Penetration Testing & Vulnerability Assessment:
2 days on site in Farnborough and occasional travel to London office
Full-time - Open to permanent (priority) and to contractors inside IR35
Conduct and oversee regular penetration tests and vulnerability assessments on applications, networks, systems, and infrastructures.
Identify, exploit, and document vulnerabilities, including demonstrating the business impact of potential exploits.
Analyse and prioritise vulnerabilities based on risk and provide detailed technical reports with recommended remediation steps for developers and system administrators.
* Keep up to date with the latest security vulnerabilities, exploits, and attack methodologies to ensure effective penetration testing.
* Minimum of 5-7 years of experience in information security, with at least 3 years focusing on penetration testing, vulnerability assessment, and application security.
* Proven track record of executing penetration tests and exploiting vulnerabilities in complex systems and applications.
* Experience with vulnerability scanning tools (eg, Nessus, Qualys, OpenVAS) and penetration testing tools (eg, Metasploit, Burp Suite, Kali Linux).
* Familiarity with common security frameworks and compliance requirements (eg, NIST, ISO 27001, GDPR, PCI-DSS)
* Relevant certifications (eg, CEH, OSCP, CISSP, CISM, GIAC) are strongly preferred.