Job description
If you are a lateral thinker, have excellent attention to detail; with analytical skills and
strong technical abilities, then the role of a SecQuest (‘SQ’) Penetration Tester will suit you.
As a SQ Penetration Tester, you'll simulate attacks in order to identify and report security
vulnerabilities on networks, systems, and applications, including Mobile, IoT, SCADA and
VSAT devices. Training for a qualification such as CSTM will be offered to the right candidate.
You will:
- carry out remote testing of a client's network, or onsite testing of their
infrastructure, to identify security vulnerabilities; - work with clients to determine scope, approach and test requirements;
- plan penetration methods, scripts and tests;
- consider the impact of security vulnerabilities on the target business;
- advise on methods to remediate security vulnerabilities;
- create reports and recommendations from your test findings; and
- present the security vulnerabilities and business risk to technical and non-technical
audiences.
All applicants will need to undertake the SQ technical on-boarding assessment, in
conjunction with UK security clearance checks (no cost to candidate).
To obtain UK Security Clearence, you must have lived in the UK for at least 5 years.
What to expect:
- you will work from our Southampton Office, in conjunction with agreed home
working; plus, on occasion there will be travel to meet clients; - you'll have a high level of responsibility; plus, maintain a high level of concentration
with attention to detail; - you'll need to dress smartly when meeting clients; and
- you need to be a self-starter and be comfortable working on your own
A 37-hour working week is standard in this role; however, flexible working practices are
common - plus, you may need to work outside of a typical 9AMto 5:30PM pattern.
Benefits
As a SQ employee, you
will receive a range of benefits such as bonuses and sponsored training and development
opportunities.
Training for a qualification such as CSTM will be offered to the right candidate.
Essential Skills
You will need to have:
- excellent spoken and written communication to explain your methods to a technical
and non-technical audience; - the ability to think creatively and strategically to penetrate security systems;
- good time management and organisational skills to meet strict client deadlines;
- ethical integrity to be trusted with a high level of confidential information;
- commitment to continuously updating your technical knowledge base;
- teamwork skills, to support colleagues and share techniques; and
- exceptional problem-solving skills and the persistence to apply different techniques
to get the job done.
Desired Skills
Useful degree subjects include:
- computer science;
- cyber security;
- forensic computing;
- computing and information systems;
- network management; and
- computer systems engineering
In-depth knowledge of computer operating systems
About Company
SecQuest is an Information Security Consultancy that recognises the importance that security plays in the continued growth of organisations, whilst safeguarding their brand and reputation. We have been consistently recognised by our clients - due to our deep technical expertise and robust business processes - as a trusted advisor for delivering Cyber Security / Penetration Testing Service assessments.
The SecQuest team has ‘real-life’ security experience and the investment we make in our people, training and certifications demonstrates the priority that Secquest gives to our Cyber Security Services. Our team have their technical background supported by current accreditations, such as those provided by the Council of Registered Ethical Security Testers (CREST) and Check Team Members (via TigerScheme QSTM/CTM).
The SecQuest team are dedicated career penetration testers, who perform testing services between 70% and 80% of their time. The remaining percentage of down time for the testers is focused on technical research and training, including Black Hat, OWASP and wider testing community events, such as CREST\CHECK, London OWASP, DC4420 and pen-test forums that ensures awareness of security themes and trends are ‘current’ and the team’s research and skill-set is meeting market demands.
Above all else, we are passionate about security and share our clients' desire to develop and deliver bespoke penetration testing in a way that gets the buy-in from the Board to Operations - to ensure holistic effective risk management. We learn from them what is at stake - to help shape how we can work effectively with them, as we understand that cost and value are paramount to our clients.
Essential Requirements
You will need to have:
- excellent spoken and written communication to explain your methods to a technical
and non-technical audience; - the ability to think creatively and strategically to penetrate security systems;
- good time management and organisational skills to meet strict client deadlines;
- ethical integrity to be trusted with a high level of confidential information;
- commitment to continuously updating your technical knowledge base;
- teamwork skills, to support colleagues and share techniques; and
- exceptional problem-solving skills and the persistence to apply different techniques
to get the job done.