Description
Penetration Tester
Location: London
Clearance: Please note that due to the timescales the client requesting profiles with an active SC clearance.
Sanderson Government and Defence are delighted to be presented with a well-established client who are looking for a Penetration Tester to join their team in London.
Please note that the role is inside IR35!
Responsibilities
- Maintaining an Operations strategy which ensures that the architecture and systems enable efficient delivery of an IT service.
- Management, maintenance and capacity planning on the IT infrastructure, ensuring the efficient and effective provision of IT Service, maximising system availability.
- To ensure that all service impacting events which occur on national IT systems are fully investigated, performing and overseeing detailed analysis of events and incidents.
- Identifying performance trends and their causes, and implementing mechanisms to improve service delivery to IT customers.
- To undertake research and development in all IT Operational areas and identify opportunities where deployment of new technologies can assist with delivering the operational or strategic aims.
- Conduct hands-on technical assessments and reviews of our estate, and of key suppliers, acting as an attacker might to test our defences and incident response processes.
- Development and implementation of tools and techniques to automate as much of the team's 'basic' work as possible, providing continuous assurance that systems are protected against common threats.
This role is part of a small team of security operations engineers who provide independent security testing of our client's products and services.
Requirements
- You will be familiar with exploitation of a wide range of technologies, from classic enterprise IT (on-prem, Windows,.nix, line of business applications) to modern digital services, as well as ways to combine multiple types of attack (physical, process etc) to achieve your desired goal.
- Strong knowledge of the security of Windows and Linux operating systems, networking and related technologies, including how they are deployed at-scale in complex Legacy environments.
- Experience with common security tools, including Nmap, Metasploit, Kali Linux, Nessus, Burp Suite Pro etc, for offensive security testing of real-world networks and services.
- Experience with infrastructure penetration testing.
- Experience with web application penetration testing.
- Experience with mobile application penetration testing.
If you are interested to take on this exciting opportunity do not hesitate to apply for the Penetration Tester role. To apply or for more information, please respond to this advert with a copy of your CV.