Vacancy at Reliance Cyber
Senior Penetration Tester
Salary
£ 50,000 - 80,000
Remote working, with travel to London office and client sites
Vacancy listed
08/07/2024
Application deadline
30/09/2024
Details
About the role
At Reliance Cyber, we believe in truly partnering with our customers. Dedicated to safeguarding organisations in today's digital landscape, we protect our clients security infrastructure with a 24/7 monitoring service and professional services.
We’re excited to share a highly rewarding and hands-on opportunity for a Senior Penetration Tester to join our growing team. You will be responsible for conducting penetration tests,
vulnerability assessments, and reporting findings to help detect security vulnerabilities in enterprise environments. You should have a firm grasp of networking, system administration, and
web application security. The ability to think outside the box and go beyond conventional attack paths and exploits is highly valued by our team. You’ll collaborate with colleagues in Advisory, Incident Response and Managed Security Services
to offer a holistic blend of services that support the full range of clients cyber security requirements.
What you'll be doing
This technical delivery role is based in the Professional Services team and reports directly to the Head of Penetration Testing. In addition to testing, your role will include scoping, peer review
quality assurance, and client expectation management.
Duties and Responsibilities
At Reliance Cyber, we believe in truly partnering with our customers. Dedicated to safeguarding organisations in today's digital landscape, we protect our clients security infrastructure with a 24/7 monitoring service and professional services.
We’re excited to share a highly rewarding and hands-on opportunity for a Senior Penetration Tester to join our growing team. You will be responsible for conducting penetration tests,
vulnerability assessments, and reporting findings to help detect security vulnerabilities in enterprise environments. You should have a firm grasp of networking, system administration, and
web application security. The ability to think outside the box and go beyond conventional attack paths and exploits is highly valued by our team. You’ll collaborate with colleagues in Advisory, Incident Response and Managed Security Services
to offer a holistic blend of services that support the full range of clients cyber security requirements.
What you'll be doing
This technical delivery role is based in the Professional Services team and reports directly to the Head of Penetration Testing. In addition to testing, your role will include scoping, peer review
quality assurance, and client expectation management.
Duties and Responsibilities
- Scope and deliver penetration testing exercises.
- Identify and assess vulnerabilities in systems and applications utilising manual and automated testing methods to find and exploit code flaws, misconfigurations, and insecure software
- Write clear and concise penetration testing reports detailing findings and recommendations
- Provide recommendations for remediation of identified vulnerabilities
- Take a consultative approach to working with clients, supporting post-assessment activities
- Keep cybersecurity training and knowledge current by monitoring the latest security threats and vulnerabilities
Skills and Experience
You will need to demonstrate sound experience of working in a similar role, and of providing excellent customer service in a consultancy environment.
The following list is indicative of skills which would be considered relevant and transferable but not exhaustive.
Essential
- At least four years’ experience as a penetration tester
- Recognised certifications such as CREST Certified Tester (CCT), Offensive Security Certified Professional (OSCP) or Cyber Scheme Team Leader (CSTL)
- Experience with penetration testing tools and frameworks
- Strong knowledge of operating systems and networks such as Linux, Windows, and Active Directory
- Knowledge of web application security, including experience with web application scanners and manual testing techniques
- Proficiency in a programming language such as Python, JavaScript, or C++
- Strong communication and report-writing skills
- A creative problem-solver, you take a collaborative approach, and like to roll your sleeves up and get involved in removing barriers and finding simple effective solutions
- Keenness to support pre-sales and scoping activities
- Keenness to support pre-sales and scoping activities
Desirable
- 'Double qualified’ CTSL / CCT in both applications and infrastructure
- Experience with cloud and container technologies like AWS, Azure, and Kubernetes
- Specialist skills in niche technologies, such as ICS
- Degree or Masters in a relevant subject
- A background in an IT-related field, such as software engineering, sysadmin or network security engineering
- Certified vendor certifications from major providers like Microsoft (MCP) or Cisco (CCNA Security)
- Experience in a rapidly growing team, establishing new processes and procedures to support efficient and high-quality client delivery
We hope that like us, you will be excited about the varied range and fast pace of this key role. We’re looking for candidates with the right behaviours and mindset, as well as hands-on technical
competency. We look forward to meeting you.
Benefits
26 Days’ holiday plus bank holidays
5% Employer pension contribution
Life assurance and private medical insurance
Training and Professional development