Associate Penetration Tester

About Claranet

Founded at the beginning of the dot com bubble in 1996, our CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP) in the UK to being one of the leading business modernisation experts, who deliver solutions across 11+ countries.

At Claranet, we’re experienced in implementing progressive technology solutions which help our customers solve their epic business challenges. We’re committed to understanding their problems, delivering answers quickly, and making a lasting impact to their business.

We are agile, focused and experienced in business modernisation. Our approach helps customers make genuine, significant shifts in their business strategy, to deliver financial savings, boost innovation, and create a resilient business. We continually invest in our people and the latest technologies, so our customers get peace of mind knowing that they have access to the best talent and services.

In the UK we have over 500 staff working in London, Gloucester, Warrington, Bristol, and Leeds, or as homeworkers.

Working for Claranet

Here at Claranet we pride ourselves on going the extra mile for and with our employees (yes, we really mean with). We offer an extensive benefits package that you can tailor to your needs, inclusive of a matching contribution pension scheme, healthcare, insurance, dental, discounted gyms and app supported benefit access.

But what we think makes us different is ‘Team Claranet,’ our dedicated internal part of the business that supports you with matters close to your heart. We proudly support local charities in each of our office locations, support employees with paid charity leave, organise key charity fundraising event per year and have a dedicated committee responsible for supporting employee’s fundraising efforts.

Claranet are one of the 10 founding members of TC4RE (Technology Community for Racial Equality.) Being a part of a group of leading UK technology organisations, we are dedicated to building a more diverse and inclusive workforce.

Our Vision

Our vision is to become the most trusted technology solutions partner; renowned for being the best and brightest, having lasting impact with our customers and delivering exceptional returns to our stakeholders.

Position Summary

The penetration testing team at Claranet Cyber Security is composed of highly skilled, professional ethical hackers with a real passion for improving our clients’ security posture by demonstrating how systems can be compromised and what steps can be taken to defend. Team members work on everything from client projects to development work and training, dealing with large corporate penetration tests to gaining credit for published advisories.

Role Mission

Claranet’s strategy is to build long-term, trusted relationships with its customers by delivering market-leading, integrated managed services. We are seeking highly driven and aspirant penetration testing consultants to conduct a broad range of specialist engagements.

Duties and Responsibilities

Essential Roles & Responsibilities

As an Associate Penetration Tester at Claranet, you will able to deliver you own web application tests and through training and partnering, you will have the opportunity to become involved in a full range of testing work from mobile app and infrastructure testing to social engineering and Red Team exercises.

Key Responsibilities:

• Undertaking web application testing and infrastructure testing engagements
• Using the opportunities provided by the business to improve skills and capabilities into all areas of testing
• Working with key clients providing bespoke consultancy, analysis and expertise
• Assisting with pre/post sales activities as required
• Encouraging a positive, proactive, collaborative and solution-oriented approach among colleagues
• Communicating within Claranet and with clients, both orally and in writing

Position Specifications

Essential Technical:

• Have a good understanding of web and external infrastructure testing and methodologies
• Able to manually and proficiently exploit web application and network infrastructure vulnerabilities
• Have a logical and time-conscious approach to report writing
• Have experience of at least one scripting language such as Ruby, Python or Perl

Essential General:

• Client facing, able to confidently and professionally represent the company
• Must be self-motivated and able to work in an independent manner as well as part of a team
• Excellent written and oral communications skills
• Positive, collaborative and enthusiastic
• Conducting penetration testing work out of normal office hours on occasion
• Willing to travel to deliver onsite work as required
• Appetite to shadow, train and develop to improve capabilities into all areas of security testing

Desirable Experience:

• Delivering chargeable web app testing engagements
• Providing remediation advice
• Producing accurate technical reports
• Working under pressure of deadlines and structuring workload accordingly
• Problem-solving, helping others to understand complex ideas

In addition, the following are highly desirable:

• A related Batchelor’s degree.
• CISSP, CISA, CEH, OSCP or equivalent reputable information security certifications
• Experience with Bug Bounties
• Public speaking experience
• Full UK driving license