Principal Penetration Tester
Salary £ 70,000 - 100,000
Remote working, with travel to London office and client sites
Vacancy listed 09/07/2024
Application deadline 30/09/2024
Details
About the role
At Reliance Cyber, we believe in truly partnering with our customers. Dedicated to safeguarding organisations in today's digital landscape, we protect our clients security infrastructure with a 24/7 monitoring service and professional services.

We’re excited to share a highly rewarding and hands-on opportunity for a Principal Penetration Tester to join our growing team.  You will be responsible for conducting penetration tests, applied research, and working closely with our clients to enhance security outcomes. The ability to think outside the box and go beyond conventional attack paths and exploits is highly valued by our team.

You’ll collaborate with colleagues in Advisory, Incident Response and Managed Security Services to offer a holistic blend of services that support the full range of clients’ cyber security requirements.

What you'll be doing?
This technical delivery role is based in the Professional Services team and reports directly to the Head of Penetration Testing. In addition to testing, your role will include cybersecurity research, scoping, peer review quality assurance, and creating technical client-facing content (blogs, talks).

Duties and Responsibilities:
  •  Scope and deliver penetration testing exercises
  • Identify and assess vulnerabilities in systems and applications utilising manual and automated testing methods to find and exploit code flaws, misconfigurations, and insecure software
  • Write clear and concise penetration testing reports detailing findings and recommendations 
  • Perform applied research in collaboration with other internal teams
  • Create blog post and talks relating to key research areas of interest 
  • Provide recommendations for remediation of identified vulnerabilities 
  • Take a consultative approach to working with clients, supporting post-assessment activities 
  • Keep cybersecurity training and knowledge current by monitoring the latest security threats and vulnerabilities 

Skills and Experience: 
You will need to demonstrate sound experience of working in a similar role, and of providing excellent customer service in a consultancy environment. 
The following list is indicative of skills which would be considered relevant and transferable but not exhaustive.
Essential:
  • At least six years’ experience as a penetration tester 
  • Recognised certifications such as CREST Certified Tester (CCT), Offensive Security Certified Professional (OSCP) or Cyber Scheme Team Leader (CSTL)
  •  Experience developing tools and doing applied research 
  • Strong knowledge of operating systems and networks such as Linux, Windows, and Active Directory 
  • Knowledge of web application security, including experience with web application scanners and manual testing techniques 
  • Proficiency in a programming language such as Python, JavaScript, or C++
  • Strong communication and report-writing skills 
  • A creative problem-solver, you take a collaborative approach, and like to roll your sleeves up and get involved in removing barriers and finding simple effective solutions 
  • Keenness to support pre-sales and scoping activities 
Desirable:
  • ‘Double qualified’ CTSL / CCT in both applications and infrastructure 
  • Experience with cloud and container technologies like AWS, Azure, and Kubernetes
  • Specialist skills in niche technologies, such as ICS 
  • Degree or Masters in a relevant subject 
  • A background in an IT-related field, such as software engineering, sysadmin or network security engineering 
  • Experience writing highly technical blogs and speaking at conferences 
  • Experience in a rapidly growing team, establishing new processes and procedures to support efficient and high-quality client delivery 

We hope that like us, you will be excited about the varied range and fast pace of this key role. We’re looking for candidates with the right behaviours and mindset, as well as hands-on technical competency. We look forward to meeting you. 


Benefits

26 Days’ holiday plus bank holidays
5% Employer pension contribution
Life assurance and private medical insurance
Training and Professional development


This vacancy has now been closed