Job Title: Senior Penetration Tester
Job Description
As a Senior Penetration Tester, you will play a crucial role in safeguarding our Identity products by conducting comprehensive penetration tests to identify and mitigate potential security vulnerabilities. Day-to-day work consists of picking up a pentest from our internal board and delivering end-to-end security assessments. You will be part of a dynamic team dedicated to maintaining the highest security standards for our products and services.
Responsibilities
Lead security assessments and penetration testing efforts for a variety of Identity products.
Develop and execute test plans, scenarios, scripts, or procedures with a focus on uncovering weaknesses and vulnerabilities.
Analyse, disassemble, and reverse engineer code to discover vulnerabilities and recommend mitigations.
Document security findings with detailed descriptions, impactful severity, and actionable remediation strategies.
Collaborate with product development teams to understand system architecture and design to pre-emptively address security concerns.
Mentor junior team members and contribute to the development of internal penetration testing tools and processes.
Stay abreast of industry trends, emerging threats, and new tools and technologies in the security space.
Essential Skills
Bachelor’s or master’s degree in computer science, Information Security, or a related field.
Minimum of 5 years of experience in penetration testing or security research.
Proficiency in programming languages such as Python, Ruby, Java, or C/C++.
Deep understanding of network protocols, cryptography, web application vulnerabilities, and attack vectors.
Familiarity with security testing tools such as Metasploit, Burp Suite, OWASP ZAP, and others.
Strong analytical and problem-solving skills.
Excellent written and verbal communication skills for reporting and collaborating with various stakeholders.
Additional Skills & Qualifications
Industry-recognised certifications such as OSCP, OSCE, GWAPT, or GPEN.
Prior experience with cloud security and services, particularly Microsoft Azure.
Knowledge of regulatory compliance standards such as PCI DSS, HIPAA, GDPR, etc.
Why Work Here?
Enjoy the flexibility of remote work and the opportunity to immerse yourself in new technologies. You will have the chance to mentor junior team members and act as a leader, contributing to both your personal and professional growth.
Work Environment
The work environment is remote, allowing you to work from the comfort of your home. You will engage with cutting-edge technologies and collaborate with a highly skilled team dedicated to maintaining the highest security standards. The role offers a dynamic and supportive atmosphere that encourages continuous learning and professional development.
Job Type & Location
This is a fully remote UK role
Location
Reading, UK
Rate/Salary
500.00 - 500.00 GBP Daily
Trading as TEKsystems. Allegis Group Limited, Maxis 2, Western Road, Bracknell, RG12 1RT, United Kingdom. No. (phone number removed). Allegis Group Limited operates as an Employment Business and Employment Agency as set out in the Conduct of Employment Agencies and Employment Businesses Regulations 2003. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, Talentis Solutions, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at (url removed)>
To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go to (url removed)>
We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice at (url removed)/en-gb/privacy-notices for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. If you are resident in the UK, EEA or Switzerland, we will process any access request you make in accordance with our commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield