Programmes & Impact
Become A Member
Discover
Events

Job Directory

Senior Penetration Tester - Growing Cybersecurity Consultancy

Posted by Cortida Limited

06 March 26

Description:

Excellent opportunity for a Senior Penetration Tester to join a highly skilled and growing CREST-certified cybersecurity consultancy committed to excellence, innovation and integrity.

The company offers great career progression opportunities, a generous training and development budget and time to support research projects that allow you to break new ground in testing. You will need to be enthusiastic about continuous development and either have or wish to gain a current CRT qualification.

The role is predominantly home based although will include some travel to customer sites and attendance at company meetings as needed.

Role Info:

Senior Penetration Tester
Home based with visits to client sites and company meetings as required
Up to £80,000 Per Annum

Benefits: 23 days holiday plus Bank Holidays and extra days based on service, 6% contributory pension and career progression opportunities.
Growth: A structured career development plan and training
Hours: 09:00 am to 17:30 pm Monday – Friday

Development Opportunity: Career progression and training opportunities available

Company: Specialist information and cyber security consultancy and audit services

Company Values: We stand for honesty, integrity and fair practice and are committed to delivering value in every client engagement. Our people are creative, pragmatic and passionate about our purpose.

Your Skills / Background: 4+ years hands-on penetration testing experience and ideally an existing CRT qualification or the aspiration to gain the qualification. You will also be a tenacious problem solver and good communicator.

The Senior Penetration Tester Opportunity:

As Senior Penetration Tester, you will support our clients by delivering excellent penetration testing services and cloud security assessments that are ultimately articulated in high quality and valuable reports. In return, you will work in an inspiring environment with a team of highly experienced colleagues working across a diverse range of interesting security and assurance projects.

This role also includes excellent progression opportunities as we always match enthusiasm and skill with training, opportunity and structured development plans, and support/sponsorship to attain future qualifications.

Key Responsibilities:

  • Delivering high quality infrastructure, applications (including APIs and mobile apps), wireless, segmentation and breakout penetration tests, along with cloud security assessments
  • Working with client teams to research potential vulnerabilities and then plan accordingly

  • Working with clients to research and identify new and emerging attack vectors
    Conducting vulnerability assessment scanning and unauthorised host discovery exercises
  • Analysing findings and translating them into actionable recommendations
  • Delivering high-quality technical reports, outlining technical and business risk
  • Providing support to clients during on-going incidents
  • Creating and developing tooling, knowledge/threat libraries, methodologies and policies that ensure high quality and informed testing assessments are undertaken
  • Creating and developing internal documentation to ensure our reporting is meaningful
  • Authoring appropriate thought leadership papers, articles, online posts, and marketing materials

About You:

  • A tenacious tester with 4+ years' demonstrable hands-on penetration testing experience
  • Have mastered a variety of security testing tools
  • Current and relevant technical understanding of technologies, security threats and trends
  • Familiar with security standards
  • Strong demonstrated ability to take vulnerabilities and articulate the actual business risk along with good reporting writing and client presentation skills
  • Current CRT, OSCP and/or CTM / CTL qualification would be advantageous, but we are also considering applications from candidates with relevant work experience who would be ready and keen to obtain these qualifications in the near future (with relevant company sponsorship)
  • The desire to gain new skills, continuous learning and development, attend training courses and obtain future qualifications / accreditations
  • Strong verbal and written communication skills including report writing
  • Eligible to work in the UK or Channel Islands and obtain Government clearance (ILR is required as a minimum, but we are unfortunately not able to offer sponsorship)

About Us:

We are a specialist information and cybersecurity consultancy and expert at understanding information security risks, creating appropriate security destinations and protecting clients from a range of security threats.

Services include:

  • Security consulting across the area of security governance, risk, compliance and standards alignment
  • Penetration testing
  • Security architecture for cloud and infrastructure
  • Detection and response
  • Fractional heads and virtual support
  • NCSC Assurance service provider for Cyber Essentials and a Certifying Body
  • Security auditing across varying standards such as ISO27001, NIST, PCI DSS and Cyber Essentials
  • Training and awareness
Job Details & Apply