PEN Tester - SC Cleared

PEN Tester - SC Cleared

Whitehall Resources are looking for a PEN Tester. This role is hybrid working with 3 days per week onsite in Woking, and the remainder remote working, for an initial 6 month contract.

*Due to the nature of the work, the client required active SC Clearance*

*Inside IR35*

Role Description:

A Penetration Tester plays a vital role within the UK's cybersecurity industry, particularly when assisting organisations with managing and mitigating security risks.

The core responsibilities of a Penetration Tester are to identify vulnerabilities that are present in an organisation's IT infrastructure, applications and networks through rigorous testing. Employing both manual and automated techniques to simulate real world attacks, this will assess a company's security posture against any potential threats. Testers should also be responsible for maintaining an up-to-date knowledge of the ever-evolving threat landscape, adhering to ethical guidelines especially when handling sensitive data.

In addition to strong technical skills, a Penetration Tester also needs to be able to demonstrate strong communication skills so complex findings can be described to non-technical stakeholders.

Key Responsibilities:
- Conduct the full range of effective and comprehensive technical assessments and consultancy services to the highest standards
- Maintain an accurate and up to date knowledge of information security issues, keeping abreast of new technologies, methodologies, techniques, vulnerabilities and market trends and communicate this throughout the team
- Produce concise and accurate technical reports and executive summaries, in line with client and company expectations in accordance with the QA manual and within defined deadlines
- Participate in more specialist areas of technical assessments and consultancy services where required
- Participate in delivery of security management consultancy including IT Health Checks (ITHC), risk assessments and compliance and standards based audits, where required
- Engage with and fully participate in research & service development projects
- Ensure professional, coherent and relevant communication, using relevant language and at all times, behave in a manner that reflects the values of the client.
- Maintain confidentiality at all times
- Ensure that work is carried out in accordance with defined policies and procedures
- Complete all tasks in a manner that displays a commercial awareness, ie managing client expectations and ensuring that project tasks are completed on time and on budget
- Complete administrative duties, which include weekly timesheet and expense submissions
- Through the course of your duties, identify opportunities for further business development and growth and ensure that this is communicated to your line manager, the PMO and Sales department
- Where necessary assist the commercial team in the preparation of test scopes and proposals
- Carry out any other additional, reasonable and alternative tasks that may be required from time to time

Required skills, experience, and personal attributes:
- Proven experience (2-3 years) in an IT security role to CTM level is essential and have, or be able to attain SC clearance (UK Single National)
- Excellent written and verbal communication skills.
- Great organisation skills and ability to work in a pressurised environment whilst working towards and achieving deadlines.
- Use of MS Office software such as Word, Excel, Powerpoint
- Strong knowledge of penetration testing tools including (Burpsuite, Metasploit, Nmap) etc
- Good knowledge of multiple Operating Systems (OS) including Windows &.NIX
- Ability to configure network devices, Firewalls, IDS/IPS devices and wireless technologies
- Document findings in detailed reports, providing clear recommendations for remediation
- Good understanding of common security standards and regulatory compliance such as GDPR, ISO27001 and PCI DSS
- An ability to work effectively and positively within a team and willing to collaborate and readily share knowledge and skills

MUST:
- Relevant degree/postgraduate degree
- CHECK Team Member qualification (Crest/CyberScheme)
- Experience in Cloud Security (AWS/Azure)

All of our opportunities require that applicants are eligible to work in the specified country/location, unless otherwise stated in the job description.

Whitehall Resources are an equal opportunities employer who value a diverse and inclusive working environment. All qualified applicants will receive consideration for employment without regard to race, religion, gender identity or expression, sexual orientation, national origin, pregnancy, disability, age, veteran status, or other characteristics.