Penetration Consultant
Reply seek a Penetration Consultant who holds a CHECK certificate in the public sector is preferred; you will be conducting penetration testing across IoT, web applications, mobile apps, wireless networks, infrastructure and physical security.
Skills
- CHECK Team Leader certification CSTM/CSTL - Essential.
- Proven industry experience in Infrastructure and Application penetration testing.
- Strong understanding of OWASP, PTES, and MITRE ATT&CK Framework.
- Knowledge of Windows and Linux environments.
- Familiarity with modern solution design, development, and deployment across platforms.
- Proficiency in preparing and launching social engineering campaigns.
- Ability to program or script exploits in preferred languages.
- Crest CRT/CCT-INF/CCT-AAP or Equivalent - Essential.
- Industry certifications like Advanced Offensive Security certs like OSCP or GIAC.
Responsibility
- Conduct comprehensive penetration testing across web applications, mobile apps, wireless networks, infrastructure, and physical security.
- Define testing scopes and uphold the highest standards of testing activities.
- Adapt and refine testing methodologies and security tools to ensure optimal client assessments.
- Deep technical knowledge and experience in penetration testing and red teaming.
- Perform internal and external vulnerability assessments and web application penetration testing.
- Generate detailed technical and non-technical reports outlining findings and remediation actions.
- Engage in pre-engagement interactions, scoping activities, and proposal drafting.
- Collaborate effectively within a team and autonomously when necessary.
- Present information clearly to both technical and non-technical audiences.
- Mentor junior team members and interact with clients to comprehend their requirements.
Additional Skills (Desirable):
- Development experience with Scripting/programming languages such as Python, Golang, and C#.
- Knowledge of cybersecurity standards: SAE 21434, OWASP, ANSSI/LPM, NIST, ISO 27x.
- Experience with static analysis, security code review, security automation, and security training.
Rate: TBC
Engagement: Inside IR35
Location: London
Duration: 3 months rolling
Project: 18 months period
Reference: 2679670856
Penetration Consultant
Posted on Nov 16, 2023 by Reply Limited
Reply seek a Penetration Consultant who holds a CHECK certificate in the public sector is preferred; you will be conducting penetration testing across IoT, web applications, mobile apps, wireless networks, infrastructure and physical security.
Skills
- CHECK Team Leader certification CSTM/CSTL - Essential.
- Proven industry experience in Infrastructure and Application penetration testing.
- Strong understanding of OWASP, PTES, and MITRE ATT&CK Framework.
- Knowledge of Windows and Linux environments.
- Familiarity with modern solution design, development, and deployment across platforms.
- Proficiency in preparing and launching social engineering campaigns.
- Ability to program or script exploits in preferred languages.
- Crest CRT/CCT-INF/CCT-AAP or Equivalent - Essential.
- Industry certifications like Advanced Offensive Security certs like OSCP or GIAC.
Responsibility
- Conduct comprehensive penetration testing across web applications, mobile apps, wireless networks, infrastructure, and physical security.
- Define testing scopes and uphold the highest standards of testing activities.
- Adapt and refine testing methodologies and security tools to ensure optimal client assessments.
- Deep technical knowledge and experience in penetration testing and red teaming.
- Perform internal and external vulnerability assessments and web application penetration testing.
- Generate detailed technical and non-technical reports outlining findings and remediation actions.
- Engage in pre-engagement interactions, scoping activities, and proposal drafting.
- Collaborate effectively within a team and autonomously when necessary.
- Present information clearly to both technical and non-technical audiences.
- Mentor junior team members and interact with clients to comprehend their requirements.
Additional Skills (Desirable):
- Development experience with Scripting/programming languages such as Python, Golang, and C#.
- Knowledge of cybersecurity standards: SAE 21434, OWASP, ANSSI/LPM, NIST, ISO 27x.
- Experience with static analysis, security code review, security automation, and security training.
Rate: TBC
Engagement: Inside IR35
Location: London
Duration: 3 months rolling
Project: 18 months period
Reference: 2679670856
Alert me to jobs like this:
Amplify your job search:
Expert career advice
Increase interview chances with our downloads and specialist services.
Visit Blog