We’re looking for an enthusiastic and motivated penetration tester with the ability to scope and deliver a range of assessment types including mobile, thick client and containerised solutions.
You’ll be used to working in a fast-paced, dynamic environment, functioning as part of a multi-disciplinary team where you have been responsible for maintaining high standards of operational output.
You will be expected to work independently and proactively to ensure that penetration tests are completed successfully, and the findings are understood by key stakeholders.
You will have significant experience in delivering penetration tests from scoping to reporting and triage activity. You will be able to perform tests across a wide range of system and software stacks.
Communication skills are vital for the role. You must be comfortable explaining the risks of identified findings to non-technical stakeholders.
You will be required to undertake continuous training to meet the technical requirements of a business undergoing significant transformation and adoption of new technologies.
Protecting our members' data and finances is at the heart of what the Security & Resilience teams do. We operate technical controls to help ensure that vulnerabilities are identified and reported to key stakeholders. As part of the Technical Vulnerability Identification (penetration test) team, this is an exciting opportunity to have a real impact on the security of our enterprise.
We are happy to consider flexible working approaches to help you perform at your best.
This role is a 6 month Fixed-Term Contract.
What you’ll be doing
Your core responsibilities will be to apply methodologies and tooling to test for the presence of security vulnerabilities in Nationwide and supplier systems to meet strategic, operational and tactical objectives.
You’ll be effective at communicating with senior stakeholders and you will be adept at articulating technical vulnerabilities and making recommendations in layman’s terms.
The successful candidate will be able to demonstrate an excellent understanding of, and experience in, a diverse range of technologies, with a clear focus on security.
In addition, you will have a detailed understanding of penetration testing methodologies together with a keen interest in the future of cyber security issues faced by financial organisations.
The individual we are looking for will have a strong delivery focus, be self-motivated with a positive can-do attitude and will be eager to seek out new challenges. You will also be able to mentor and support more junior members of the team, leaning on your extensive and varied experience.
About you
We are looking for someone who has:
* Significant experience of undertaking penetration tests, for highly resilient solutions.
* Detailed knowledge of penetration testing tools, techniques and methodologies.
* Formal industry recognised qualification, e.g. CSTM, CRT, OSCP, OSEP.
* Be a resilient and a highly motivated self-starter who relishes a challenge and is able to work independently or as part of a close-knit team.
* Experience of testing cloud services, API-based technologies, containerised solutions and mobile applications.
The extras you’ll get
There are all sorts of employee benefits available at Nationwide, including:
* A personal pension – if you put in 7% of your salary, we’ll top up by a further 16%
* Up to 2 days of paid volunteering a year
* Life assurance worth 8x your salary
* A great selection of additional benefits through our salary sacrifice scheme
* Wellhub – Access to a range of free and paid options for health and wellness
* Access to an annual performance related bonus
* Access to training to help you develop and progress your career
* 25 days holiday, pro rata
What to do next
If this role is for you, please click the ‘Apply Now’ button. You’ll need to attach your up-to-date CV and answer a few quick questions for us.
We respond to everyone, so we will be in contact shortly after the closing date to let you know the outcome of your application.
#J-18808-Ljbffr