Bridewell
Academy Penetration Testing Consultant

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Academy Penetration Testing Consultant
Academy Penetration Tester Consultant (18-Month Probationary Role)
Start Date: 14th September 2026
Bridewell is one of the most exciting prospects in the UK cyber security sector, a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world’s most trusted organisations. We provide end-to-end cyber security capabilities, helping our clients overcome security challenges and enabling them to operate safely and securely.
As a Gold-level Investors in People organisation, Bridewell reflects our commitment to fostering outstanding talent and maintaining a collaborative, high-performing team culture.
The Opportunity
As an Academy Penetration Tester Consultant, you’ll join Bridewell’s 18-month Academy programme, designed for individuals with a passion for ethical hacking, technical problem-solving, and reducing cyber risk across organisations.
Throughout the programme, you’ll develop:
- Technical penetration testing skills
- Consulting discipline and client engagement capabilities
- Industry accreditation through structured training and hands-on practice
You’ll work closely with experienced offensive security consultants, gaining real-world exposure in client engagements while building the expertise to thrive as a penetration testing professional.
Programme Structure
Phase 1: Foundation (Months 1–6)
Focus on core penetration testing methodology, technical principles, and consulting fundamentals.
- Achieve Cyber Scheme Foundation Level (CSFL)
- Earn UK Cyber Security Council Professional Title (Associate-Level)
- Begin the Trainee Cyber Essentials Assessor (TCEA) pathway
- Shadow and assist in real client engagements
- Align with Bridewell’s safe, ethical, and high-standard security assessment principles
Phase 2: Technical Depth (Months 7–12)
Refine practical testing skills and increase client-facing responsibilities.
- Strengthen web application testing and vulnerability assessment
- Develop reporting and remediation advice clarity
- Preparation for Burp Suite Certified Practitioner (BSCP)
- Complete Honeycomb Core Consulting Skills training
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Phase 3: Industry Practitioner (Months 13–18)
Progress towards recognised security professional status.
- Complete Cyber Scheme CSTM Practitioner Training
- Prepare for Cyber Scheme Team Member (CSTM) certification
- Obtain PraCSP (Professional Title) & NCSC CHECK Team Member (CTM) status
- Cyber Essentials Plus Assessor qualification
- Take on greater engagement responsibilities with mentored support
- Demonstrate sound judgement and technical expertise
Why Choose Bridewell?
Key Deliverables & Responsibilities
Through mentorship and guided experience, you’ll develop the ability to:
- Support penetration testing engagements under supervision
- Follow methodologies, legal boundaries, and Bridewell quality standards
- Identify, validate, and document vulnerabilities, capturing evidence of subtleties in risk
- Draft penetration testing reports, explaining technical findings clearly to both technical and non-technical stakeholders
- Prepare and participate in engagement kick-offs, connectivity checks, and client communication
- Escalate risks, blockers, or scope concerns to leads and contribute to remediation discussions
- Take ownership of personal growth: training, certifications, and mentoring
- Build collaborative network with peers, consultants and Bridewell teams
Experience & Qualifications
Minimum Requirements
- Grade 4/C in GCSE Maths and English Language (or equivalent)
- Demonstrated ability through transferable skills (e.g., problem-solving, relationship-building)
Preferred (Not Required for Entry)
- A degree in Cyber Security, cognate IT, or related qualification (e.g., Level 3 Cyber Security Apprenticeship)
- Completion of a cyber security training course or bootcamp
Key Attributes for Success
- Curiosity and eagerness to learn
- Self-starting and self-motivated approach
- Professionalism with clear communication skills


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Career Support & Development
Bridewell fosters a culture of long-term growth, ensuring you gain:
- Structured access to learning platforms (e.g., Hack The Box VIP+, TCM Academy)
- One-to-one mentorship from experienced consultants
- Industry-recognised qualifications, including:
- Cyber Scheme Foundation Level (CSFL)
- Cyber Scheme Team Member (CSTM)
- NCSC CHECK Team Member (CTM)
- PraCSP (Professional Title)
- Cyber Essentials Assessor
Benefits
As part of a forward-thinking, inclusive team, you’ll receive: ✅ 25 days holiday (plus buy/sell scheme) ✅ Flexible working (aligned to core office hours) ✅ Company pension ✅ Employee Shareholder Scheme ✅ Company Advice Fund, Family Leave (after 1 year), Maternity Policy & Life Assurance ✅ Personal Days, Birthdays Off (after 1 year) ✅ Electric Vehicle scheme and Cycle to Work Scheme ✅ Private Healthcare benefits ✅ Gym discounts & Vision Care
Location/Degree
UK Wide Hybrid Role
- Headquartered in London, with physical site visits required
- Flexible travel based on client engagements
Important: Applicants must either hold UK Security Clearance or be eligible and prepared (and willing) to undergo security vetting.
Company Core Values
Bridewell’s vision is to create a safe, inclusive digital world. Our values reflect these principles:
- Do the Rigght Thing – Ethical decision-making at every level
- One Team – Collaboration and mutual support
- Above and Beyond – Continuous deliverance of high-quality security
Diversity & Equity: Bridewell is committed to an environment where everyone is supported, respected, and empowered. Please contact us for information on reasonable adjustments during recruitment.
"Animating an increasingly complex world filled with technology and cyber risks requires a truly dedicated team. We’re looking for individuals who share our values and drive for impact."
Now Ready to Start Your Cyber Career with Bridewell? Apply Today.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills