Pen Tester - SC Cleared

Pen Tester – SC Cleared

Whitehall Resources are currently looking for a SC Cleared Pen Tester located in Somerset for an initial 6 month contract.

Main Duties and Responsibilities:
– Carry out testing of the service to identify vulnerabilities
– Produce a report of vulnerabilities and issues identified to inform the fix phase
– Meet with development and security teams to discuss issues identified
– If required, carry out a re-test to confirm issues have been resolved following a fix phase
– Produce a final report of vulnerabilities and issues identified.
– Write security tests for applications and infastructure
– Implement security tests into delivery pipelines
– Take part in relevant security meetings to create best practice for development teams
– Work across UKHO in helping teams implement security testing with scrum teams
– Mentor testers in security best practices
– Create library of best practice processes

Essentials
– Experience with open source security and penetration tools
– A background in Application security
– Working knowledge of common languages, Java, Phython.C#
– Ability to interpret output from tools used to scan for vulnerabilities and manage patching (Nmap, Nessus, Metasploit, Tripwire, WSUS, MBSA, Red Hat Satellite, HP Ignite-UX, BMC Client Management, SUS)
– Experience in mentoring and training
– Has worked in an Agile Environment as part of a cross-functional development team
-Experience in writing tests using a Gherkin type language

Desirables
– Experience of continuous delivery and continuous deployment
– Experience of Team Foundation Server and GIT.
– A background in Application security


All of our opportunities require that applicants are eligible to work in the specified country/location, unless otherwise stated in the job description.