RoleCybersecurity

Pentester

Scope, recon, exploit, write the report nobody reads. Repeat next engagement.

The verdict

Far harder to break into than the marketing suggests, and the day-to-day is less glamorous than the highlight reels. Worth it only if the craft genuinely pulls you.

Pick this if

You've already got writeups, CTF solves or HTB ranks that prove the hands work
You'll happily write a 40-page report for every fortnight of testing
You can sit with not knowing the answer for days at a time
You enjoy reading other people's code more than writing your own

Skip this if

Your only credential is a cert and a LinkedIn headline
You want offensive work without the consultancy travel or scoping calls
You don't like being wrong in writing, in front of clients, every quarter

What "doing well" looks like in the seat

Your reports get used as templates by the rest of the team
You find things that aren't on the checklist
Clients ask for you by name on the rebook
You're shipping tooling or research between engagements, not just consuming both

The bit you're probably underestimating

The pay-to-skill ratio is worse than people think. Senior pentesters in the UK earn less than mid-level cloud engineers, and the ladder above mid is narrow: principal, lead, or out into red team and research. Consultancy life is also harder on home routine than it looks from outside, with travel, late report nights and an endless retest queue. If you're in it for the craft, the salary is fine. If you're in it for the salary, almost every other security path pays better.

Tradeoffs at a glance

Hover any chip for the calibrated meaning. Ratings are directional, not absolute.

Promotion ceiling

Moderate as IC; senior pentest / red team lead requires reputation.

Who actually gets in

+Sysadmin
+Developer
+Self-taught HTB grinders

Common misconceptions

−That OSCP unlocks the role, labs and writeups matter more.

Where this leads

Red Team
AppSec
Detection (purple)

Certifications people pair with this

Listed because the graph connects them to this role, not because you need all of them. Most practitioners pick one or two.

Pathways that pass through here

Offensive Security (Pentest / Red Team)
Hands-on offensive work. High ceiling, high effort, slow start. OSCP/PNPT biased. CISSP is NOT the path.

The serious next step

You've read about the role. The harder question is whether it's the right one for you.

A Career Verdict is the written, practitioner-authored call on your specific route into and out of this role. Six primitives, same format every time.

Plateau zone

The flat year nobody warns you about, named and timed.

Reality vs Fantasy

Your actual five-year curve against the one you've been sold.

What to sit and what to skip

Each cert on your list: useful, optional, or skip, with reasons.

The call

A single written judgment on whether your plan holds up.

Tradeoff spectrum

What you're giving up for what you're choosing, plotted.

Decisive factors

The two or three things that will actually make or break this.

See what a Career Verdict looks like £25 · one verdict, yours to keep

Built on POST's practitioner-authored assessment framework, calibrated by James from twenty years across helpdesk, infrastructure and security. Framework is human-authored; the verdict applies it to your inputs.

All roles