Penetration Test Engineer - DV CLEARED

06 Mar 2017
03 Apr 2017
Tom Truman
Clearance Level
Job Type
Key Responsibilities:
* Write system security tests based on the security requirements;
* Perform security tests on the systems under test;
* Demonstrated security tests to the client on formal events;
* Identify security defects and document them in the defect management tool;
* Demonstrate resolved security defects at formal and ad hoc events to the client;
* Perform application and infrastructure penetration tests, as well as physical security review and social engineering tests for our global clients;
* Review and define requirements for information security solutions;
* Perform security reviews of application designs, source code and deployments as required, covering all types of applications (web application, web services, mobile applications, thick client applications, SaaS);
* Participate in Security Assessments of networks, systems and applications;
* Work on improvements for provided security services, including the continuous enhancement of existing methodology material and supporting assets;
Essential Skills:
* Proven experience in IT Security, preferably with exposure to application security testing (source code review and application penetration tests);
* Working knowledge of Security principles, techniques and technologies;
* Understanding of JSP440 and JSP604, their impact on Security models;
* Good understanding of network protocols, design and operation;
* Strong analytical skills and efficient problem solving;
* Bachelor degree or higher in a technical discipline, or equivalent experience and knowledge;
* Willingness to travel;
* Good English communication skills (written and oral);

Desirable skills:
* CISSP, CISA, CEH, OSCP or other information security certifications;
* Application development background and security knowledge - example of languages include C, C#, C++, Java, J2EE;
* Vulnerability and threat management experience;
* Experience with various security tools and products (Fortify, AppScan, etc…);
* Good understanding of the components of a secure DLC/SDLC;
* Vulnerability analysis and application reversing skills and experience;
* Understanding of cryptography principles;

Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 18 weeks.

LA International Computer Consultants Ltd is an HMG Approved Consultancy and operates as an IT & Engineering Consultancy or as an Employment Business & Agency, depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, we welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International Computer Consultants Ltd (Recruiter Awards for Excellence - Best IT, Best Public Sector & Gold Awards) and the most prestigious award that any business can receive The Queens Award for Enterprise: International Trade 2015.

Similar jobs

Similar jobs