Description Starling is the UK's first and leading digital bank on a mission to fix banking! We built a new kind of bank because we knew technology had the power to help people save, spend and manage their money in a new and transformative way. Read more about Our Story here. We're a fully licensed UK bank with the culture and spirit of a fast-moving, disruptive tech company. We're a bank, but better: fairer, easier to use and designed to demystify money for everyone. We employ more than 3,000 people across our London, Southampton, Cardiff and Manchester offices. Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and disruptive technology that keeps us on the cutting edge of fintech. We operate a flat structure to empower you to make decisions regardless of what your primary responsibilities may be, innovation and collaboration will be at the core of everything you do. Help is never far away in our open culture, you will find support in your team and from across the business, we are in this together! The way to thrive and shine within Starling is to be a self-driven individual and be able to take full ownership of everything around you: From building things, designing, discovering, to sharing knowledge with your colleagues and making sure all processes are efficient and productive to deliver the best possible results for our customers. Our purpose is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. About the Role As an experienced Penetration Tester at Starling, you'll be joining an established team, working with talented cyber security professionals to ensure our services are designed, developed and operated securely. This is a collaborative role - you'll directly interact with multiple areas of the business to understand requirements, conduct research, perform security testing, and report issues aligned to our risk framework. Being an internal tester, you'll gain a strong understanding of how technology works at Starling to enable in-depth testing. You'll also support remediation processes, seeing your findings lead to tangible security improvements. We understand the importance of knowledge and expertise remaining current, so we'll actively support your advancement through research and training. In turn, you'll help us continuously improve our processes, methodologies and tools to maintain the highest standard of testing. Responsibilities Scoping and performing mobile, web application, cloud and infrastructure penetration tests. Collaborating with engineering teams to facilitate secure development, including: Reviewing and analysing proposed technical solutions to identify appropriate security controls. Conducting code reviews of features and critical security components. Performing in-depth practical security testing. Advising on the remediation of security issues and identifying solutions to address root causes. Automating security testing and developing internal tooling to achieve continuous assurance. Identifying and implementing improvements to the team's internal processes and procedures. Mentoring less-experienced team members, leading by example in technical assessments, and promoting a collaborative approach to security across Starling. Requirements We're open-minded when it comes to hiring and we care more about aptitude and attitude than specific experience or qualifications. Ideally, we would like: 5+ years technical information security experience. Experience in mobile, web application, cloud and infrastructure penetration testing. Technical knowledge - we don't expect mastery of every area, but are looking for a good foundation in the following domains: Mobile security (iOS and Android) Web application security Networking and associated protocols Cloud security (AWS and GCP) Containers and Kubernetes A desire to learn, and the ability to apply technical security knowledge to new and unfamiliar areas. Penetration testing qualifications (e.g. CREST Certified Tester, OSCP) or equivalent industry experience. Experience performing code reviews or code-assisted testing, particularly in Java and Go. Experience in automation of security testing (e.g. using Python or Go). Excellent verbal and written communication skills. Interview process Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: First stage with the Penetration Testing Team Lead Second stage with additional members of the Penetration Testing team Final stage with Infosec Director and CISO Benefits We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. 25 days holiday (plus take your public holiday allowance whenever works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Starling Bank will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
01/04/2026
Full time
Description Starling is the UK's first and leading digital bank on a mission to fix banking! We built a new kind of bank because we knew technology had the power to help people save, spend and manage their money in a new and transformative way. Read more about Our Story here. We're a fully licensed UK bank with the culture and spirit of a fast-moving, disruptive tech company. We're a bank, but better: fairer, easier to use and designed to demystify money for everyone. We employ more than 3,000 people across our London, Southampton, Cardiff and Manchester offices. Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and disruptive technology that keeps us on the cutting edge of fintech. We operate a flat structure to empower you to make decisions regardless of what your primary responsibilities may be, innovation and collaboration will be at the core of everything you do. Help is never far away in our open culture, you will find support in your team and from across the business, we are in this together! The way to thrive and shine within Starling is to be a self-driven individual and be able to take full ownership of everything around you: From building things, designing, discovering, to sharing knowledge with your colleagues and making sure all processes are efficient and productive to deliver the best possible results for our customers. Our purpose is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. About the Role As an experienced Penetration Tester at Starling, you'll be joining an established team, working with talented cyber security professionals to ensure our services are designed, developed and operated securely. This is a collaborative role - you'll directly interact with multiple areas of the business to understand requirements, conduct research, perform security testing, and report issues aligned to our risk framework. Being an internal tester, you'll gain a strong understanding of how technology works at Starling to enable in-depth testing. You'll also support remediation processes, seeing your findings lead to tangible security improvements. We understand the importance of knowledge and expertise remaining current, so we'll actively support your advancement through research and training. In turn, you'll help us continuously improve our processes, methodologies and tools to maintain the highest standard of testing. Responsibilities Scoping and performing mobile, web application, cloud and infrastructure penetration tests. Collaborating with engineering teams to facilitate secure development, including: Reviewing and analysing proposed technical solutions to identify appropriate security controls. Conducting code reviews of features and critical security components. Performing in-depth practical security testing. Advising on the remediation of security issues and identifying solutions to address root causes. Automating security testing and developing internal tooling to achieve continuous assurance. Identifying and implementing improvements to the team's internal processes and procedures. Mentoring less-experienced team members, leading by example in technical assessments, and promoting a collaborative approach to security across Starling. Requirements We're open-minded when it comes to hiring and we care more about