This job is no longer available.
You can view related vacancies or set-up an email alert notification when similar jobs are added to the website using the buttons below.

Penetration Tester - Hertfordshire

jk3011_1543599254
£30000 - £40000 per annum
UK

Managing this Role

image

Josh Keeley

Manager - Cyber Specialist 0207 759 7878

With six years’ experience as an IT engineer within the Royal Marines, Josh has a strong network of ex-services CTI analysts and CCTIM qualified managers. Bringing sound technical knowledge and in-depth market expertise, Josh works with consultancies, defence, MSSPs and TIPs; from rapidly-growing start-ups to established global enterprises.

 

Roles recruited: CTI analysts, CCTIM managers

Seniority: Junior-Senior

Job Type: Permanent

Geographical coverage: London

Market: Cyber threat intelligence, TIP’s and Professional Services

This is your chance to work with a leading Information and cyber security provider who are looking to increase their Red Team capability. You will have the ability to penetrate and test internal networks whilst also maintaining the ability to respond to a full scale attack before it's even begun.

Role Responsibilities

  • Perform formal and comprehensive application and infrastructure penetration testing assessments, following industry best practices
  • Provide well-written and concise technical and non-technical reports, prepared to the highest standards of written English
  • Perform vulnerability assessments and provide findings with remediation actions
  • Support with various client pre-engagement interactions, including scoping activities and proposal drafting
  • Manage and deliver penetration testing project activities within strict deadlines
  • Travel to client sites as required
  • Research application and infrastructure components within the wider team to identify new vulnerabilities and follow responsible disclosure
  • Take part in a variety of other information security projects as and when required

Qualifications

  • Proven industry experience in application and infrastructure penetration testing
  • Strong understanding of OWASP, PTES and other penetration testing methodologies
  • Strong knowledge in testing mobile applications (iOS/Android)
  • Knowledge of how modern web apps are designed, developed and deployed across different platforms
  • Strong knowledge in preparing and launching social engineering campaigns.
  • Ability to program or script in your preferred language
  • Good understanding of network and OS principles
  • Solid knowledge of various technologies, including associated security vulnerabilities and exploits
  • Relevant security qualifications (such as OSCP, CREST CRT, TIGER)
  • Superb written and spoken English skills are vital for compiling high-quality reports and liaising with clients

If you think you are up for a new challenge of deterring the current Cyber Security attacks then apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.


This job has now been filled but you may be interested in:

 

Penetration Tester - Contract - £550 pd

My Client, an exciting multinational technology company is seeking a TIGER/CREST Team Member Security Consultant to join their team comprising of dedicated people; experts in defence, aerospace, security and related markets.

Role:

You will join the expanding Security Health Check Penetration Testing team that delivers world-class consulting, as well as undertaking service development and sales support activities.

As one of the Testers you'll be a hugely important part of my client's integrated service delivery. You'll be working with a variety of clients and be involved in different parts of the project, from scoping, to solutions design to downstream testing. The roles are varied and challenging, so you'll find yourself engaged in a variety of tasks, including application and infrastructure testing, "Red Teaming", Advanced Intrusion Testing, and cyber and digital resilience.

With a strong commitment to personal development my client will be providing you with funded research to enhance their penetration testing capabilities.

The roles are client-facing so you'll need to have the flexibility to travel to client sites and be comfortable liaising at both a management and technical level.

Required qualities:

  • Hold a current Team Member certificate - either TIGER or CREST - and have deep technical knowledge of hacking and penetration testing techniques, methodologies and tools across all common platforms.
  • Active CHECK status is highly desirable although my client can support you through the process if needed.
  • As you're dealing with clients you'll need to have good communication and stakeholder management skills along with attention to detail and report writing skills.
  • You'll also need great time management so that you can balance scheduled client engagements with directing your own research to keep up to date with the latest vulnerabilities, attacks, and countermeasures.
  • You'll also need to have or be able to gain UK security clearance and hold a UK driving licence.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Security Consultant

Security Consultant

Independently perform internal and external vulnerability assessments, and web application penetration testing

Reporting to: Director of Cyber

Location: Homebased

Department/ Division: Cyber Solutions

Main Duties/ Responsibilities:

  • Independently perform internal and external vulnerability assessments, and web application penetration testing
  • Undertake security assessments of network devices, firewalls, Windows, Linux servers and miscellaneous appliances
  • Work effectively as part of a team and alone to deliver an excellent standard of consultancy services clients.
  • Effectively communicate risk both technically and to a C level executive
  • Produce reports to excellent technical and literate standards
  • Deliver work under the CHECK scheme or to CHECK standards

Required Skill Set & Experience:

  • CHECK or equivalent qualifications such as CREST CCT, CREST CRT, Tigerscheme SST, Tigerscheme QSTM
  • Can hold (or already have) UK Government Clearance to SC level

Education

Degree level qualification (2:2 or above) BSc in an IT related field; Computer Science or Cyber Security related degrees are desirable or 3 years' experience in cyber security

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Security Consultant - Testing - Defence Contract

We are recruiting for a TIGER/CREST Team Member IT Security Consultant to work for a leading Consultancy based in the UK - active CHECK status is a bonus.

