CSI GLOBAL LTD
Penetration Tester

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Job Title: Security Penetration Tester
Location: Sheffield, UK (Hybrid)
Contract: Inside IR35
Role Overview
We are seeking an experienced Security Penetration Tester / Red Team – AI to join our Cyber Security team and strengthen the security of enterprise AI platforms. You will be responsible for conducting offensive security assessments against AI systems, identifying vulnerabilities, and validating the resilience of Large Language Models (LLMs), AI applications, and Agentic AI environments against emerging attack techniques.
Key Responsibilities
- Conduct penetration testing and Red Team engagements focused on AI platforms, LLMs, and AI-powered applications.
- Assess AI systems for threats such as prompt injection, model abuse, jailbreak techniques, data poisoning, insecure plugins, and agentic exploitation.
- Perform application, API, cloud, and infrastructure security testing supporting AI workloads.
- Develop attack simulations to validate AI security controls and identify potential weaknesses.
- Work closely with Security Architecture, SOC, Engineering, and DevSecOps teams to remediate identified risks.
- Produce detailed technical reports, risk assessments, and remediation recommendations.
- Contribute to AI threat modelling, security testing methodologies, and Red Team playbooks.
- Stay up to date with emerging AI threats, adversarial machine learning techniques, and offensive security best practices.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Required Skills & Experience
- 5+ years of experience in Penetration Testing, Red Teaming, or Offensive Security.
- Strong knowledge of Web Application, API, Network, Cloud, and Infrastructure Security Testing.
- Experience with penetration testing tools such as Burp Suite, Metasploit, Kali Linux, OWASP ZAP, Nmap, and related security tools.
- Good understanding of LLM security, AI attack techniques, and adversarial testing concepts.
- Familiarity with cloud platforms (Azure, AWS, or GCP) and container security.
- Knowledge of OWASP Top 10, MITRE ATT&CK, NIST, and secure development practices.
- Strong scripting skills in Python, Bash, or PowerShell.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Nice to Have
- Experience testing Generative AI, LLMs, RAG, Agentic AI, or Machine Learning platforms.
- Certifications such as OSCP, OSWE, CREST CRT/CCT, CEH, GPEN, GXPN, or equivalent.
- Experience with AI security frameworks and adversarial machine learning.
- Banking or Financial Services domain experience.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills