Home/Careers/Cyber Security/Principal Penetration Tester

Principal Penetration Tester

June 17, 2022

Apply for this job

Job summary

Reporting to the Cyber Delivery Director, the Principal Security Consultant will primarily be a penetration tester with line management responsibilities of several team members. You are expected to be proactive, seek out areas for improvement and make recommendations in line with strategy to the Cyber Delivery Director. You will be an ambassador for the Security Testing Practice, acting as first line of contact / escalation for our customers whilst promoting our services and brand.

Accountabilities and main responsibilities

● Act as a team leader / first point of contact in engagements involving multiple test phases and team members.

● Seek out opportunities to improve business processes and standards, identify issues and suggest improvements.

● Identify and drive new service lines, take ownership of associated methodologies that enable delivery of the new lines.

● Build and maintain the Security Testing laboratory, ensuring that rigs are up to date with current Crest and CyberScheme exam syllabi.

● Maintain and improve the Canopy reporting engine templates database.

● Ensure that all your team members comply with Trustmarque policy.

● Encourage all team members to develop and improve skills, identify gaps in skill set and experience.

● Coach and mentor team members through exam preparation and study.

● Set halfway point and annual objectives and measure team members against them at review time.

● Provide quality assurance of team member knowledge base articles, white papers and blog posts.

● Proven track record of delivering penetration testing services

● Has delivered technical work at a senior level, (CTL in either Inf or Apps)

● 5+ years of penetration testing experience

● Assists with recruitment, interviews and grading of potential new candidates to the team.

● Ability to maintain UK security clearances as required by the business.

• Proficient in scripting language, Bash, PowerShell, VB, Python etc.

• Demonstrable experience of the use of penetration tools such as Nessus, Nmap, Metasploit, BurpSuite etc.

• Solid understanding of the suite of TCP/IP protocols and the OSI model.

• Ability to adapt to complex ever changing environments and to quickly understand, and exploit to your advantage, such environments.

• Proven experience of testing web applications, their platforms and technologies and methodologies used to create them.

• Solid experience of network and infrastructure penetration testing

• Proven experience of carrying out network device reviews

• Proven track record of carrying out ITHC’s for PCI DSS and PSN compliance.

● Ability to set examples to all team members and provide leadership and support.

● Passionate about the security lifecycle.

● Ability to engage with senior executives of differing technical levels, and to encourage the buy in of our security ethos.

● Confidence, flexibility and ability to think creatively and offer solutions to complex problems.

● Ability to translate specialist, technical information into plain English.

About Trustmarque

At Trustmarque we strive to help our customers go further, innovate faster and achieve more through technology-enabled transformation. By making IT all about our customers, we pledge a partnership that ensures technology works to their advantage.

Our people are at the heart of our customer-centric business. When you join Trustmarque, you will work with some of the best experts in their field. Since mid-March 2020, all our staff have been working remotely and are given all the tools to work with effectively. Alongside this, we support our people’s mental health through regular work and well-being seminars and a team of dedicated mental health champions.

All interviews, assessments and background checks will continue to take place online, to completely remove the need for face-to-face contact. All Capita colleagues who can work from home should do so; and where it is not possible for colleagues to work remotely, we have taken important steps to protect those working from Capita’s offices. Social distancing, enhanced hygiene and safety measures are already in place at all Capita locations that are open to protect our colleagues and manage the risk of COVID-19. The welfare of our people is of paramount importance to us, and we’re doing everything we can to keep our colleagues and customers safe during this time.

Standard benefits

As well as competitive rates of pay, we offer a substantial benefits package which includes 25 days holiday (rising to 27), plus bank holidays, and the option to buy extra leave, a company-matched pension, life assurance, a cycle2work scheme and more.

Trustmarque is an award-winning IT partner that delivers IT solutions allowing our customers to work smarter and more effectively. We simplify business, through a flexible and cost-effective approach that empowers organisations and their people. Giving honest, simple, and independent advice we help our customers to navigate an increasingly complex world of IT – and that’s exactly what you’ll do too, if you join our talented team here.

Apply for this Job