aptitude and attitude than specific experience or qualifications. Ideally, we would like: 5+ years technical information security experience. Experience in mobile, web application, cloud and infrastructure penetration testing. Technical knowledge - we don't expect mastery of every area, but are looking for a good foundation in the following domains: Mobile security (iOS and Android) Web application security Networking and associated protocols Cloud security (AWS and GCP) Containers and Kubernetes A desire to learn, and the ability to apply technical security knowledge to new and unfamiliar areas. Penetration testing qualifications (e.g. CREST Certified Tester, OSCP) or equivalent industry experience. Experience performing code reviews or code-assisted testing, particularly in Java and Go. Experience in automation of security testing (e.g. using Python or Go). Excellent verbal and written communication skills. Interview process Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: First stage with the Penetration Testing Team Lead Second stage with additional members of the Penetration Testing team Final stage with Infosec Director and CISO Benefits We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. 25 days holiday (plus take your public holiday allowance whenever works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Starling Bank will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
Senior Penetration Tester Location: Fully Remote (UK-Based) Salary Range: £50,000 - £85,000 (dependent on experience) Position: Permanent, Full-Time My client is a dynamic and growing cybersecurity consultancy dedicated to providing top-tier security services to a diverse range of clients. They believe in empowering the team with the flexibility of remote work while tackling challenging and engaging projects that make a real difference to their clients' security posture. The Role We are seeking a highly skilled and motivated Senior Penetration Tester to join our remote team. You will be responsible for leading and executing complex penetration tests against a variety of systems, networks, and applications. The ideal candidate is not just a proficient tester but a critical thinker who can articulate risks clearly and provide pragmatic remediation advice to clients. Key Responsibilities Plan, lead, and execute sophisticated penetration tests across infrastructure, web applications, APIs, and internal networks. Conduct advanced Red Team exercises to simulate real-world adversary attacks and test organisational defences. Produce high-quality, clear, and concise reports for both technical and executive audiences, detailing findings, risks, and actionable remediation strategies. Mentor and provide guidance to junior members of the team, promoting best practices and knowledge sharing. Collaborate with clients to scope engagements, present findings, and provide expert advice on mitigating identified vulnerabilities. Stay abreast of the latest security vulnerabilities, attack vectors, tools, and methodologies. Contribute to the continuous improvement of our testing methodologies and service offerings. Essential Skills & Qualifications Must hold active CREST Certified Tester (CRT) certification. (Non-negotiable) Proven commercial experience in a penetration testing role. Deep technical knowledge of networking protocols, operating systems (Windows, Linux), and common infrastructure vulnerabilities. Strong experience in web application penetration testing (OWASP Top 10). Proficiency with common penetration testing tools (e.g., Burp Suite Pro, Metasploit, Nmap, Cobalt Strike, etc.). Excellent written and verbal communication skills, with a proven ability to write detailed technical reports. A proactive and self-motivated attitude, capable of working effectively in a fully remote environment. Desirable Skills & Qualifications Experience with or knowledge of implementing Cyber Essentials and Cyber Essentials Plus schemes is highly desirable. Additional certifications such as: CREST Certified Simulated Attack Specialist (CCSAS) / Certified Simulated Attack Manager (CCSAM) Offensive Security Certified Professional (OSCP) Certified Information Systems Security Professional (CISSP) SANS GIAC Penetration Tester (GPEN) or Web Application Penetration Tester (GWAPT) Experience in mobile application (iOS/Android) testing, cloud security (AWS/Azure/GCP), or social engineering. Experience scripting in Python, PowerShell, or Bash to develop custom tools or exploits. What We Offer A competitive salary of £50,000 - £85,000 . Fully remote working - work from anywhere in the UK. A supportive and collaborative culture with a strong focus on professional development.
01/10/2025
Full time
Senior Penetration Tester Location: Fully Remote (UK-Based) Salary Range: £50,000 - £85,000 (dependent on experience) Position: Permanent, Full-Time My client is a dynamic and growing cybersecurity consultancy dedicated to providing top-tier security services to a diverse range of clients. They believe in empowering the team with the flexibility of remote work while tackling challenging and engaging projects that make a real difference to their clients' security posture. The Role We are seeking a highly skilled and motivated Senior Penetration Tester to join our remote team. You will be responsible for leading and executing complex penetration tests against a variety of systems, networks, and applications. The ideal candidate is not just a proficient tester but a critical thinker who can articulate risks clearly and provide pragmatic remediation advice to clients. Key Responsibilities Plan, lead, and execute sophisticated penetration tests across infrastructure, web applications, APIs, and internal networks. Conduct advanced Red Team exercises to simulate real-world adversary attacks and test organisational defences. Produce high-quality, clear, and concise reports for both technical and executive audiences, detailing findings, risks, and actionable remediation strategies. Mentor and provide guidance to junior members of the team, promoting best practices and knowledge sharing. Collaborate with clients to scope engagements, present findings, and provide expert advice on mitigating identified vulnerabilities. Stay abreast of the latest security vulnerabilities, attack vectors, tools, and methodologies. Contribute to the continuous improvement of our testing methodologies and service offerings. Essential Skills & Qualifications Must hold active CREST Certified Tester (CRT) certification. (Non-negotiable) Proven commercial experience in a penetration testing role. Deep technical knowledge of networking protocols, operating systems (Windows, Linux), and common infrastructure vulnerabilities. Strong experience in web application penetration testing (OWASP Top 10). Proficiency with common penetration testing tools (e.g., Burp Suite Pro, Metasploit, Nmap, Cobalt Strike, etc.). Excellent written and verbal communication skills, with a proven ability to write detailed technical reports. A proactive and self-motivated attitude, capable of working effectively in a fully remote environment. Desirable Skills & Qualifications Experience with or knowledge of implementing Cyber Essentials and Cyber Essentials Plus schemes is highly desirable. Additional certifications such as: CREST Certified Simulated Attack Specialist (CCSAS) / Certified Simulated Attack Manager (CCSAM) Offensive Security Certified Professional (OSCP) Certified Information Systems Security Professional (CISSP) SANS GIAC Penetration Tester (GPEN) or Web Application Penetration Tester (GWAPT) Experience in mobile application (iOS/Android) testing, cloud security (AWS/Azure/GCP), or social engineering. Experience scripting in Python, PowerShell, or Bash to develop custom tools or exploits. What We Offer A competitive salary of £50,000 - £85,000 . Fully remote working - work from anywhere in the UK. A supportive and collaborative culture with a strong focus on professional development.
