Senior Penetration Tester

Thanks for the click. We know your time is valuable so we will get right to it.

We’ve amassed some of the best and brightest minds in cyber security who are passionate about protecting the digital world. Our team blends advanced technology alongside deep expertise to tackle the toughest cyber threats out there. Put simply, our mission is to stay ahead of the curve and create a safer digital landscape for our partners, and we believe adding a Penetration Tester will up our cyber game.

What you’ll be doing.

• Scoping and performing a variety of penetration tests, including infrastructure (internal and external), web applications, APIs, mobile, wireless and cloud.
• Writing clear and concise penetration testing reports, detailing findings, and making recommendations for vulnerability remediation.
• Coordinating and leading client discovery and kick off sessions (and fielding questions from prospects and clients).
• Researching and applying relevant tactics, techniques, and procedures for vulnerability weakness and validations in various infrastructure and technologies, including cloud technologies.
• Developing scripts to automate repetitive actions of penetration tests.
• Identifying and providing improvements on existing services, including continuous improvement of existing methodologies, tools and reports.
• Serving as a mentor to other Penetration testers and support them in their work.
• Assisting with pre-sales efforts as a penetration testing SME.
• Working independently as well seamlessly as collaboratively with interdepartmental teams.

What does it take to succeed in this role?

• Continuous self-training and current industry knowledge of security threat and vulnerability monitoring.
• Assured knowledge of various operating systems and networks, especially experience with Linux, Windows, and Active Directory.
• Lots of experience with web application pen testing methodologies, such as OWASP’s WSTG.
• Knowledge of web application pen testing toolsets, such as Burp Suite.
• Ability to identify and exploit web application vulnerabilities.
• Experience with penetration testing tools and frameworks such as Metasploit, Nmap, and Nessus.
• Strong communication and report-writing skills in English.
• Minimum of 3+ years’ experience in pen testing. (Web application testing and API testing experience is really desirable)
• Relevant security qualifications (such as OSCP, CREST CRT, PNPT).
• Web application qualifications is desirable (such as eWPT, OSWA/OSWE, CMWAPT, CREST CWAT, eWPTx).

In addition to the technical expertise, we expect respect, opinions, and thoughtful input.

How we work.

Our 3 values define how we operate internally as well as externally:

• Vision - We embrace a forward-thinking mindset. Our team has a clear and inspiring picture of the future that helps drive our decisions towards creating and delivering world-class security services.
• Velocity - We have a bias for action. We move swiftly and with purpose toward our goals and objectives and can easily adapt (and adjust) along the way.
• Vigilance – We foster a culture of proactive awareness for our company and our customers, who trust us to be an extension of their team. We are always looking for areas where we can innovate, improve, fix, transform and revolutionize, which ensures the protection, safety and success of everyone at SilverSky.

Individuals that can act intelligently and confidently without an ego will thrive.

(You need to be based in Northern Ireland to be considered for employment)

If this sounds interesting and you are passionate about redefining how the world thinks about cyber security, we want to hear from you. Apply now if you are interested in learning more about how we can change the rules of engagement, together.

About SilverSky

We are a global cyber security company with more than 20 years of professional experience in the industry. Our 300+ employees are on a mission to protect our customers with comprehensive, adaptive security services that maximize technology and automate responses, while empowering security analysts to hunt for threats, react and respond immediately. It’s the human enhanced response that differentiates SilverSky and allows us to create the most comprehensive managed detection and response (MxDR) solution in the industry by delivering on our Vision, Velocity, Vigilance philosophy. Follow us on LinkedIn and X.