Penetration Tester


Premium Job From Spring Group Plc

Recruiter

Spring Group Plc

Listed on

19th March 2019

Location

London

Salary/Rate

Negotiable

Salary Notes

Negotiable

Type

Contract

Start Date

ASAP

This job has now expired please search on the home page to find live IT Jobs.

Penetration Tester

3 Months Initially

Midlands or London

This function will be responsible for collaborating closely with Software Engineering teams through application penetration testing and assisting remediation guidance activities to enable the UK Business.

This position reports to the UK Head of Application Security and is to be located in Midlands or London with flexible working arrangements, although London located will be considered for the ideal candidate.

Job Scope and Responsibilities:

*Delivery of penetration testing / security assessments

*Present findings, risks and conclusions to technical and non-technical audiences

*Close collaboration with the business throughout remediation including influence stakeholders and delivery teams in prioritisation of security activities and issue remediation

*Establish effective and productive relationships with colleagues across the Global Cyber organisation and technology departments as well as the UK business

*Empower the delivery team's resources by promoting application security awareness and standards through training, mentoring and vulnerability demos

*Establish credibility throughout the organisation by earning a reputation for being a proactive leader and positive disruptor

Minimum Qualifications and Requirements:

*Skilled at mentoring and communicating goals and corporate initiatives and driving to results

*Extensive knowledge and experience in securing and developing web applications, APIs/web services and mobile apps

*Strong knowledge of Web, API and mobile application security testing frameworks and methodologies

*Extensive experience in penetration testing and/or application security engineering is a must

*Strong knowledge of application security best practices including OWASP Top 10 and OWASP Mobile Top 10

*Technical knowledge in software engineering, system and network security, authentication and security protocols, cryptography, and network/web related protocols (e.g., TCP, UDP, HTTP, HTTPS)

*Technical knowledge of cloud hosting and penetration testing techniques of cloud based applications

*Familiarity with penetration testing tools such as BurpSuite, OWASP Zap, SoapUI etc.

*Certifications such as CREST, Tiger, OSCP, OSCE, CHECK

*Scripting and development experience is highly desirable

*Experience with static analysis, security code review, security automation and security training is desirable

*Flexible, business focused approach to testing delivery is essential

*Familiarity with AWS is desirable

*Ability to travel as needed

Spring acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. The Spring Group UK is an Equal Opportunities Employer.

By applying for this role your details will be submitted to Spring. Our Candidate Privacy Information Statement explains how we will use your information - please copy and paste the following link in to your browser: www.spring.com/candidate-privacy-information-statement

You are currently using an outdated browser.

Please consider using a modern browser such as one listed below: