Key skills
Cyber SecurityPenetration Testing
About this role
Role Overview
- Support the technical activities of the Penetration Testing team.
- Assist with the penetration testing process, including planning, scoping, coordination, findings management, risk discussions, remediation tracking, and post-test reviews.
- Collaborate with internal teams and outsourced suppliers involved in the penetration testing lifecycle and contribute to processes that support continuous improvement
- Act as a technical SME regarding penetration testing methodologies to validate assessment results, assist in challenging third-party providers on findings, and support representation of the penetration testing function at Bupa security governance committees
- Work with the wider security and operational teams on the classification and protection of critical assets, including technology and information assets
- Assist in operating the penetration testing framework to help manage an engagement and its findings from scoping to closure
- Support the embedding of applicable Enterprise Security Policies, Standards, Tools and Processes into the penetration testing function
Requirements
- At least 3 years of experience in cybersecurity
- Hold relevant professional qualifications in Cyber and Information Security (e.g., OSCP, CISSP, OSEP, CRT/CCT, CISM)
- High-level knowledge of penetration testing tools and techniques, and security testing frameworks (e.g., Nessus, Metasploit, Burp Suite, Nmap and OpenSCAP) in an offensive or defensive role.
- Some exposure of Red Teaming, Purple Teaming and Attack Automation
- Understanding of Identity and Privileged access management concepts, involving processes, policies and technologies that manage and secure digital identities and their access to resources
- Excellent analytical and problem-solving skills, with the ability to translate and analyse complex information and technical issues into effective recommendations
- A logical approach to conceptual thinking and the ability to solve problems to a high standard in different scenarios.
Tech Stack
- Cyber Security
Benefits
- 25 days holiday, increasing through length of service, with option to buy or sell
- Bupa health insurance as a benefit in kind
- An enhanced pension plan and life insurance
- Onsite gyms or local discounts where no onsite gym available
- Various other benefits and online discounts