Job Specifications
Whitehall Resources are looking for a PEN Tester. This role is hybrid working with 3 days per week onsite in Woking, and the remainder remote working, for an initial 6 month contract.
***Due to the nature of the work, the client required active SC Clearance***
***Inside IR35***
Role Description:
A Penetration Tester plays a vital role within the UK’s cybersecurity industry, particularly when assisting organisations with managing and mitigating security risks.
The core responsibilities of a Penetration Tester are to identify vulnerabilities that are present in an organisation’s IT infrastructure, applications and networks through rigorous testing. Employing both manual and automated techniques to simulate real world attacks, this will assess a company’s security posture against any potential threats. Testers should also be responsible for maintaining an up-to-date knowledge of the ever-evolving threat landscape, adhering to ethical guidelines especially when handling sensitive data.
In addition to strong technical skills, a Penetration Tester also needs to be able to demonstrate strong communication skills so complex findings can be described to non-technical stakeholders.
Key Responsibilities:
- Conduct the full range of effective and comprehensive technical assessments and consultancy services to the highest standards
- Maintain an accurate and up to date knowledge of information security issues, keeping abreast of new technologies, methodologies, techniques, vulnerabilities and market trends and communicate this throughout the team
- Produce concise and accurate technical reports and executive summaries, in line with client and company expectations in accordance with the QA manual and within defined deadlines
- Participate in more specialist areas of technical assessments and consultancy services where required
- Participate in delivery of security management consultancy including IT Health Checks (ITHC), risk assessments and compliance and standards based audits, where required
- Engage with and fully participate in research & service development projects
- Ensure professional, coherent and relevant communication, using relevant language and at all times, behave in a manner that reflects the values of the client.
- Maintain confidentiality at all times
- Ensure that work is carried out in accordance with defined policies and procedures
- Complete all tasks in a manner that displays a commercial awareness, i.e. managing client expectations and ensuring that project tasks are completed on time and on budget
- Complete administrative duties, which include weekly timesheet and expense submissions
- Through the course of your duties, identify opportunities for further business development and growth and ensure that this is communicated to your line manager, the PMO and Sales department
- Where necessary assist the commercial team in the preparation of test scopes and proposals
- Carry out any other additional, reasonable and alternative tasks that may be required from time to time
Required skills, experience, and personal attributes:
- Proven experience (2-3 years) in an IT security role to CTM level is essential and have, or be able to attain SC clearance (UK Single National)
- Excellent written and verbal communication skills.
- Great organisation skills and ability to work in a pressurised environment whilst working towards and achieving deadlines.
- Use of MS Office software such as Word, Excel, Powerpoint
- Strong knowledge of penetration testing tools including (Burpsuite, Metasploit, Nmap) etc
- Good knowledge of multiple Operating Systems (OS) including Windows & *NIX
- Ability to configure network devices, firewalls, IDS/IPS devices and wireless technologies
- Document findings in detailed reports, providing clear recommendations for remediation
- Good understanding of common security standards and regulatory compliance such as GDPR, ISO27001 and PCI DSS
- An ability to work effectively and positively within a team and willing to collaborate and readily share knowledge and skills
MUST:
- Relevant degree/postgraduate degree
- CHECK Team Member qualification (CREST / CyberScheme)
- Experience in Cloud Security (AWS / Azure)
About the Company
We specialise in the provision of SAP, IT, and Data recruitment across the UK, Europe, the Middle East, and the US. You know from experience how specialist IT systems are the lifeblood of a major company. Essential for efficiency, economy, and stronger results across the board, you need those systems to run smoothly and evolve with your business.
So make it happen with a recruiter who provides you with the very best IT specialists - every time and at the shortest notice.
Contact our teams via:
UK
T: +44 (0)1206 212101
E:...
Know more