Bath, England, United Kingdom Hybrid / WFH Options
JR United Kingdom
Metasploit, etc. Excellent communication and reporting skills. Required Qualifications: Demonstrable experience in penetration testing (minimum 2 years preferred). Hold at least one of the following certifications: OSCP (OffensiveSecurityCertifiedProfessional) CRT (CREST Registered Tester) CCT-INF (CREST Certified Infrastructure Tester) #J-18808-Ljbffr More ❯
GDPR, PIPL etc) Knowledge of other regulatory or compliance frameworks such as ISO, PCI DSS, NIST etc Likely to hold at least one common security certification (CEH, CCSP, CISSP, OSCP) alongside other relevant IT certifications (ITIL, AMP, Prince2 etc) preferred Additional technologies/experience: Experience with any of the below technologies or in the below areas would be advantageous: Awareness More ❯
GDPR, PIPL etc) Knowledge of other regulatory or compliance frameworks such as ISO, PCI DSS, NIST etc Likely to hold at least one common security certification (CEH, CCSP, CISSP, OSCP) alongside other relevant IT certifications (ITIL, AMP, Prince2 etc) preferred Additional technologies/experience: Experience with any of the below technologies or in the below areas would be advantageous: Awareness More ❯
mitigation techniques Extensive tooling experience in Metasploit, Nmap, BloodHound, Eyewitness, Burp Suite, NIKTO, OWASP Zap, etc. Nice to have Qualifications such as: CRT, CHECK Team Member (CTM) or CSTL, OSCP, CSTL Be a Cyber Essentials Plus Auditor Experience with scripting languages such as Python, Bash, or PowerShell Experience with Mobile Application Penetration Testing. Waterstons perks As well as offering a More ❯
Testing Ensure different modules/components interact correctly. Test APIs, databases, and service flows. Security Testing & Penetration Testing (Ethical Hacking) Simulate attacks to find vulnerabilities. Certifications such as CEH , OSCP , CISSP are advantageous. Vulnerability Testing Scan systems for vulnerabilities. Collaborate with SecOps and DevSecOps teams. Security QA/Secure Code Testing Test from a secure coding perspective. Ensure compliance with More ❯
tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. Executive summary for non-technical stakeholders. Technical breakdown of findings with severity and impact. Recommended mitigation guidance (no implementation expected). Why Join Us? Remote More ❯
of attacker TTPs and detection evasion Familiarity with frameworks such as OWASP , MITRE ATT&CK , and NIST Experience with C2 frameworks (e.g., Cobalt Strike, PoshC2, Sliver) Certifications such as OSCP, CRTO, OSEP, or CREST CRT preferred (but not required) #J-18808-Ljbffr More ❯
