Penetration Tester

Pentester

Team: Offensive Security

Reports to: CEO

Location: Remote with occasional travel to Newmarket (Cambridgeshire)

Hours: 32 hours | Monday to Thursday 9-5:30pm & Friday 9am-1pm (no salary sacrifice)

Salary: Open to conversation - we’re all about our people!

Who we are and what is important to us:

Secure Schools is an innovative ed-tech start-up on a mission to lead the education industry in adapting and overcoming threats to computer systems and networks. We achieve this by providing schools and multi-academy trusts with a first-of-its-kind, one-stop-shop cyber security management app (pretty cool, right?).

Uniquely positioned as highly specialist in both cyber security and education - our laser-focus and deep understanding of schools enables us to offer exceptional products and services to an industry with contextual challenges.

Our relationship with leadership teams, IT departments and service providers allows us to be ruthlessly independent, providing impartial intelligence that schools can trust.

Job Snapshot:

As our Pentester, you will own and drive critical offensive cyber security testing processes that will help build the future of Secure Schools. You’ll be our first hire in the offensive security space, so you’ll be given the autonomy and freedom to set the agenda and will truly shape the way we work

You’ll enjoy finding new and different ways to test both our own security and those of our customers. You’ll work closely with the leadership team to help establish the right processes and tools that support a security-first environment.

What you’ll be doing:

• Partnering with a diverse group of clients, offering solutions that meet their needs and results in their success with Secure Schools
• Conducting web application and infrastructure penetration tests
• Writing and delivering quality reports on completed tests
• Conducting Cyber Essentials Plus assessments
• Writing and delivering quality reports for Cyber Essentials Plus assessments
• Conducting research on education-specific environments and technologies
• Writing and delivering quality reports on completed research
• Contributing to the design and implementation of new and existing software products and infrastructure to ensure security is at the forefront of our thinking
• Identifying new ways of working, technology and processes to improve security

Technologies we use:

• Kali Linux
• Tenable Nessus Vulnerability Assessment Tools
• Greenbone Vulnerability Assessment Tools
• Cobalt Strike Threat Emulation

Requirements

What we’re hoping you’ll bring:

• Qualified or committed to gaining CISSP and OSCP, CREST or TigerScheme certification as required for some of our commercial contracts
• Sound understanding of various penetration techniques from infrastructure to web and cloud technologies
• Experience in using the technologies we use to conduct network and application penetration testing
• The ability to communicate effectively to technical and non-technical audiences
• Ability and passion to champion a security-first culture
• Knowledge of information security certification schemes such as Cyber Essentials (Plus) and ISO27001
• Ability to influence and adapt to an ever-changing environment

Benefits

What you’ll get:

The Secure Schools team are driven, ambitious and creative. Together we problem solve, disrupt and innovate – all in just 32 hours a week.

We firmly believe that success comes from a positive and supportive working environment, where individuals are encouraged to bring new ideas to the table and continually develop and expand their own skills.

Our aim is to elevate each team member through a number of initiatives, allowing everyone to do their best work no matter their background or circumstances. With this we’ve worked hard to create comprehensive and adaptable benefit packages, although you can expect the below as standard:

• Flexible working schedule/work from home opportunities
• Onsite gym and well-being (quiet room) facilities
• Buying and selling holiday scheme (unlimited)
• Additional holiday for length of service
• Your birthday as an extra holiday day, on us!
• Annual allowance for volunteering days
• Monthly and fully-funded lunch club, for everyone!
• Comprehensive wellness programmes (think meditation retreats and continuous access to wellbeing apps/initiatives)
• Enhanced maternity, paternity and adoption benefits
• Cycle to Work Scheme
• Eye examination scheme
• Financial contribution to the set up of work from home environments
• Use of new and leading technology in the form of apple and microsoft products
• Frequent company funded social events
• Office closure between Christmas & New Year
• Access to continuous learning and development opportunities
• Comprehensive employee referral scheme
• Casual Dress Code

In addition to the above, you’ll have access to our ‘take your pick’ benefits scheme which is tailored specifically to you!