This job is no longer available.
You can view related vacancies or set-up an email alert notification when similar jobs are added to the website using the buttons below.

Penetration Tester

JC280917
£45000 - £50000

Blackthorn Trace have partnered with a Security Risk Consultancy firm based in Central London to invite another talented Penetration Tester to join their growing team. Our client is looking for a confident Penetration Tester that can communicate effectively with their Clients. 

The Penetration Testing position is intended to perform and support the core components of our Clients product and services offerings. 

The location of this role is in Central London HQ as well as being based on Client sites. The new Penetration Tester will be expected to work under minimal supervision, alone and within a team and under deadlines. 


Responsibilities:
• Identify, exploit and document security flaws and vulnerabilities with attack simulations on multiple projects working against specific client focused scopes of work.
• Ability to test a variety of client form factors and technologies based on scopes of work.
• Ability to solve complex technical problems and articulate to non-IT personnel.
• Ability to effectively provide technical risk assessment of technologies in networks applications, wireless, social engineering, code reviews and war dialling.
• Ability to perform vulnerability assessments and penetration testing, utilizing tools commercial and open source tools.
• Perform, review and analyse security vulnerability data to identify applicability and false positives.
• Research and develop testing tools, techniques, and process improvements.
• Create risk based security code reviews (static & dynamic.)
• Conduct penetration testing in line with Open Web Application Security project.
• Mentor junior engineers to build their skills and contribution levels.
• Write technical reports that include suggested resolution for identified problem areas and perform operational risk assessment.
• Support company through the testing and evaluation of new technologies and security controls.
• May require the performance of other essential functions depending upon work location or assignment.
Required Knowledge:
• Knowledge of security best practice guidelines, (ISO 17799, NIST, OWASP etc.)
• Relevant professional experience including working knowledge of the following.
• TCP/IP, HTML, XML, CGI, Python, Perl, Java, Java Script, C++, C#. .Net, networking including IP classes, subnets, multicast, NAT.
• WINS, DNS, and DHCP, Network troubleshooting.
• Microsoft OS, Active Directory and Server technologies.
• Encryption cracking tools
• Password cracking tools
• Remote access methods.
• Backup and disaster recovery methodologies.
• Patch management technologies and processes.
• Wireless protocols and services.
• Variety of testing tools such as: Paros, WebScarab, Burpsuite, Nessus, Appscan,
• Familiarity with UNIX a plus.


Required Skills:
• Design and testing experience related to security.
• Experience with security issues in large scale networks.
• Hands on experience with firewalls, routers, bridges, switches and gateway devices, appliances and software.
• Ability to grasp new technology concepts, quickly and assist others in understanding them as well.
• Senior-level documentation and project management skills.
• Ability to work in a team environment and interact with people.
• Strong verbal, communication and technical writing abilities.
• Project management skills.
• Possess strong leadership, coaching and mentoring skills.
• Occasional travel, possibly air travel.
• Ability to meet pressured deadlines and time constraints.


This job has now been filled but you may be interested in:

 

Intelligence Analyst (Content Protection)

We are working with a leading organisation within the UK's music industry, supporting them building an Intelligence function.

Working alongside other content protection specialists you will help to devise and deliver technical and practical strategies to protect digital and physical music content: including bringing precedent setting legal cases; delivering a world leading website blocking programme; removing infringing content from the internet; and disrupting illegal websites & traders. This role will have the view to eventually lead the team in the very near future.

The Role

Key responsibilities include:

  • Review, update & manage compliance with procedures, laws & regulations governing evidence, intelligence & investigation techniques & practices within the music anti-piracy field;
  • Manage the Intelligence Management System, including providing support to physical piracy investigators.
  • Investigate online intellectual property infringement and enforce content removal across a variety of online platforms;
  • Work one day per week seconded at the City of London Police Intellectual Property Crime Unit (PIPCU);
  • Liaise with law enforcement agencies & legal departments as required;
  • Prepare intelligence & evidence packages acceptable to law enforcement agencies for adoption & further investigation/prosecution, including submissions to PIPCU;
  • Manage test purchases as well as covert credit cards, covert drop addresses & covert social media accounts;
  • Support the organisations lobbying activities with ISPs & Digital Service Providers (DSPs).

Required:

  • Logical thinker & problem solver;
  • Meticulous in work output;
  • Ability to work cohesively within a team & efficiently alone - & ability to swap between the two seamlessly;
  • Previous experience in an online investigative capacity;
  • Strong analytical & presentational skills, including expert use of Excel & PowerPoint applications;
  • Strong knowledge of open source intelligence techniques;
  • Experience using a range of investigative case management & forensic tools;
  • Good working knowledge of IBM i2 & SQL databases;
  • Understanding of HTTP, DNS, TCP/IP;
  • Good understanding of web-hosting, internet registries, content delivery networks & advertising intermediaries;
  • Good understanding of digital piracy eco-systems and supporting technologies.

Desirable:

  • Law enforcement/Criminal law/cyber investigations background;
  • Experience in computer forensic and associated audit trail documentation;
  • Experience in writing witness statements;
  • Knowledge of copyright law.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Project Manager

Project Manager London

Blackthorn Trace has partnered with an innovative and market leading Business management consultancy based in the heart of London. They are looking to bring on a Project Manager based in their head office in London but should be expect to travel and work on client sites.