Company Description Netcompany Netcompany is one of the UK's and Northern Europe's most successful IT consultancies and you could be part of that incredible success. We operate across 6 countries which include the UK, Denmark, Norway, Poland, Holland and Vietnam, with over 3000 skilled IT Consultants and Developers. We deliver large, complex and innovative projects to clients in the public and private sector. Job Description Do you want to immerse yourself in the Functional and Quality aspects of large software projects that digitize and empower the United Kingdom If this is You, then Netcompany is the company of choice for you! You will be involved in developing socially critical IT systems that do not just have an impact on our customers for specific sectors but for people across the Great British society. You will always be part of a project team with Business Analysts and Developer colleagues from Netcompany, who work closely with you and the customer. At Netcompany you are the critical link between the customer, their business needs, and our technical solution. During the project you will have access to a wide range of the latest tools and technologies. Key Activities Analyse the business needs and the required functionality for the customer. Prepare test plans and designs tests for verifying and validating the Functional and Quality requirements of the solution Execute functional tests of solutions internally within Netcompany and externally in collaboration with the customer Qualifications You can join the dots between business and IT technical issues, and you can explain business needs to the developer and technical aspects to the customer. 4-6 years of Automatic testing experience Experience in Test Driven Development Hands on experience in Spock or Junit Experience in Jira, Zephyr, Xray, selenium webdriver or similar Jira testing tool Experience in providing test reports Experience with security or penetration testing is a plus A relevant bachelor's degree preferably in a STEM (Science, Technology, Engineering and Mathematics) discipline Additional Information Our Investment in you We have many years of experience in recruiting and onboarding newly qualified Graduate colleagues, and a setup that is geared to offer you the very best of professional and personal development based on your specific needs. At Netcompany, you will be assigned an experienced personal mentor from the start. Your mentor will always be available for professional advice and guidance for your future career direction. In addition, there will be multiple courses tailored for you in our internal training program which is known as the Netcompany Academy. Through a series of modules, we will ensure you continuously have the opportunity to improve your skills throughout your career, ranging in everything from different cutting-edge technologies to customer engagement and management. If you want to further develop your technical skills, we also offer industry standard certifications. In other words, your career will never stop with us, and you will evolve much faster than anywhere else in the industry. No one prioritizes the social higher than us! In Netcompany, we have a unique unity, and there is no place in the IT industry that prioritises the social values higher than us. We offer a wide range of different clubs and associations within both sports, board games, E-sports and cultural life. In addition, we enjoy meeting at ours weekly Friday events, for company parties and team events. The possibilities are many, as we believe that we perform best when we know each other and have fun together! Employee Benefits 25daysholidays, as well as public holidays Competitive salary Well-defined learning and career path Professional certifications supported as part of learning and development. Monthly social events (including after work bars, annual Summer and Christmas parties and sporting events) We operate a Hybrid working model with flexible working Interest free Season Ticket Loans Retail discounts (including Restaurants, Supermarkets, Travel, Leisure and Department Stores & Fashion) Healthcare Life insurance Apply Today If you are interested in beinga partof our continued success,pleaseapply today- JoinNetcompany! Be part of our continuous growth, find out more below • Website: Netcompany - IT and Business Consulting • LinkedIn: Netcompany LinkedIn Disclaimer This role may be subject to basic security checks which may include a basic criminalrecordcheck. Here at Netcompany we believe in equality for all, and we will never discriminate against any applicants onthegroundsofsex,genderreassignment,pregnancy,maternity, race, marital status,disability, age, religion,belief,orsexualorientation.
