Penetration Tester - SC CLEARED - Wokingham, Berkshire and remote - 5 months+ - START: JANUARY/FEBRUARY
(Tester, Test, Testing, Test Analyst, Test Engineer, Test Specialist, AWS, Azure, Cloud, Crest, CyberScheme)
One of our Blue Chip Clients is urgently looking for an SC Cleared Penetration Tester.
Please find some details below:
CONTRACTOR MUST HOLD ACTIVE SC CLEARANCE
MUST BE PAYE THROUGH UMBRELLA
Role Description:
A penetration tester plays a vital role within the UK's cybersecurity industry, particularly when assisting organisations with managing and mitigating security risks.
The core responsibilities of a penetration tester are to identify vulnerabilities that are present in an organisation's IT infrastructure, applications, and networks through rigorous testing. Employing both manual and automated techniques to simulate real world attacks, this will assess a company's security posture against any potential threats. Testers should also be responsible for maintaining an up-to-date knowledge of the ever-evolving threat landscape, adhering to ethical guidelines especially when handling sensitive data.
In addition to strong technical skills, a penetration tester also needs to be able to demonstrate strong communication skills so complex findings can be described to non-technical stakeholders.
Key Responsibilities
Work as a professional, deliverable Technical Consultant (Penetration Tester CTM), offering clients a totally professional customer service experience, whilst adhering to its core values and company policies and procedures
Conduct the full range of effective and comprehensive technical assessments and consultancy services to the highest standards
Maintain an accurate and up to date knowledge of information security issues, keeping abreast of new technologies, methodologies, techniques, vulnerabilities and market trends and communicate this throughout the team
Produce concise and accurate technical reports and executive summaries, in line with client and company expectations in accordance with the QA manual and within defined deadlines
Participate in more specialist areas of technical assessments and consultancy services where required
Participate in delivery of security management consultancy including IT Health Checks (ITHC), risk assessments and compliance and standards based audits, where required
Engage with and fully participate in research & service development projects
Ensure professional, coherent and relevant communication within our clients at an appropriate level, using relevant language and at all times, behave in a manner that reflects the values of the client. Maintain confidentiality at all times
Ensure that work is carried out in accordance with defined policies and procedures
Complete all tasks in a manner that displays a commercial awareness; ie managing client expectations and ensuring that project tasks are completed on time and on budget
Complete administrative duties, which include weekly timesheet and expense submissions
Through the course of your duties, identify opportunities for further business development and growth and ensure that this is communicated to your line manager, the PMO and Sales department
Where necessary assist the commercial team in the preparation of test scopes and proposals
Carry out any other additional, reasonable and alternative tasks that may be required from time to time
Required skills, experience and personal attributes:
Proven experience (2-3 years) in an IT security role to CTM level is essential and have, or be able to attain SC clearance (UK Single National)
Excellent written and verbal communication skills. Great organisation skills and ability to work in a pressurised environment whilst working towards and achieving deadlines. Use of MS Office software such as Word, Excel, Powerpoint
The ability to travel customer locations.
Strong knowledge of penetration testing tools including (Burpsuite, Metasploit, Nmap) etc
Good knowledge of multiple Operating Systems (OS) including Windows &.NIX
Ability to configure network devices, Firewalls, IDS/IPS devices and wireless technologies
Document findings in detailed reports, providing clear recommendations for remediation using in-house developed reporting tool.
Good understanding of common security standards and regulatory compliance such as GDPR, ISO27001 and PCI DSS
An ability to work effectively and positively within a team and willing to collaborate and readily share knowledge and skills
MUST:
Relevant degree/postgraduate degree
CHECK Team Member qualification (Crest/CyberScheme)
Experience in Cloud Security (AWS/Azure)
Please send CV for full details and immediate interviews. We are a preferred supplier to the client.