Security Testing Consultant

Location(s): UK, Europe & Africa : UK : London || UK, Europe & Africa : UK : Frimley || UK, Europe & Africa : UK : Gloucester || UK, Europe & Africa : UK : Great Baddow || UK, Europe & Africa : UK : Guildford || UK, Europe & Africa : UK : Leeds || UK, Europe & Africa : UK : Manchester BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Job Title: Security Testing Consultant Requisition ID: 122271 Location: Mostly work from home, occasional office work (London, Gloucester, Guildford, Manchester, Leeds, Frimley), with 25% International Travel Grade: GG09 - GG10 Referral Bonus: £5,000 What You'll Be Doing Delivery of end-to-end security testing engagements, including scoping and client wash-up meetings. Performing application testing, web and mobile tests, infrastructure testing, objective based tests, and intelligence-led tests. Production of detailed reporting and presentations for both technical and non-technical stakeholders. Safe and responsible use of testing tools, ensuring controls are in place to limit risks during customer engagements. Developing improvements in terms of scripts, tools, or techniques to enhance the Security Testing team's capabilities. Knowledge sharing with colleagues in other teams, including Threat Intelligence, Incident Response, and the wider Security Consulting community. Essential Skills And Experience Required Experience delivering security testing projects, ability to demonstrate comprehensive, practical knowledge of testing tools, techniques, and procedures. Understanding of client needs in terms of testing outcomes, stakeholder engagement, and risk mitigation. Self-starter with ability to identify problems early and develop solutions using own initiative. The ability to work to strict deadlines and prioritise work appropriately. Technical skills with an interest in one or more of the following: adversary emulation, vulnerability discovery, reverse-engineering, emerging technology. Flexibility and willingness to travel both within the UK and globally. Current CHECK Team Member / Equivalent Certifications such as OSCP and able to reach that level within the first 3 months. Desirable Skills (nice To Have) Experience in a high level scripting language such as Python, mid level language such as C/C++, or low level language such as ASM. Skills and experience in application, operating system, database management operation, development, or security management. Skills and experience in testing within Government, Telecommunications, Energy, or Financial Services sectors. Exploit development or other in depth vulnerability research experience. This position forms part of our global Cyber Technical Services team, which includes adjacent areas of Threat Intelligence and Incident Response, supporting customers across National Security, Defence, and Critical Infrastructure sectors Benefits As well as a competitive pension scheme, BAE also offers employee share plans, an extensive range of flexible discounted health, wellbeing & lifestyle benefits, including a green car scheme, private health plans and shopping discounts – you may also be eligible for an annual incentive Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks. Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds – the best and brightest minds – can work together to achieve excellence and realise individual and organisational potential.