Junior Offensive Security Consultant

WorkNest Secure is offering a 12-month graduate academy for Junior Offensive Security Consultants focused on penetration testing, vulnerability research, client reporting, and cybersecurity skill development through mentoring and hands-on assessments.

WorkNest Secure is rapidly expanding, helping organisations strengthen their security posture through world-class expertise. To support this growth, we are seeking Junior Offensive Security Consultants to join our 12-month graduate academy.

Through a variety of learning methods such as workshops, observations, practice labs, paired work, live testing, mentoring, and coaching, you will quickly build a strong mix of technical and soft skills.

You will receive structured support from our Academy Manager and consultant team, enabling you to progress in a supportive and friendly environment with a strong focus on developing junior consultants.

Role Description:

We provide a broad range of assessment services, including web applications and infrastructure, giving Junior OffSec Consultants the opportunity to build expertise across these areas.

As a Junior OffSec Consultant you will perform formal and comprehensive penetration testing assessments, including producing full written reports to appropriate standards and within agreed deadlines. In addition, you will support client pre-engagement activities, as well as research application and infrastructure vulnerabilities, following responsible disclosure, and sharing such findings within the team.

Responsibilities:

• Perform formal and comprehensive application, infrastructure and other penetration testing assessments where appropriate and required

• Provide well-written, concise, technical and non-technical reports in English

• Maintain excellent communication standards during your engagements & ensuring debriefs are offered following the process

• Maintain good communication standards with your OffSec Team lead & Academy Manager

• Perform vulnerability assessments and provide findings with remediation actions

• Support with various client pre-engagement interactions where appropriate and applicable

• Manage and deliver applicable project activities to deadlines

• Research application and infrastructure components within the wider team to identify new vulnerabilities and follow responsible disclosure

• Any other appropriate job duties in line with the associated skill and experience of the post holder

• Work towards achieving industry certifications and developing new Penetration testing skillsets via research and shadowing.

Skills and Experience Required:

• Good knowledge of application and infrastructure penetration testing

• Strong understanding of OWASP, PTES and other penetration testing methodologies

• Knowledge of how modern web apps are designed, developed and deployed across different platforms

• Ability to program or script in your preferred language

Nice to have:

• Relevant security qualifications (such as OSCP, CREST CRT, TIGER)

• Good knowledge and understanding of network and OS principles

• Good knowledge of various operating systems

• Good knowledge of virtualisation

• A degree in Cybersecurity or related courses.

Personal Attributes:

• Excellent spoken and written English communication skills with strong attention-to-detail and accuracy

• A customer centric mindset & approach – Willing to go above and beyond when engaging with our customers

• A passion for security and networks

• Analytical and problem-solving skills with a can-do attitude and the ability to think laterally and creatively

• Self-motivation with a commitment to continued development

• Ability to work independently and as part of a team

• Influencing and negotiation skills with the ability to build relationships at all levels

• Willingness to learn

You’ll have the opportunity to develop technical expertise across web application and infrastructure testing, work towards recognised industry certifications, and gain exposure to a wide range of technologies, tools, and security challenges in a supportive environment that encourages continuous learning and innovation.

This is an exciting opportunity for aspiring cybersecurity professionals looking to launch a long-term career in offensive security with clear development pathways, meaningful client impact, and the chance to work alongside passionate experts in a rapidly expanding business.