What is the opportunity?
As a Junior Penetration Tester, you will support the security team in identifying and validating vulnerabilities across web applications, mobile applications, APIs, and infrastructure components. Working under the guidance of senior testers, you will help strengthen the organisation’s security posture through hands‑on security testing, analysis, and reporting.
In this role, you will:
Perform supervised penetration testing of web, mobile, and API applications
Assist with network and infrastructure scanning using standard security tools
Retest vulnerabilities to confirm successful remediation
Provide basic remediation guidance to engineering teams
Participate in ad?'hoc threat modelling and security discussions
Assist in assessing impact and likelihood of identified findings
Log, track, and follow up on vulnerabilities using internal systems
Work with product and application teams on remediation progress
Support preparation of vulnerability summaries and status reports
Help tune scanning configurations and reduce false positives
Maintain working knowledge of application and infrastructure testing tools
What will make you stand out?
The ideal candidate will have a solid understanding of core web technologies, including HTTP, APIs, authentication, and session management, along with knowledge of the OWASP Top 10 and common application vulnerabilities. They should have exposure to penetration testing tools such as Burp Suite, Nmap, and Kali Linux, as well as familiarity with SAST, DAST, and SCA tooling. Basic scripting ability in Python, PowerShell, or Bash is important, and an awareness of cloud security concepts?"across AWS, Azure, or GCP?"is beneficial.
Strong analytical and problem?'solving skills are needed, supported by clear communication abilities to explain findings to technical teams. The role also requires a collaborative mindset, a willingness to learn from senior testers, and a high level of attention to detail, particularly when documenting vulnerabilities and assessment outcomes.
Experience with any of the following will help you to stand out but is not vital in order to apply for this role;
CompTIA Security+
eLearnSecurity eJPT / eWPT
Essential Qualifications
Related qualification in cybersecurity or computer science
More about the team
Group Information Security and Resilience (GISR) is a diverse, collaborative team with multiple skillsets. With global cyber threats constantly evolving, the team is essential to protecting one of the Group’s most important and valuable assets: Information.
GISR not only protect the security of the Bank but also enable colleagues to develop secure ways of working and to help them manage information security risk.
This is a hybrid role, based primarily at Baggot Plaza or Cabinteely, Dublin. We typically ask colleagues to spend a minimum of 8 days per month working in‑person to support collaboration and connection. Specific arrangements will be confirmed by your recruiter to ensure they meet the needs of the role and team.
Why work with us?
The Bank of Ireland company culture prioritises work‑life balance with a commitment to hybrid working, along with 25 days annual leave and excellent pension contributions. Family can mean different things to different people; we offer 6 months paid maternity leave, an innovative fertility and surrogacy policy along with working parent and carer supports.
Your health and wellbeing is important to us; we offer a substantial health insurance contribution, employee assistance program, WebDoctor and financial wellbeing coaches available. We also encourage and support staff to pursue educational and professional qualifications to grow and enhance your career!
Key Competencies
Customer Focused - Self
Better together - Self
Be Decisive - Self
Take Ownership - Self
Manage Risk - Self
We’re on a continuous journey to build an inclusive and diverse workplace. We welcome applications from people of all backgrounds, lived experience, abilities and perspectives. We provide reasonable accommodations at every stage of our recruitment process for disabilities, neurodivergence or medical conditions. If you require an accommodation please complete this form and one of our recruitment team members will be in touch via email. Any information provided will be treated as confidential within the recruitment team and used only for the purpose of determining and providing appropriate accommodations for the application and recruitment process.
#J-18808-Ljbffr