Penetration Testing Consultant

Job Level           Graduate / Early Career

Location            Remote

Summary and Background

Pragma is a fast-expanding cyber security consultancy, led by industry veterans, that provides a range of security services to clients mainly in Asia and Europe.  We have a client base that spans tiny start-ups to colossal multinationals, and every industry from Finance to Shipping to Sports and Education.  We pride ourselves on our egalitarian start up culture, and we believe in hiring the smartest people with the best professional skills and giving them the support, they need to grow and develop.

We are looking for security consultants to join our Consultancy division, working for clients across the world.  In this role, you will work on a variety of projects to help our clients secure their digital future, including cloud security, penetration testing, cutting edge cyber insurance, risk management for Digital Banking licences, live incident response and forensics: whatever is necessary to help the client succeed.  You’ll be working with a team of experts and veterans, and we’ll give you the support and training you need to learn and develop your security expertise.

Our clients in turn will look to you for advice and support as they grapple with security certifications, or cloud migrations, or meeting the exacting demands of Financial Regulators, or the growing pains of turning a small start-up into a world-beating multinational.

Pragma is committed to diversity and inclusion and assesses all applicants equally on their merits.  We are committed to building a radically different working culture that gives people the chance to build a working life that works for both them and their clients.  We fully support remote working.


You’ll need good communication skills, a calm voice in a crisis, an ability to efficiently solve new technical problems, and a broad knowledge of computer systems and security. The sense of achievement you’ll get from helping companies grow and thrive is truly rewarding, and we will back that with a decent salary and great long-term opportunities. This role requires a wide mix of practical IT technical experience and communication skills. Technical experience should include:

  • A broad understanding of information security concepts and technologies
  • A broad understanding of Cloud technologies
  • Passionate about technology and security
  • A quick learner that can take in large amounts of information and analyse and make use of this information
  • Experience with web application vulnerability scanning tools (e.g. OpenVAS, Nessus etc.)
  • Practical experience in IT platforms (Windows, UNIX, Databases, etc)
  • Strong scripting skills (e.g. Python, Perl, Shell script, JavaScript)
  • Knowledge and experience in communications technologies (VPNs, Routers, Switches, Firewalls, IPS’, IDS’, mobile networks, etc)

We would expect the successful applicant to also have a mix of some of the following skills and qualifications:

  • Relevant certifications in cybersecurity, e.g. CEH, ECSA, or similar.
  • A broad technical knowledge of both on-premise and cloud operating models.
  • Strong understanding of information security and privacy requirements.
  • Great one-on-one communication skills in stressful situations.
  • Strong written professional English.
  • Ability to manage your own work and own time to meet challenging deadlines.
  • Ability to work in multiple languages.
  • Enjoys solving problems for clients.
  • Be able to analyse complex problems and produce simple solutions
  • Be able to work collaboratively in a team that spans multiple sites
  • Be able to produce clear, well documented code
  • Be confident, motivated, and reliable


Depending on your skills and experience and the needs of our clients, your responsibilities are likely to include some or all of the following:

  • Running penetration tests on systems ranging from websites to email tenancies to source code reviews to IoT deployments
  • Create vulnerability assessment plans for our clients and track the vulnerabilities to ensure that these vulnerabilities are addressed and reported
  • Engage with new tools and techniques to improve testing workflows.
  • Collaborate with team members to improve the client’s engineering tools, systems and procedures, and data security
  • Act as a trusted risk and security advisor to our clients
  • Help define and deliver solutions to clients’ security and risk issues
  • Developing hardened operating systems and database builds for organisations
  • Write reports based on the results of penetration tests
  • Support audit and infrastructure/network security scans, disaster recovery and security related drills
  • Assistance with Pragma’s diverse cybersecurity teams
  • Willingness to work on continuous self-improvement by self-assessment and training

What we offer

  • A competitive salary depending on the location
  • Training and certification in a security specialism of your choice: we’ll help you develop your skills further.
  • The opportunity to learn security from industry experts.
  • Work with prestigious financial and multinational clients.

How to apply

To apply for this role, send in your CV/Resume to [email protected] with the following information:

  • Earliest available date
  • Current/Expected salary
  • Nationality/Do you require a work visa?
New Insights: Read the MAS TRM 2021 - Complete Guide for Financial Services
This is default text for notification bar