Penetration Tester

As part of the team, you’ll be responsible for leading attack and penetration testing engagements to identify security weaknesses within client’s IT environments, reporting on issues and making recommendations for their remediation. You will be involved in vulnerability management engagements which include: network and host layer vulnerability assessments, firewall and networking device reviews, web application assessments, source code reviews and targeting the physical security of the infrastructure or buildings.

Responsibilities:

  • Ability to solve complex security issues and clearly explain sophisticated technical concepts
  • Performing a variety of security testing assignments against infrastructure and applications
  • Have excellent TCP/IP knowledge and understanding of security implications over the OSI model
  • Deliver high quality work to meet client expectations and project deadlines
  • Developing and quality assuring security test reports
  • Develop and amend internal tools, labs and associated security devices
  • Participate in creating of policies, testing methodologies and guidelines for penetration testing across the group

Qualifications and Skillsets:

  • Solid knowledge and experience in network and web application penetration testing
  • Experience of conducting infrastructure security assessments against Windows, Linux and Unix based networks
  • Use of a variety of network security testing tools and exploits to identify vulnerabilities and recommend corrective action
  • Development and source code review experience in C/C++, C#, VB.NET, ASP, PHP, or Java
  • Ability to write and exploit code/assessment tools
  • Qualifications in the following: CEH, CREST, CESG
  • A minimum of five years’ experience testing in a professional environment
  • Excellent written and verbal communication skills