You will offer clients the flexibility to switch between application and infrastructure testing and adding value to their "Red Teaming" service, Advanced Intrusion Testing, offering skills which would normally fall outside of traditional penetration testing.

As a client-facing professional, you must be highly experienced and credible operating at both technical and management levels. You will be adaptable and flexible in your work and a positive attitude is essential. In return, you will be given the opportunity to work with a broad range of client organisations, alongside some of the best consultants in the security industry.

There is scope to learn from colleagues as well as to contribute to enhancing the Penetration Testing capabilities through service specialisation and funded personal research.

Required Experience

  • Current Team Member certificate, CREST or TIGER.
  • UK security clearance to SC or DV level.
  • Strong desire to get root.
  • Strong work ethic.
  • Good communication skills.
  • Willingness to travel to customer sites in the UK and Europe.
  • Excellent report writing skills coupled with an acute attention to detail.
  • Deep technical knowledge of hacking and penetration testing techniques, methodologies and tools across all common platforms.
  • The energy to use time between scheduled engagements constructively to direct your own research in order to keep current with vulnerabilities, attacks, and countermeasures.
  • The ability to effectively manage time and workload on individual and team engagements, cooperating with clients and managing stakeholder expectations.

Desirable Experience

  • Active CHECK status
  • Willingness to support the sales team to develop engagement opportunities.
  • Ability to scope security assessments and deliver them on time and within budget.
  • The willingness to work with other parts of the organisation to provide benefit of knowledge base and experience within information systems security.
  • Evidence of on-going personal development in the penetration testing space e.g. research and development.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Senior Security Analyst- Testing

Senior Cyber Security Analyst

We are working with a leading technology and security provider that due to high demand are growing their London Red Team.

You will work with key industry figures, focusing on infra/web testing on government sites, based in London.

This is a fantastic opportunity to work for a supportive company, whereby your career will grow along with the business. They will support your personal development with paid courses e.g. CREST, CHECK, TIGER, OSCP.

The role:

  • Working as an embedded penetration tester, onsite with clients
  • Assisting with the establishment and building of a new Red Team
  • Analysing diverse sources of technical data to identify suspicious activity or suspected cyber attacks
  • Monitoring operational security management systems - ensuring timely detection, investigation and remediation of potential cyber threats
  • Using advanced security analytics tools to determine emerging threat patterns and vulnerabilities
  • Providing security incident triage and investigation, and management of cyber response processes
  • Completing client projects and tasks associated with security monitoring, detection, incident response and security intelligence
  • Continually seeking to build a greater understanding of a cyber problem until all the facts have been established
  • Creating cyber kill chains and managing investigation timelines
  • Perform administrative duties such as creating new types of data enrichment feeds, detection logic and threat intelligence reports

Essential knowledge:

  • Demonstrable recent experience working in a penetration testing role in high pressure environments
  • CRT - Crest Registered Tester and/or OSCP - Offensive Security Certified Professional
  • Ability to read and understand raw system data including security event logs, system logs, application logs, and device logs
  • A good knowledge of TCP/IP networks, including the technologies and protocols commonly used in local area and wide area
  • networks
  • Ability to recognise a sophisticated attack, and how to identify patterns within event data, threat intelligence and malware analysis
  • A good working knowledge of a variety of security technologies, including network and application firewalls, host-intrusion
  • prevention and anti-virus
  • Working knowledge of sysadmin for Linux and Windows
  • Working knowledge of Pen-testing methodology / common vulnerabilities
  • A basic knowledge and of common infrastructure and security architectures
  • Experience with vulnerability management tools and methodologies
  • Practical knowledge of the Cyber Security threat landscape and current affairs

Desirable:

  • BSc in Computer Sciences, Mathematics or Engineering (min 2:1) or equivalent.
  • CCT - Certified Web Application Tester and/or CCT - Certified Infrastructure Tester
  • Hold or working towards a security certification; SANS (e.g. GSEC, GCIA, GCIH, GPEN) or equivalent.
  • Relevant TCP/IP network experience, or certifications such as CompTIA Network or CCNA.
  • Familiarity with ISO27001 and other security standards
  • Red Team experience

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.