Associate Penetration Tester

Position Summary

As an Associate Penetration Tester at Claranet, you will able to deliver you own web application tests and through training and partnering, you will have the opportunity to become involved in a full range of testing work from mobile app and infrastructure testing to social engineering and Red Team exercises.

Role Mission

Claranet’s strategy is to build long-term, trusted relationships with its customers by delivering market-leading, integrated managed services. We are seeking a leader to build and to own the existing and future market-leading multi-solutions portfolio that Claranet offers to customers that enables cross and up sell.

Objectives & Key Results

• Undertaking web application testing and infrastructure testing engagements
• Using the opportunities provided by the business to improve skills and capabilities into all areas of testing
• Working with key clients providing bespoke consultancy, analysis and expertise
• Assisting with pre/post sales activities as required
• Encouraging a positive, proactive, collaborative and solution-oriented approach among colleagues
• Communicating within Claranet and with clients, both orally and in writing

Teams To Collaborate With

• Customer Experience & Managed Services – Ensure we are consistently providing the best service to our customers, proactively monitoring their needs, and integrating their feedback into our future portfolio and propositions
• Customer Success & Growth – Ensure that the portfolio is up to date, meets customer needs and enables cross and up selling. Agree Portfolio Mix, Volumes and Targets to ensure alignment.
• Finance contributes to the budget process for portfolio and propositions development
• HR & People – Support recruitment and learning and development strategies to develop industry leading product and service offerings
• Business Development – Enables pipeline growth and cross sell opportunities to new and existing customers by providing advanced support across bid, marketing & PR, sales operations, product and project management functions.

Position Specifications

Behavioural Competencies – Organisational & Behavioural Fit

• Client facing, able to confidently and professionally represent the company
• Must be self-motivated and able to work in an independent manner as well as part of a team
• Excellent written and oral communications skills
• Positive, collaborative and enthusiastic
• Conducting penetration testing work out of normal office hours on occasion
• Willing to travel to deliver onsite work as required
• Appetite to shadow, train and develop to improve capabilities into all areas of security testing

Critical Competencies – Technical Fit

Essential Technical:

• Have a good understanding of web and external infrastructure testing and methodologies
• Able to manually and proficiently exploit web application and network infrastructure vulnerabilities
• Have a logical and time-conscious approach to report writing
• Have experience of at least one scripting language such as Ruby, Python or Perl

Desirable Experience:

• Delivering chargeable web app testing engagements
• Providing remediation advice
• Producing accurate technical reports
• Working under pressure of deadlines and structuring workload accordingly
• Problem-solving, helping others to understand complex ideas

In Addition, The Following Are Highly Desirable:

• A related Batchelor’s degree.
• CISSP, CISA, CEH, OSCP or equivalent reputable information security certifications
• Experience with Bug Bounties
• Public speaking experience
• Full UK driving license