Key Responsibilities

o Good overall awareness of the key drivers of cyber security across all aspects of people, process, technology, information and culture

o Good overall awareness of the common components of a typical technology estate (client, server, network, storage, cloud services)

o Familiarity with relevant cyber security standards, to include NIST CSF, ISO 27001 and broader views of good practice e.g. Cyber Essentials

o Qualifications that are directly relevant (e.g. CISA, CISSP, CISM, CRISC) are desirable but not essential

Project and Programme Delivery Responsibilities

o Good overall awareness of the project and programme delivery lifecycle, to include the development of plans and budgets, tracking of outputs / outcomes, resourcing, management of risks / issues and stakeholder engagement

o Familiarity with recognised standards for project or programme delivery

o Qualifications that are directly relevant (e.g. APM, Prince2) are desirable but not essential.

This is a unique opportunity to be part of a leading consultancy and if this sounds like you apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Threat Intelligence Analyst

We are working with a leading start up Cyber Threat Intelligence Consultancy who due to consistent commercial wins are expanding. Based in London, the successful candidate will play a key role in gathering information on Cyber threats and turning it into actionable intelligence, enabling clients to better protect themselves.

Tasks will include:

  • Project managing bespoke engagements for clients
  • Shaping client requirements into appropriate outputs at all stages of the intelligence cycle
  • Taking responsibility for overseeing various aspects of our intelligence subscription service
  • Proactively identifying new opportunities to develop our subscription and bespoke services
  • Peer reviewing content produced by team members to enhance the quality of outputs
  • Contributing to the development of our technical collection infrastructure

There will also be considerable flexibility for the right candidate to go beyond this remit and shape the role in the pursuit of the company's goals, in the way they see fit.

Experience

  • Have several years experience in cyber threat intelligence, including experience managing the production of bespoke deliverables
  • Understand the commercial aspects of delivering
  • Be able to use their initiative and understanding to manage their own research efforts, and those of other team members
  • Communicate efficiently, both verbally and in writing. Additional languages are also desirable, especially where specifically relevant to areas of heightened cyber threat
  • Maintain excellent standards in their work and show a high degree of attention to detail
  • Be competent with the Microsoft Office suite.
  • Experience with additional research tools and software related to intelligence collection and analysis is also desirable.
  • Experience with programming in any scripting language is also desirable.
  • Have relevant formal qualifications (i.e. SANS, CCTIM, CISSP)

If you believe this is an opportunity where you can excel and grow personally and professionally then apply within for a confidential chat with one of our Consultants.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Penetration Tester

Blackthorn Trace has partnered with an innovative and market leading Business management consultancy. They are looking to hire Penetration testers to join their technical security functions both in their Cambridge and London offices.

Key Responsibilities

  • Deliver high quality security assessments, meeting client expectations
  • Support our sales team with pre-sales scopes and technical input
  • Produce written and verbal reports to clients to an excellent standard.
  • Share knowledge with colleagues and assist with the mentoring of other team members

Desired Requirements:

  • 2 years plus working as a full time penetration tester
  • Proficient in performing a variety of penetration tests such as infrastructure, web application, mobile application, secure code analysis etc.
  • Client oriented, able to communicate with all levels of an organisation with appropriate technical content
  • You will be at advantage if you hold either CREST or CBEST

Benefits

  • Encouragement to achieve and maintain CREST and other external certifications, which we allocate study time and funding for.
  • Support for you to develop your own personal profile within the industry through R&D and publishing vulnerabilities.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Penetration Tester

Penetration Tester

You will have a passion for ethical hacking and breaking technology, and a talent for finding the things that others may miss. This role will give you a chance to use those skills to help clients protect their information and improve compliance with laws, regulations and contracts.


Key responsibilities include:

  • Delivering comprehensive penetration tests in a wide variety of infrastructural environments;
  • Leading testing teams in larger engagements;
  • Guiding less experienced team members, assisting their development and completing sign-offs for the next stages of their development;
  • Supporting the business development process in providing scoping and estimating; and
  • Contributing to ever-improving service delivery standards.

You will have:

  • CREST CCT or CRT certification, or other eg. OSCP
  • At least two year's penetration testing experience within a client-facing role;
  • Experience in:
    • Internal infrastructure testing;
    • External infrastructure testing; and
    • Web application testing.
  • Excellent written and verbal communication skills.


Desirable skills and experience:

  • Mobile application testing
  • Hardware testing
  • PCI-compliant testing
  • PSN ITHC
  • API testing
  • Security clearance

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Information Security Specialist

INFORMATION SECURITY SPECIALIST

We have partnered with a top London based Law firm who are looking to bring on an Information Security Specialist to join their firm. You will be participating in Information Security improvement decisions, monitoring and reporting; and will be the sole port of contact for all cyber security related issues. The Information Security Specialist will report to CTO and also have a dotted line to the Managing Partner.

Responsibilities and knowledge

  • Network, Host, Application, Data, Operational Security and Compliance
  • Firewalls, Intrusion Detection and Prevention Systems
  • UTM and URL Filtering, Malware Protection
  • Encryption for Data at Rest and Data in Motion
  • VLANs, NAT, VPN, Remote Access, Virtualization, and Cloud Concepts
  • Wireless Security
  • Mobile Security
  • Ethical Hacking concepts such as: System Hacking, Sniffing, Session Hijacking, Reconnaissance, Footprinting, Scanning Networks, Honeypots, Malware Threats, Enumeration, Cryptography, Buffer Overflow, Denial of Service, Hacking Wireless Networks, SQL Injection, Penetration Testing.

Qualifications

  • Information Technology certifications on Security from EC-Council such as: CEH, ECSA, CNDA, etc.
  • A good degree, preferably a Bachelor of Science Degree

This is an amazing opportunity to join one of London's top law firms and if this role sounds like apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.