Rodeo
ResourcesPartnersSign in

Bridewell

Academy Penetration Testing Consultant

London
Posted 2 days ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

Academy Penetration Testing Consultant

Academy Penetration Tester Consultant – 18-month Programme (Start Date: 14th September 2026)

Bridewell, a leading cyber security services company specialising in protecting and transforming critical business functions for global organisations, is now recruiting for its Academy Penetration Tester Consultant role—a challenging opportunity for newcomers to build a successful career in offensive security.

Bridewell is the trusted partner for operators of essential services, delivering end-to-end cyber security capabilities. The company has achieved Gold level Investors in People status, reflecting its commitment to outstanding professional development.


🔹 The Opportunity

As an Academy Penetration Tester Consultant, you will join Bridewell’s 18-month structured programme, designed to turn your passion for ethical hacking and cyber security into a fully qualified offence security professional. This pathway is ideal for individuals with a strong interest in technical problem-solving, cyber risk mitigation, and helping organisations enhance their security posture.

What You’ll Do

  • Learn from industry experts while working alongside experienced penetration testers, gaining real-world engagement experience.
  • Develop technical, consulting, and client-facing skills to deliver high-quality penetration testing across diverse environments.
  • Progress through structured milestones, including qualifications, certifications, and hands-on training to achieve industry-recognised practitioner status.
  • By the end of the programme, you’ll be capable of delivering penetration testing services independently, helping clients identify vulnerabilities and improve their security resilience.

📅 Programme Overview

The 18-month journey is split into three key phases:

Phase 1 (Months 1–6): Foundations & Early Learning

  • Build confidence in penetration testing methodologies and technical security principles.
  • Work towards Cyber Scheme Foundation Level (CSFL) and Associate-level UK Cyber Security Council professional title.
  • Begin the Trainee Cyber Essentials Assessor (TCEA) pathway.
  • Focus areas include:
    • Shadowing experienced consultants.
    • Assisting with real client engagements.
    • Aligning with Bridewell’s high-quality, ethical testing standards.
    • Developing professional behaviours and client-consulting skills.

Phase 2 (Months 7–12): Practical Application & Consulating Skills

  • Increase hands-on experience in vulnerability analysis, evidence capture, and remediation advice.
  • Work towards Burp Suite Certified Practitioner (BSCP) and Honeycomb Core Consulting Skills training.
  • Take on more client-facing roles, refining abilities to:
    • Clearly communicate findings to both technical and non-technical audiences.
    • Contribute to penetration testing reports with structured feedback.

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.

Phase 3 (Months 13–18): Specialist Preparation & Qualification

  • Focus on achieving Cyber Scheme Team Member (CSTM) Practitioner Training and NCSC CHECK Team Member (CTM) status.
  • Pursue Cyber Essentials Plus Assessor and Practitioner Cyber Security Professional (PraCSP) qualifications.
  • Demonstrate increasing responsibility in engagements, applying technical judgement and oversight.

💪 Key Responsibilities

Throughout your Academy journey, you will collaborate closely with mentors, consultants, and peers to support penetration testing delivery in accordance with Bridewell’s standards and legal boundaries. Here are the core responsibilities:

  • Technical Delivery

    • Assist in executing vulnerability identification, validation, and risk assessments.
    • capture evidence of security flaws.
    • Support intelligence gathering, following agreed rules and methodologies.
  • Reporting & Communication

    • Contribute to detailed penetration testing documentation, including findings, evidence, and remediation advice.
    • Present technical issues clearly and accessibly in reports, meetings, and client communication.
  • Client Engagement

    • Participate in engagement kick-offs, client meetings, and progress updates.
    • Ensure transparent communication while maintaining professional conduct.
    • Escalate blockers, risks, or scope concerns to senior consultants.
  • Personal Training & Development

    • Engage actively in training, mentoring, and certification preparation..
    • Take ownership of growth through practical labs and structured learning platforms (e.g., Hack The Box VIP+, TCM Security Academy).
    • Apply feedback constructively from mentors, peers, and quality assurance reviews.
  • Team Collaboration

    • Work effectively with aspiring testers, consultants, and other departments.
    • Maintain a professional, energetic, and curious attitude.

🎓 Experience & Requirements

Bridewell prioritises potential, enthusiasm, and self-starter mentality, making this role ideal for career starters:

Minimum Qualifications

  • GCSE Grade 4 (C) or above in English Language and Maths (or equivalent).
  • Demonstrated passion for cyber security through personal projects, training, or courses.

Preferred Qualifications

  • A degree in Cyber Security, Computing, or a related field.
  • An apprenticeship (e.g., Level 3 Cyber Security) or completion of a Cyber Security bootcamp/advanced course.
  • Basic knowledge of penetration testing concepts or introductory tools (e.g., Kali Linux, Metasploit).

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

Shadow entries?

  • No formal experience required, but transferable skills from related roles will be beneficial—and welcome skills:
    • Technical troubleshooting (aspiring/IT support roles).
    • Writing clear, professional communications.
    • Problem-solving, systematic thinking, and all forms of intellectual curiosity.
  • No prior experience needed—this is the perfect entry point into a rewarding cyber security career.

🌟 Benefits

Joining Bridewell means:

  • 25 paid days’ holiday (including flexible buy/sell options).
  • Hybrid and flexible working policy (with key office attendance times).
  • A company pension and Employee Shareholder Scheme.
  • 1 personal day + 1 birthday day after just 1 year of service.
  • Family Leave (eligible after 1 year).
  • Enhanced maternity/paternity leave, modulated by length of service.
  • Life assurance and financial well-being support.
  • Electric Vehicle Scheme and Cycle to Work Scheme.
  • Private Healthcare Package, including gym discounts and vision care.
  • Opportunities for personal growth!

📍 Location & Clearance

Bridewell follows a hybrid working policy, meaning you’ll primarily work on-site where required, with periodic visits to our London office. You must be currently eligible for or willing to undergo UK Security Clearance to be considered for this role.


⚖️ Why Join Bridewell?

Bridewell’s mission—to make our digital world safer for people and organisations—shapes every working day. Our core values—Do the Right Thing, One Team, Above & Beyond—drive a culture of **responsibility, collaboration, and continuous improvement].

We’ve built an exceptional reputation as a trusted cyber security partner, backed by:

  • Gold-level Investors in People certification.
  • Global experience protecting critical services.
  • Innovative and client-driven testing practices.

The most exciting part? Your career with Bridewell is just beginning. We don’t just provide a job—we offer a pathway touben a respected professional with mastery over offensive security.


No applicants should hesitate to get in touch—Bridewell represents diversity and inclusive opportunity. If you need adjustments for the interview process, please let us know.

Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Penetration Testing
Ethical Hacking
Vulnerability Identification
Technical Problem Solving
Security Reporting
Client Communication
Risk Assessment
Web Application Testing
Offensive Security
Consulting Skills
Remediation Advice
Evidence Capture

Location

London, England, United Kingdom

Sign up to applySee more jobs like this