23/09/2022
Full time
Company Description Netcompany Netcompany is one of the UK's and Northern Europe's most successful IT consultancies and you could be part of that incredible success. We operate across 6 countries which include the UK, Denmark, Norway, Poland, Holland and Vietnam, with over 3000 skilled IT Consultants and Developers. We deliver large, complex and innovative projects to clients in the public and private sector. Job Description Do you want to immerse yourself in the Functional and Quality aspects of large software projects that digitize and empower the United Kingdom If this is You, then Netcompany is the company of choice for you! You will be involved in developing socially critical IT systems that do not just have an impact on our customers for specific sectors but for people across the Great British society. You will always be part of a project team with Business Analysts and Developer colleagues from Netcompany, who work closely with you and the customer. At Netcompany you are the critical link between the customer, their business needs, and our technical solution. During the project you will have access to a wide range of the latest tools and technologies. Key Activities Analyse the business needs and the required functionality for the customer. Prepare test plans and designs tests for verifying and validating the Functional and Quality requirements of the solution Execute functional tests of solutions internally within Netcompany and externally in collaboration with the customer Qualifications You can join the dots between business and IT technical issues, and you can explain business needs to the developer and technical aspects to the customer. 4-6 years of Automatic testing experience Experience in Test Driven Development Hands on experience in Spock or Junit Experience in Jira, Zephyr, Xray, selenium webdriver or similar Jira testing tool Experience in providing test reports Experience with security or penetration testing is a plus A relevant bachelor's degree preferably in a STEM (Science, Technology, Engineering and Mathematics) discipline Additional Information Our Investment in you We have many years of experience in recruiting and onboarding newly qualified Graduate colleagues, and a setup that is geared to offer you the very best of professional and personal development based on your specific needs. At Netcompany, you will be assigned an experienced personal mentor from the start. Your mentor will always be available for professional advice and guidance for your future career direction. In addition, there will be multiple courses tailored for you in our internal training program which is known as the Netcompany Academy. Through a series of modules, we will ensure you continuously have the opportunity to improve your skills throughout your career, ranging in everything from different cutting-edge technologies to customer engagement and management. If you want to further develop your technical skills, we also offer industry standard certifications. In other words, your career will never stop with us, and you will evolve much faster than anywhere else in the industry. No one prioritizes the social higher than us! In Netcompany, we have a unique unity, and there is no place in the IT industry that prioritises the social values higher than us. We offer a wide range of different clubs and associations within both sports, board games, E-sports and cultural life. In addition, we enjoy meeting at ours weekly Friday events, for company parties and team events. The possibilities are many, as we believe that we perform best when we know each other and have fun together! Employee Benefits 25daysholidays, as well as public holidays Competitive salary Well-defined learning and career path Professional certifications supported as part of learning and development. Monthly social events (including after work bars, annual Summer and Christmas parties and sporting events) We operate a Hybrid working model with flexible working Interest free Season Ticket Loans Retail discounts (including Restaurants, Supermarkets, Travel, Leisure and Department Stores & Fashion) Healthcare Life insurance Apply Today If you are interested in beinga partof our continued success,pleaseapply today- JoinNetcompany! Be part of our continuous growth, find out more below • Website: Netcompany - IT and Business Consulting • LinkedIn: Netcompany LinkedIn Disclaimer This role may be subject to basic security checks which may include a basic criminalrecordcheck. Here at Netcompany we believe in equality for all, and we will never discriminate against any applicants onthegroundsofsex,genderreassignment,pregnancy,maternity, race, marital status,disability, age, religion,belief,orsexualorientation.
Job Title: Senior Penetration Tester Day Rate: Excellent Day Rate IR35 Status: Inside IR35 Contract Length: 6-months (Initial) Hybrid Location: 2 days per week in Central London, 3 days remote. About the Client and the Role: My client, a prestigious and globally renowned name in financial services is seeking an experienced Penetration Tester to apply their expertise on an initial 6-month basis, with a key focus on end-to-end delivery of penetration testing of applications and ensuring compliance standards are met. Main Responsibilities: Penetration Testing and ensuring compliance of a wide array of software and applications Managing Test Requirements Helping functions such as Threat Intel, Python Scripting, Automation Candidate Requirements: Strong background in Penetration Testing in major environments Experience with Python Scripting Knowledge and experience of Threat Intel and Automation To be considered, please ensure you complete your application on the Computappoint website. Services offered by Computappoint Limited are those of an Employment Business and/or Employment Agency in relation to this vacancy.
21/09/2022
Contractor
Job Title: Senior Penetration Tester Day Rate: Excellent Day Rate IR35 Status: Inside IR35 Contract Length: 6-months (Initial) Hybrid Location: 2 days per week in Central London, 3 days remote. About the Client and the Role: My client, a prestigious and globally renowned name in financial services is seeking an experienced Penetration Tester to apply their expertise on an initial 6-month basis, with a key focus on end-to-end delivery of penetration testing of applications and ensuring compliance standards are met. Main Responsibilities: Penetration Testing and ensuring compliance of a wide array of software and applications Managing Test Requirements Helping functions such as Threat Intel, Python Scripting, Automation Candidate Requirements: Strong background in Penetration Testing in major environments Experience with Python Scripting Knowledge and experience of Threat Intel and Automation To be considered, please ensure you complete your application on the Computappoint website. Services offered by Computappoint Limited are those of an Employment Business and/or Employment Agency in relation to this vacancy.
What do we do?
We are an autonomous and independently audited cyber security evaluation centre, conducting security research into the safety and security of various products and services used inside of the UK such as smartphones to core networks in fibre broadband and 2G, 3G and 4G networks.
Due to the secure nature of our client’s project, the successful candidate must either hold valid or be willing to undergo DV Clearance prior to the commencement of the project. We’re conducting world leading security capabilities as well as using deep dive investigative techniques and elite vulnerability research. We don’t just run Nessus, if there isn’t a tool for what we want to test, we build one.
What do we need?
Above all else we’d like to speak with passionate and proactive offensive security professionals with a strong low level, ground up knowledge.
We’re not just running tick box exercises, that’s why you’ll need to know the fundamentals. You’ll be the sort of person that is fascinated by pulling things apart and breaking them; who comes across something a bit odd and can’t help but investigate it further.
