Forvis Mazars in the UK
Ethical Hacker - Senior Consultant

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Forvis Mazars is a leading global professional services network providing audit & assurance, tax, and advisory services. Forvis Mazars in the UK spans 14 offices across the nation and has over 3,400 professionals, with 190 partners. We have a clear purpose and a shared commitment to shape a better future.
You'll join a collaborative and inclusive team where you're supported to grow your skills, explore new opportunities, and contribute from day one. You'll work with a diverse client base, develop meaningful connections, and gain experience that extends beyond your local team. Together, we grow, belong and impact.
About The Team
The Cyber Advisory team provides cyber security assurance, advice and guidance to clients on all aspects to help them build and maintain a robust security environment. We identify cyber risks and work closely with clients to understand their unique set of digital opportunities and challenges, providing tailored and strategic advice and guidance. We support our clients in assessing, building and managing their cyber security capabilities, from ensuring compliance with industry regulations, and mitigating potential risks to moving them towards a more mature security posture.
Responsibilities
As a Manager within the national cyber security team you will be responsible for delivering cyber security assurance and advisory work to a range of clients nationally and internationally. Our broad range of clients, including those in FTSE 350, will allow you to gain experience across a range of sectors including:
- Financial Services, Banking, Insurance and Investment
- Corporates/Private Sector/Industry & Services
- Central and Local Government
- Retail and Consumer products organisations
About The Role
As a Senior Penetration Tester, you'll lead complex security engagements across infrastructure, cloud, mobile, AI systems, and more. You will design and execute red team operations, mentor junior consultants, and directly influence our technical testing capability and methodology as we progress towards CHECK and CREST STAR accreditations. This role is suited for experienced professionals ready to push the boundaries of ethical hacking and adversary simulation.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Role & Responsibilities
- Deliver and lead red team, purple team, and assumed breach, infrastructure, and applications assessments across multiple sectors.
- Emulate real-world attack scenarios using custom tooling and TTPs aligned with MITRE ATT&CK.
- Develop comprehensive and accurate reports and presentations for both technical and executive audiences.
- Interface with clients to address concerns, issues, or escalations; track and drive to closure any issues that impact the service and its value to clients.
- Working with clients to develop appropriate remediation plans.
- Providing thought leadership and direction for the Cyber Security practice on malware, attack vectors and methods to protect against threats.
- Helping recruit, retain and develop the Ethical Hacking team by bringing superior leadership skills.
- Training and mentoring of graduate entry colleagues through the sharing of professional and technical skills and experience.
- Carry out research when not on client deliverable work that can be used to enhance our services to clients.
- Work with teams across the business, providing the latest technical knowledge to collaborate on interesting client projects.
What We Are Looking For
The following are expected from potential applicants:
- Experience with red teaming, purple teaming, and social engineering techniques.
- Application, Infrastructure and Cloud penetration testing experience above and beyond running automated tools.
- A good understanding of Unix, Microsoft Windows, and network security skills.
- Excellent written and communication skills in English.
- Ability to work both independently and collaboratively in a team.
- Developing applications in one or more of the following: C#, ASP, .NET, Objective-C, Go, or Java (J2EE).
- CSTM / CRT / CSTL / CCT-INF / CCT-APP / OSEP / OSWE / CRTO / CRTO II
- On the pathway to: CCSAM / CCSAS / CCRTS / CSRTM
- Working knowledge of Azure AD, Office 365, and common cloud hosting platforms.
- A degree in a STEM related subject including computer security, computer science, or equivalent experience.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Advantageous
- Mobile application, IoT and/or OT testing experience.
- Experience testing AI models or LLM-based applications for adversarial attacks.
- Research and Development experience.
- Threat Intelligence and Malware Development experience.
- Ability to work both independently and perform as a team member in a group environment.
- Red team operations and purple team delivery, including adversary emulation.
Diversity, Equity & Inclusion
At Forvis Mazars diversity, equity and inclusion are central to our values. We value our people's unique backgrounds, perspectives, and experience, and know this diversity create better outcomes for our clients. We seek to attract, develop, and retain the best talent, inclusive of sex, ethnicity, disability, socio-economic background, sexual orientation, gender identity, nationality, and faith. We select candidates based on skills, knowledge, qualifications, and experience and aim to support all our team members to reach their potential. At Forvis Mazars, we promote an environment in which you can grow your skills, belong to a team that values your ideas, and make an impact that matters.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location