Senior Pentester
Reports to: Head of Services
Team: Offensive Security
Location: Hybrid (Newmarket) and or Remote
Hours: 32 hours across a 4-day week (no salary sacrifice)
Salary: £60,000 - £65,000 (increased flexibility available for senior leadership skills)
Product: Secure Schools - https://www.secureschools.com
Who we are and what is important to us:
Beyond unifies three technology-driven brands, Wonde, Evouchers and Secure Schools.
Each brand shares a vision to reduce the friction of adapting technology, to help customers navigate an often overwhelming area and provide powerful solutions that make their everyday life easier.
The three brands run independently with the autonomy to continue to prosper although as part of the Beyond team, you’ll join a wider, supportive environment where you’ll be able to pull on the expertise and capabilities of the group.
We do not limit ourselves to standing still. We look ahead and strive to disrupt the sector we operate in. We believe technology should not be complicated or overwhelming. It should do what it says - quickly, safely and efficiently.
Who Secure Schools are:
Secure Schools is an innovative ed-tech start-up on a mission to lead the education industry in adapting and overcoming threats to computer systems and networks. We achieve this by providing schools and multi-academy trusts with a first-of-its-kind, one-stop-shop cyber security management app (pretty cool, right?).
Uniquely positioned as highly specialist in both cyber security and education - our laser-focus and deep understanding of schools enables us to offer exceptional products and services to an industry with contextual challenges.
Our relationship with leadership teams, IT departments and service providers allows us to be ruthlessly independent, providing impartial intelligence that schools can trust.
Job snapshot:
As Secure Schools Senior Pentester, you will own and drive critical offensive cyber security testing processes that will help build the future of Secure Schools. You will be an integral team member and will be instrumental in the development of the departmental roadmap, including considering the scalability of our products and services.
You will be given the autonomy and freedom to set the agenda and will truly help shape the way we work.
What you’ll be doing:
- Partnering with a diverse group of clients, offering solutions that meet their needs and result in their success with Secure Schools
- Working with our partners to deliver a full-spectrum offensive security service
- Conducting various penetration testing engagements, ensuring exceptional client delivery
- Writing and delivering quality reports on completed tests
- Conducting Cyber Essentials Plus assessments
- Writing and delivering quality reports for Cyber Essentials Plus assessments
- Researching education-specific environments and technologies
- Writing and delivering quality reports on completed research
- Continuously evaluating aspects of offensive security services and identifying opportunities for productisation
- Partner closely with the leadership team to help establish the right processes and tools that support a security-first environment
- Continuously review and contribute to new ways of working to test both our own security and those of our customers
- Working with our Product Manager on the design and implementation of new and existing software products and infrastructure
- Identifying new ways of working, technology and processes to improve security
- Participating in customer pre-sales calls as the subject matter expert
- Participating in scoping calls for testing engagements
- Provide input and guidance to improve assessment capabilities through new tools, scripts, and techniques
- Building a team of penetration testers and other offensive security professionals
Technologies we use:
- Kali Linux
- Tenable Nessus Vulnerability Assessment Tools
- Greenbone Vulnerability Assessment Tools
- Dradis
Requirements
What we’re hoping you’ll bring:
- Minimum of two years of experience in a Penetration Testing role
- CISSP and OSCP, CREST or TigerScheme certification as required for some of our commercial contracts
- An open mind and enthusiasm to explore new ways of delivering a traditional service in innovative ways
- The desire to lead a team of offensive security professionals
- Sound understanding of various penetration techniques from infrastructure to web and cloud technologies
- Experience in using the technologies we use to conduct network and application penetration testing
- The ability to communicate effectively to technical and non-technical audiences
- Ability and passion to champion a security-first culture
- Enthusiasm and a keen interest in professional development within cyber security
- Knowledge of information security certification schemes such as Cyber Essentials (Plus) and ISO27001
- Ability to influence and adapt in an ever-changing environment
Benefits
What you’ll get: Beyond is much more than just a place to work. It is a place to grow, innovate, excel and learn. We have tech people, creative people and people people, all focused on providing a superior customer experience. We value, support and champion those we work with - promoting personal growth and happiness. We get that our success is dependent on the collective energy, intelligence and contributions of all our team members and we are committed to ensuring our work environment is the best it can be. We value your commitment and have worked hard to create adaptable and comprehensive benefits packages to suit individual needs, although you can expect the below as standard: In addition to the above, you’ll have access to our ‘take your pick’ benefits scheme which is tailored specifically to you! Beyond is an equal-opportunity employer. We encourage interest from all candidates and do not discriminate against any non-merit factors. If you require any adjustments to the application or selection process please call or email us so we can ensure you have the correct support: careers@wonde.com/01638 438094.