In terms of technical experience, you’ll need to be familiar with:
* Reverse Engineering
* Exploit Development
* Using and/or creating bespoke tools
* Embedded Systems
* Networking
* Internet Protocol
* Static & Dynamic Analysis
* Bonus points for…
* Programming (Object oriented languages and/or assembly a bonus)
* Degree in Computer Science, Electrical Engineering, Robotics or similar
What’s in it for me?
You’ll get to literally throw everything at projects and investigate in ways that are not common place in other security teams. You’ll be dealing with bugs that could potentially effect the nation so you’ll be doing innovative vulnerability research in a fun and collaborative environment, using cutting edge technologies.
You’ll get to work with some of the most talented cyber security professionals in the country and benefit from their knowledge. You’ll be encouraged to cross skill and be free to take on personal research and personal development in the 20% of time we allocate. You’ll have access to an individual personal training budget and have plenty of opportunity to grow because we actively promote professional development.
If you’d like to discuss the role in more detail you can contact our recruitment partner Outsource UK for more information. Contact Shirin Fahri on (Apply online only) or email (url removed).
Alternatively, to skip this and meet us, contact us for details on our security event in Leamington on 25th October and receive our attendee challenge to get a ticket!
Shirin Fahri
(Apply online only)
(url removed)
Please visit our website (url removed)
29/10/2018
What do we do?
We are an autonomous and independently audited cyber security evaluation centre, conducting security research into the safety and security of various products and services used inside of the UK such as smartphones to core networks in fibre broadband and 2G, 3G and 4G networks.
Due to the secure nature of our client’s project, the successful candidate must either hold valid or be willing to undergo DV Clearance prior to the commencement of the project. We’re conducting world leading security capabilities as well as using deep dive investigative techniques and elite vulnerability research. We don’t just run Nessus, if there isn’t a tool for what we want to test, we build one.
What do we need?
Above all else we’d like to speak with passionate and proactive offensive security professionals with a strong low level, ground up knowledge.
We’re not just running tick box exercises, that’s why you’ll need to know the fundamentals. You’ll be the sort of person that is fascinated by pulling things apart and breaking them; who comes across something a bit odd and can’t help but investigate it further.
In terms of technical experience, you’ll need to be familiar with:
* Reverse Engineering
* Exploit Development
* Using and/or creating bespoke tools
* Embedded Systems
* Networking
* Internet Protocol
* Static & Dynamic Analysis
* Bonus points for…
* Programming (Object oriented languages and/or assembly a bonus)
* Degree in Computer Science, Electrical Engineering, Robotics or similar
What’s in it for me?
You’ll get to literally throw everything at projects and investigate in ways that are not common place in other security teams. You’ll be dealing with bugs that could potentially effect the nation so you’ll be doing innovative vulnerability research in a fun and collaborative environment, using cutting edge technologies.
You’ll get to work with some of the most talented cyber security professionals in the country and benefit from their knowledge. You’ll be encouraged to cross skill and be free to take on personal research and personal development in the 20% of time we allocate. You’ll have access to an individual personal training budget and have plenty of opportunity to grow because we actively promote professional development.
If you’d like to discuss the role in more detail you can contact our recruitment partner Outsource UK for more information. Contact Shirin Fahri on (Apply online only) or email (url removed).
Alternatively, to skip this and meet us, contact us for details on our security event in Leamington on 25th October and receive our attendee challenge to get a ticket!
Shirin Fahri
(Apply online only)
(url removed)
Please visit our website (url removed)
Senior Penetration Tester - London
A penetration Tester is required for a consultancy who have grown very rapidly over the past few years, and continues to do so. The team combines a wealth of deep industry knowledge with both business advisory experience and technical expertise. They provide their clients a full spectrum of services encompassing information security, corporate and physical security and business and technology resilience to help clients fix their issues and bring them real, long-lasting benefits.
As part of the team, you'll be responsible for leading attack and penetration testing engagements to identify security weaknesses within client's IT environments, reporting on issues and making recommendations for their remediation. You will be involved in vulnerability management engagements which include: network and host layer vulnerability assessments, firewall and networking device reviews, web application assessments, source code reviews and targeting the physical security of the infrastructure or buildings.
This company has a unique blend of large corporate with a boutique style security practise. In a relaxed environment, you'll be able make us of an industry leading digital hub in order to train and develop your skills. They foster a collaborative culture where talented individuals can produce their best work. They value innovative thinking, diverse insights and a genuinely distinctive level of customer service through expertise and professionalism.
This position offers an approach which combines insight and innovation from multiple disciplines with global business and industry expertise to help clients excel anywhere in the world.
As a consultant, you will deliver outstanding impact on the reputation and success of clients, in the UK and globally
Qualifications
Requirements
Currently looking for Consultants through to Senior Consultants with specific expertise in the following:
* Experience of working with applications that perform a wide range of business functions - ideally across multiple industries
* Ability to understand and assess applications from both a technical and business function perspective
* Prior experience of performing web application penetration tests, to identify weaknesses in security controls and the business risks associated with these
* Preferred:
* CISSP
* Security Check (SC) national security clearance
* CREST CRT, CCT or equivilant
* Web development - .NET, Java, PHP
* Reverse engineering
*
Salary is flexible as they are making multiple hires but can expesct between £50,000 - £100,000 per annum.
Apply with your CV to be considered
09/09/2016
Senior Penetration Tester - London
A penetration Tester is required for a consultancy who have grown very rapidly over the past few years, and continues to do so. The team combines a wealth of deep industry knowledge with both business advisory experience and technical expertise. They provide their clients a full spectrum of services encompassing information security, corporate and physical security and business and technology resilience to help clients fix their issues and bring them real, long-lasting benefits.
