant must be able to become an immediately productive member of the team who will be able to work on tests from the CNS office, or onsite with customers.  Depending on experience levels the consultant will either be part of a team or leading engagements.  The consultant should have demonstrable experience of performing this work for another organisation, and be able to demonstrate both the technical skills require and the soft skills required.

Key Skills

  • Must be actively performing Internal, External and Application penetration tests on a regular basis
  • Must work for a consultancy organisation
  • Must be actively exploiting vulnerabilities
  • Must be able to demonstrate attack skills in the lab.
  • Must have soft skills and be able to explain complex technical issues in terms or risk and organisational impact.


The applicant must hold one of the below technical qualifications and be in good standing with the organisation that issued the qualification:



The applicant must have a degree from a recognised University in a technical IT or security subject.  

Please contact for more information.
For further job opportunities follow us on LinkedIn.

Follow CNS on Linkedin and join our LinkedIn groups


Winner - Best Managed Security Service


Financial Service Technology Awards

Best use of IT in Retail Banking
For implementation of IPT at Duncan Lawrie Bank.

Consulting Practice of the Year

CNS Hut3 have been shortlisted as finalists in the Cyber Security Awards, which seek to recognise talent and achievement within the cyber security industry.
Banking Tech Awards 2012 Logo shortlist

BankingTech Security Initiative of the Year

CNS were shortlisted for their AntiPhishing Security Initiative with Metrobank.