Penetration Tester
Newmarket, England, United Kingdom - Remote
Applications have closed
Secure Schools
The leading cyber security experts for the education sector that help schools and multi academy trusts protect themselves against cyber attacks.Pentester
Team: Offensive Security
Reports to: CEO
Location: Remote with occasional travel to Newmarket (Cambridgeshire)
Hours: 32 hours | Monday to Thursday 9-5:30pm & Friday 9am-1pm (no salary sacrifice)
Salary: Open to conversation - we’re all about our people!
Who we are and what is important to us:
Secure Schools is an innovative ed-tech start-up on a mission to lead the education industry in adapting and overcoming threats to computer systems and networks. We achieve this by providing schools and multi-academy trusts with a first-of-its-kind, one-stop-shop cyber security management app (pretty cool, right?).
Uniquely positioned as highly specialist in both cyber security and education - our laser-focus and deep understanding of schools enables us to offer exceptional products and services to an industry with contextual challenges.
Our relationship with leadership teams, IT departments and service providers allows us to be ruthlessly independent, providing impartial intelligence that schools can trust.
Job Snapshot:
As our Pentester, you will own and drive critical offensive cyber security testing processes that will help build the future of Secure Schools. You’ll be our first hire in the offensive security space, so you’ll be given the autonomy and freedom to set the agenda and will truly shape the way we work
You’ll enjoy finding new and different ways to test both our own security and those of our customers. You’ll work closely with the leadership team to help establish the right processes and tools that support a security-first environment.
What you’ll be doing:
- Partnering with a diverse group of clients, offering solutions that meet their needs and results in their success with Secure Schools
- Conducting web application and infrastructure penetration tests
- Writing and delivering quality reports on completed tests
- Conducting Cyber Essentials Plus assessments
- Writing and delivering quality reports for Cyber Essentials Plus assessments
- Conducting research on education-specific environments and technologies
- Writing and delivering quality reports on completed research
- Contributing to the design and implementation of new and existing software products and infrastructure to ensure security is at the forefront of our thinking
- Identifying new ways of working, technology and processes to improve security
Technologies we use:
- Kali Linux
- Tenable Nessus Vulnerability Assessment Tools
- Greenbone Vulnerability Assessment Tools
- Cobalt Strike Threat Emulation
Requirements
What we’re hoping you’ll bring:
- Qualified or committed to gaining CISSP and OSCP, CREST or TigerScheme certification as required for some of our commercial contracts
- Sound understanding of various penetration techniques from infrastructure to web and cloud technologies
- Experience in using the technologies we use to conduct network and application penetration testing
- The ability to communicate effectively to technical and non-technical audiences
- Ability and passion to champion a security-first culture
- Knowledge of information security certification schemes such as Cyber Essentials (Plus) and ISO27001
- Ability to influence and adapt to an ever-changing environment
Benefits
What you’ll get:
The Secure Schools team are driven, ambitious and creative. Together we problem solve, disrupt and innovate – all in just 32 hours a week.
We firmly believe that success comes from a positive and supportive working environment, where individuals are encouraged to bring new ideas to the table and continually develop and expand their own skills.
Our aim is to elevate each team member through a number of initiatives, allowing everyone to do their best work no matter their background or circumstances. With this we’ve worked hard to create comprehensive and adaptable benefit packages, although you can expect the below as standard:
- Flexible working schedule/work from home opportunities
- Onsite gym and well-being (quiet room) facilities
- Buying and selling holiday scheme (unlimited)
- Additional holiday for length of service
- Your birthday as an extra holiday day, on us!
- Annual allowance for volunteering days
- Monthly and fully-funded lunch club, for everyone!
- Comprehensive wellness programmes (think meditation retreats and continuous access to wellbeing apps/initiatives)
- Enhanced maternity, paternity and adoption benefits
- Cycle to Work Scheme
- Eye examination scheme
- Financial contribution to the set up of work from home environments
- Use of new and leading technology in the form of apple and microsoft products
- Frequent company funded social events
- Office closure between Christmas & New Year
- Access to continuous learning and development opportunities
- Comprehensive employee referral scheme
- Casual Dress Code
In addition to the above, you’ll have access to our ‘take your pick’ benefits scheme which is tailored specifically to you!
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISSP Cloud Cobalt Strike CREST ISO 27001 Kali Linux Nessus Offensive security OSCP Pentesting
Perks/benefits: Career development Flex hours Home office stipend Parental leave Startup environment Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open EDR-related jobs