As part of the team, you'll be responsible for leading attack and penetration testing engagements to identify security weaknesses within client's IT environments, reporting on issues and making recommendations for their remediation. You will be involved in vulnerability management engagements which include: network and host layer vulnerability assessments, firewall and networking device reviews, web application assessments, source code reviews and targeting the physical security of the infrastructure or buildings.
This company has a unique blend of large corporate with a boutique style security practise. In a relaxed environment, you'll be able make us of an industry leading digital hub in order to train and develop your skills. They foster a collaborative culture where talented individuals can produce their best work. They value innovative thinking, diverse insights and a genuinely distinctive level of customer service through expertise and professionalism.
This position offers an approach which combines insight and innovation from multiple disciplines with global business and industry expertise to help clients excel anywhere in the world.
As a consultant, you will deliver outstanding impact on the reputation and success of clients, in the UK and globally
Qualifications
Requirements
Currently looking for Consultants through to Senior Consultants with specific expertise in the following:
* Experience of working with applications that perform a wide range of business functions - ideally across multiple industries
* Ability to understand and assess applications from both a technical and business function perspective
* Prior experience of performing web application penetration tests, to identify weaknesses in security controls and the business risks associated with these
* Preferred:
* CISSP
* Security Check (SC) national security clearance
* CREST CRT, CCT or equivilant
* Web development - .NET, Java, PHP
* Reverse engineering
*
Salary is flexible as they are making multiple hires but can expesct between £50,000 - £100,000 per annum.
Apply with your CV to be considered
Senior Penetration Tester - London
A penetration Tester is required for a consultancy who have grown very rapidly over the past few years, and continues to do so. The team combines a wealth of deep industry knowledge with both business advisory experience and technical expertise. They provide their clients a full spectrum of services encompassing information security, corporate and physical security and business and technology resilience to help clients fix their issues and bring them real, long-lasting benefits.
As part of the team, you'll be responsible for leading attack and penetration testing engagements to identify security weaknesses within client's IT environments, reporting on issues and making recommendations for their remediation. You will be involved in vulnerability management engagements which include: network and host layer vulnerability assessments, firewall and networking device reviews, web application assessments, source code reviews and targeting the physical security of the infrastructure or buildings.
This company has a unique blend of large corporate with a boutique style security practise. In a relaxed environment, you'll be able make us of an industry leading digital hub in order to train and develop your skills. They foster a collaborative culture where talented individuals can produce their best work. They value innovative thinking, diverse insights and a genuinely distinctive level of customer service through expertise and professionalism.
This position offers an approach which combines insight and innovation from multiple disciplines with global business and industry expertise to help clients excel anywhere in the world.
As a consultant, you will deliver outstanding impact on the reputation and success of clients, in the UK and globally
Qualifications
Requirements
Currently looking for Consultants through to Senior Consultants with specific expertise in the following:
* Experience of working with applications that perform a wide range of business functions - ideally across multiple industries
* Ability to understand and assess applications from both a technical and business function perspective
* Prior experience of performing web application penetration tests, to identify weaknesses in security controls and the business risks associated with these
* Preferred:
* CISSP
* Security Check (SC) national security clearance
* CREST CRT, CCT or equivilant
* Web development - .NET, Java, PHP
* Reverse engineering
*
Salary is flexible as they are making multiple hires but can expesct between £50,000 - £100,000 per annum.
Apply with your CV to be considered
09/09/2016
Senior Penetration Tester - London
A penetration Tester is required for a consultancy who have grown very rapidly over the past few years, and continues to do so. The team combines a wealth of deep industry knowledge with both business advisory experience and technical expertise. They provide their clients a full spectrum of services encompassing information security, corporate and physical security and business and technology resilience to help clients fix their issues and bring them real, long-lasting benefits.
As part of the team, you'll be responsible for leading attack and penetration testing engagements to identify security weaknesses within client's IT environments, reporting on issues and making recommendations for their remediation. You will be involved in vulnerability management engagements which include: network and host layer vulnerability assessments, firewall and networking device reviews, web application assessments, source code reviews and targeting the physical security of the infrastructure or buildings.
This company has a unique blend of large corporate with a boutique style security practise. In a relaxed environment, you'll be able make us of an industry leading digital hub in order to train and develop your skills. They foster a collaborative culture where talented individuals can produce their best work. They value innovative thinking, diverse insights and a genuinely distinctive level of customer service through expertise and professionalism.
This position offers an approach which combines insight and innovation from multiple disciplines with global business and industry expertise to help clients excel anywhere in the world.
As a consultant, you will deliver outstanding impact on the reputation and success of clients, in the UK and globally
Qualifications
Requirements
Currently looking for Consultants through to Senior Consultants with specific expertise in the following:
* Experience of working with applications that perform a wide range of business functions - ideally across multiple industries
* Ability to understand and assess applications from both a technical and business function perspective
* Prior experience of performing web application penetration tests, to identify weaknesses in security controls and the business risks associated with these
* Preferred:
* CISSP
* Security Check (SC) national security clearance
* CREST CRT, CCT or equivilant
* Web development - .NET, Java, PHP
* Reverse engineering
*
Salary is flexible as they are making multiple hires but can expesct between £50,000 - £100,000 per annum.
Apply with your CV to be considered
Senior Penetration Tester - London
A penetration Tester is required for a consultancy who have grown very rapidly over the past few years, and continues to do so. The team combines a wealth of deep industry knowledge with both business advisory experience and technical expertise. They provide their clients a full spectrum of services encompassing information security, corporate and physical security and business and technology resilience to help clients fix their issues and bring them real, long-lasting benefits.
