Job Title: Senior/Mid-Level Penetration Tester (OSCP Qualified)
Location: United Kingdom (with options for remote work and client site visits)
About the Client:
Our client specialises in demystifying the complexities of governance, risk, and compliance, offering real-world, practical solutions to a broad spectrum of related challenges. They are committed to working closely with their clients to develop the most effective and sustainable strategies, ensuring these solutions integrate seamlessly with the day-to-day operations of the business with minimal disruption.
Their expertise encompasses:
- Information Security Consultancy: Providing tailored guidance to strengthen your information security posture.
- Penetration Testing: Conduct comprehensive assessments to identify vulnerabilities and enhance your cyber defenses.
- Data Privacy Consultancy: Offering expert advice to ensure your data handling practices are compliant and secure.
- Outsourced DPO Services: Delivering professional Data Protection Officer services to meet regulatory requirements without the need for in-house expertise.
Through these services, our client aims to streamline your approach to managing and mitigating risks, ensuring compliance with relevant standards and regulations while fostering a secure and resilient organisational environment.
Position Overview:
On behalf of our esteemed client, we are in search of seasoned and adept Senior and Mid-Level Penetration Testers with a deep-rooted enthusiasm for cybersecurity. The ideal candidates will be professionals certified in OSCP, boasting a substantial record in penetration testing, web application, API testing, and direct client interactions. This role entails performing in-depth security assessments, pinpointing vulnerabilities, and proposing practical recommendations to improve our clients' security stance.
Responsibilities:
- Execute penetration tests across web applications, APIs, and networks to uncover vulnerabilities and security weaknesses.
- Formulate and implement testing strategies for thorough security assessments.
- Directly collaborate with clients to define engagement scopes, including understanding their systems, pinpointing testing requirements, and managing expectations.
- Perform on-site security assessments and consultations at client locations as required.
- Facilitate Q&A sessions, mop-up sessions, and present detailed final reports to clients, highlighting findings, implications, and remediation recommendations.
- Prepare comprehensive reports on identified vulnerabilities, providing concise and actionable advice for clients to mitigate security issues.
- Keep up-to-date with the latest cybersecurity threats, trends, and testing methodologies to enhance the quality of services provided.
Requirements:
- Must be based in the United Kingdom.
- Possession of OSCP certification is essential.
- Senior roles require at least 3 years of experience in penetration testing or a similar technical lead capacity.
- Mid-level roles require a minimum of 1 year of penetration testing experience along with OSCP certification.
- Profound experience in testing web applications and APIs.
- Proven expertise in client-facing roles, including engagement scoping, site visits, leading discussions, and delivering presentations.
- Exceptional analytical and report writing skills, with prior experience in completing detailed vulnerability reports.
- Strong communication and interpersonal abilities, capable of explaining intricate security matters to a non-technical audience.
- A steadfast commitment to ethical hacking practices, adhering to legal and ethical guidelines in penetration testing.
Benefits:
- Competitive salary and comprehensive benefits package.
- Professional development and certification opportunities.
- Flexible working arrangements, including the possibility of remote work.
- A dynamic and supportive working atmosphere among a team of dedicated cybersecurity professionals.
Application Process:
Candidates interested in applying for this role are invited to submit their CV and a cover letter outlining their experiences, qualifications, and reasons for being the perfect fit for the position to Musa at musa@nqbrecruitcyber.co or call 07760503030. Please include examples of previous penetration testing projects, particularly those involving direct client engagement and report writing.
