Enable job alerts via email!

Senior Penetration Tester

Stott and May

London

On-site

GBP 60,000 - 90,000

Full time

3 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading cybersecurity firm is seeking a Senior Penetration Tester to enhance clients' security. This role involves executing various penetration tests, conducting source code reviews, and leveraging security tools. Applicants should have 5-7 years of experience and a strong grasp of application security principles.

Qualifications

5 to 7 years of experience in penetration testing.
Proven experience in identifying and exploiting vulnerabilities.
Strong understanding of web and mobile application security.

Responsibilities

Plan and execute penetration testing engagements.
Conduct in-depth source code reviews.
Identify and exploit a broad spectrum of vulnerabilities.

Skills

Penetration Testing

Vulnerability Identification

Application Security Principles

Secure Coding Practices

Tools

Burp Suite

ZAP

Social network you want to login/join with:

Job description

Role Overview

Our client is searching for a highly skilled Senior Penetration Tester to join our growing team. In this role, you’ll play a pivotal role in strengthening our clients’ security posture by identifying and exploiting vulnerabilities across a wide range of applications. This will include web applications, APIs, thick clients, and mobile applications. In addition, you’ll support the delivery of red and purple team engagements. This presents a great opportunity for individuals who wish to expand their skillset and knowledge in addition to performing application tests.

You’ll go beyond basic vulnerabilities like XSS and SQLi, leveraging your understanding of application flows to uncover and exploit complex business logic flaws.

Core Responsibilities

Plan and execute penetration testing engagements on diverse application types (web, API, thick client, mobile) adhering to industry best practices (OWASP, PTES) and Wilbourne’s established processes.
Conduct in-depth source code reviews to uncover potential security flaws and business logic vulnerabilities.
Identify and exploit a broad spectrum of vulnerabilities, demonstrating a strong understanding of application flows and the ability to translate that knowledge into real-world exploitation scenarios.
Utilise a mature suite of web and mobile application security testing tools (Burp Suite, ZAP, etc.) to thoroughly assess application security.

Experience

5 to 7 years of experience in penetration testing with a focus on various application types (web, API, thick client, mobile).
Proven experience in identifying and exploiting a wide range of vulnerabilities (SQLi, XSS, CSRF, business logic flaws, etc.).
Strong understanding of web and mobile application security principles (OWASP Top 10, secure coding practices, mobile security considerations), application flows, and the ability to translate that knowledge into actionable testing strategies.

Sound like your next challenge? Then apply today!

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Similar jobs