As part of the team, you'll be responsible for leading attack and penetration testing engagements to identify security weaknesses within client's IT environments, reporting on issues and making recommendations for their remediation. You will be involved in vulnerability management engagements which include: network and host layer vulnerability assessments, firewall and networking device reviews, web application assessments, source code reviews and targeting the physical security of the infrastructure or buildings.
This company has a unique blend of large corporate with a boutique style security practise. In a relaxed environment, you'll be able make us of an industry leading digital hub in order to train and develop your skills. They foster a collaborative culture where talented individuals can produce their best work. They value innovative thinking, diverse insights and a genuinely distinctive level of customer service through expertise and professionalism.
This position offers an approach which combines insight and innovation from multiple disciplines with global business and industry expertise to help clients excel anywhere in the world.
As a consultant, you will deliver outstanding impact on the reputation and success of clients, in the UK and globally
Qualifications
Requirements
Currently looking for Consultants through to Senior Consultants with specific expertise in the following:
* Experience of working with applications that perform a wide range of business functions - ideally across multiple industries
* Ability to understand and assess applications from both a technical and business function perspective
* Prior experience of performing web application penetration tests, to identify weaknesses in security controls and the business risks associated with these
* Preferred:
* CISSP
* Security Check (SC) national security clearance
* CREST CRT, CCT or equivilant
* Web development - .NET, Java, PHP
* Reverse engineering
*
Salary is flexible as they are making multiple hires but can expesct between £50,000 - £100,000 per annum.
Apply with your CV to be considered
09/09/2016
Senior Penetration Tester - London
A penetration Tester is required for a consultancy who have grown very rapidly over the past few years, and continues to do so. The team combines a wealth of deep industry knowledge with both business advisory experience and technical expertise. They provide their clients a full spectrum of services encompassing information security, corporate and physical security and business and technology resilience to help clients fix their issues and bring them real, long-lasting benefits.
As part of the team, you'll be responsible for leading attack and penetration testing engagements to identify security weaknesses within client's IT environments, reporting on issues and making recommendations for their remediation. You will be involved in vulnerability management engagements which include: network and host layer vulnerability assessments, firewall and networking device reviews, web application assessments, source code reviews and targeting the physical security of the infrastructure or buildings.
This company has a unique blend of large corporate with a boutique style security practise. In a relaxed environment, you'll be able make us of an industry leading digital hub in order to train and develop your skills. They foster a collaborative culture where talented individuals can produce their best work. They value innovative thinking, diverse insights and a genuinely distinctive level of customer service through expertise and professionalism.
This position offers an approach which combines insight and innovation from multiple disciplines with global business and industry expertise to help clients excel anywhere in the world.
As a consultant, you will deliver outstanding impact on the reputation and success of clients, in the UK and globally
Qualifications
Requirements
Currently looking for Consultants through to Senior Consultants with specific expertise in the following:
* Experience of working with applications that perform a wide range of business functions - ideally across multiple industries
* Ability to understand and assess applications from both a technical and business function perspective
* Prior experience of performing web application penetration tests, to identify weaknesses in security controls and the business risks associated with these
* Preferred:
* CISSP
* Security Check (SC) national security clearance
* CREST CRT, CCT or equivilant
* Web development - .NET, Java, PHP
* Reverse engineering
*
Salary is flexible as they are making multiple hires but can expesct between £50,000 - £100,000 per annum.
Apply with your CV to be considered
Senior Penetration Tester - London
A penetration Tester is required for a consultancy who have grown very rapidly over the past few years, and continues to do so. The team combines a wealth of deep industry knowledge with both business advisory experience and technical expertise. They provide their clients a full spectrum of services encompassing information security, corporate and physical security and business and technology resilience to help clients fix their issues and bring them real, long-lasting benefits.
As part of the team, you'll be responsible for leading attack and penetration testing engagements to identify security weaknesses within client's IT environments, reporting on issues and making recommendations for their remediation. You will be involved in vulnerability management engagements which include: network and host layer vulnerability assessments, firewall and networking device reviews, web application assessments, source code reviews and targeting the physical security of the infrastructure or buildings.
This company has a unique blend of large corporate with a boutique style security practise. In a relaxed environment, you'll be able make us of an industry leading digital hub in order to train and develop your skills. They foster a collaborative culture where talented individuals can produce their best work. They value innovative thinking, diverse insights and a genuinely distinctive level of customer service through expertise and professionalism.
This position offers an approach which combines insight and innovation from multiple disciplines with global business and industry expertise to help clients excel anywhere in the world.
As a consultant, you will deliver outstanding impact on the reputation and success of clients, in the UK and globally
Qualifications
Requirements
Currently looking for Consultants through to Senior Consultants with specific expertise in the following:
* Experience of working with applications that perform a wide range of business functions - ideally across multiple industries
* Ability to understand and assess applications from both a technical and business function perspective
* Prior experience of performing web application penetration tests, to identify weaknesses in security controls and the business risks associated with these
* Preferred:
* CISSP
* Security Check (SC) national security clearance
* CREST CRT, CCT or equivilant
* Web development - .NET, Java, PHP
* Reverse engineering
*
Salary is flexible as they are making multiple hires but can expesct between £50,000 - £100,000 per annum.
