Digital Safety Penetration Tester

Digital Safety Penetration Tester (16997)

We are easy

Jet – a FTSE listed low‑cost airline that serves tens of millions of customers each year. In this role you will help protect the digital services used by millions of customers across Europe.

As a Digital Safety Penetration Tester you will perform hands‑on ethical hacking engagements across applications, APIs, infrastructure and cloud environments. You will manage engagements from planning to reporting and remediation, supporting the wider Cyber Test Services team.

• Plan and execute penetration tests across web and mobile applications, APIs, corporate networks, and cloud platforms including AWS, Azure and Google Cloud.
• Identify and safely exploit vulnerabilities using a range of testing tools, techniques and manual methods.
• Produce detailed technical reports and clear executive summaries with practical remediation guidance.
• Work closely with developers, product owners and security teams to support remediation and re‑testing activities.
• Support security assurance activities linked to audits, compliance requirements and risk management.
• Contribute to process improvements, testing methodologies, automation initiatives and service enhancements.
• Stay up to date with emerging threats, vulnerabilities and security research, and share insights with the wider team.
• Collaborate with internal stakeholders and external security testing partners.

You’ll bring:

• Experience or strong practical exposure to penetration testing.
• Knowledge of common attack techniques such as SQL injection, cross‑site scripting and privilege escalation.
• Understanding of web technologies, APIs, networking fundamentals and operating system security basics.
• Familiarity with industry‑standard penetration testing tools, frameworks and methodologies including OWASP Top 10.
• The ability to clearly communicate technical findings to both technical and non‑technical audiences.
• Strong analytical skills, attention to detail and a proactive approach to problem solving.
• A collaborative mindset with the ability to manage tasks independently and work effectively across teams.
• A passion for continuous learning and staying current with the evolving cyber threat landscape.

It would be great if you also have:

• Certifications such as CREST CRT, OSCP, eJPT or similar.
• Experience with cloud security, Dev Ops environments or CI/CD pipelines.
• Scripting or automation skills in Python, Power Shell or Bash.
• Knowledge of security standards or frameworks such as ISO 27001, PCI DSS or NIST.
• Experience contributing to process improvements, tooling enhancements or service development initiatives.

• Up to 20% bonus.
• BAYE, SAYE and performance share schemes.
• Life assurance.
• Flexible benefits package.
• Excellent staff travel benefits.

This is a full‑time position based at our Luton HQ offices. We support hybrid working and encourage time spent together as a team.

At easy

Jet we are dedicated to fostering an inclusive workplace that reflects the diverse customers we serve across Europe. We welcome candidates from all backgrounds.