Apply with your CV to be considered
09/09/2016
Senior Penetration Tester - London
A penetration Tester is required for a consultancy who have grown very rapidly over the past few years, and continues to do so. The team combines a wealth of deep industry knowledge with both business advisory experience and technical expertise. They provide their clients a full spectrum of services encompassing information security, corporate and physical security and business and technology resilience to help clients fix their issues and bring them real, long-lasting benefits.
As part of the team, you'll be responsible for leading attack and penetration testing engagements to identify security weaknesses within client's IT environments, reporting on issues and making recommendations for their remediation. You will be involved in vulnerability management engagements which include: network and host layer vulnerability assessments, firewall and networking device reviews, web application assessments, source code reviews and targeting the physical security of the infrastructure or buildings.
This company has a unique blend of large corporate with a boutique style security practise. In a relaxed environment, you'll be able make us of an industry leading digital hub in order to train and develop your skills. They foster a collaborative culture where talented individuals can produce their best work. They value innovative thinking, diverse insights and a genuinely distinctive level of customer service through expertise and professionalism.
This position offers an approach which combines insight and innovation from multiple disciplines with global business and industry expertise to help clients excel anywhere in the world.
As a consultant, you will deliver outstanding impact on the reputation and success of clients, in the UK and globally
Qualifications
Requirements
Currently looking for Consultants through to Senior Consultants with specific expertise in the following:
* Experience of working with applications that perform a wide range of business functions - ideally across multiple industries
* Ability to understand and assess applications from both a technical and business function perspective
* Prior experience of performing web application penetration tests, to identify weaknesses in security controls and the business risks associated with these
* Preferred:
* CISSP
* Security Check (SC) national security clearance
* CREST CRT, CCT or equivilant
* Web development - .NET, Java, PHP
* Reverse engineering
*
Salary is flexible as they are making multiple hires but can expesct between £50,000 - £100,000 per annum.
Apply with your CV to be considered
Senior Penetration Tester - London
A penetration Tester is required for a consultancy who have grown very rapidly over the past few years, and continues to do so. The team combines a wealth of deep industry knowledge with both business advisory experience and technical expertise. They provide their clients a full spectrum of services encompassing information security, corporate and physical security and business and technology resilience to help clients fix their issues and bring them real, long-lasting benefits.
As part of the team, you'll be responsible for leading attack and penetration testing engagements to identify security weaknesses within client's IT environments, reporting on issues and making recommendations for their remediation. You will be involved in vulnerability management engagements which include: network and host layer vulnerability assessments, firewall and networking device reviews, web application assessments, source code reviews and targeting the physical security of the infrastructure or buildings.
This company has a unique blend of large corporate with a boutique style security practise. In a relaxed environment, you'll be able make us of an industry leading digital hub in order to train and develop your skills. They foster a collaborative culture where talented individuals can produce their best work. They value innovative thinking, diverse insights and a genuinely distinctive level of customer service through expertise and professionalism.
This position offers an approach which combines insight and innovation from multiple disciplines with global business and industry expertise to help clients excel anywhere in the world.
As a consultant, you will deliver outstanding impact on the reputation and success of clients, in the UK and globally
Qualifications
Requirements
Currently looking for Consultants through to Senior Consultants with specific expertise in the following:
* Experience of working with applications that perform a wide range of business functions - ideally across multiple industries
* Ability to understand and assess applications from both a technical and business function perspective
* Prior experience of performing web application penetration tests, to identify weaknesses in security controls and the business risks associated with these
* Preferred:
* CISSP
* Security Check (SC) national security clearance
* CREST CRT, CCT or equivilant
* Web development - .NET, Java, PHP
* Reverse engineering
*
Salary is flexible as they are making multiple hires but can expesct between £50,000 - £100,000 per annum.
Apply with your CV to be considered
09/09/2016
Senior Penetration Tester - London
A penetration Tester is required for a consultancy who have grown very rapidly over the past few years, and continues to do so. The team combines a wealth of deep industry knowledge with both business advisory experience and technical expertise. They provide their clients a full spectrum of services encompassing information security, corporate and physical security and business and technology resilience to help clients fix their issues and bring them real, long-lasting benefits.
As part of the team, you'll be responsible for leading attack and penetration testing engagements to identify security weaknesses within client's IT environments, reporting on issues and making recommendations for their remediation. You will be involved in vulnerability management engagements which include: network and host layer vulnerability assessments, firewall and networking device reviews, web application assessments, source code reviews and targeting the physical security of the infrastructure or buildings.
This company has a unique blend of large corporate with a boutique style security practise. In a relaxed environment, you'll be able make us of an industry leading digital hub in order to train and develop your skills. They foster a collaborative culture where talented individuals can produce their best work. They value innovative thinking, diverse insights and a genuinely distinctive level of customer service through expertise and professionalism.
This position offers an approach which combines insight and innovation from multiple disciplines with global business and industry expertise to help clients excel anywhere in the world.
As a consultant, you will deliver outstanding impact on the reputation and success of clients, in the UK and globally
Qualifications
Requirements
Currently looking for Consultants through to Senior Consultants with specific expertise in the following:
* Experience of working with applications that perform a wide range of business functions - ideally across multiple industries
* Ability to understand and assess applications from both a technical and business function perspective
* Prior experience of performing web application penetration tests, to identify weaknesses in security controls and the business risks associated with these
* Preferred:
* CISSP
* Security Check (SC) national security clearance
* CREST CRT, CCT or equivilant
* Web development - .NET, Java, PHP
* Reverse engineering
*
Salary is flexible as they are making multiple hires but can expesct between £50,000 - £100,000 per annum.
Apply with your CV to be considered
