Penetration Tester

At Trustmarque, our vision is to enable organisations to harness the power of digital technology. For over 30 years, we have helped organisations in the public and private sectors to work smarter, run their business more effectively and unlock the value of their IT investments.

Our mission is to support our customers to buy and use innovative technology to positively impact local communities across the UK. We’re always evolving to keep up with the pace of change - to understand the technology solutions, licensing options and methodologies. Our customers come to us time and time again for collaborative transformation that helps them make better IT decisions for long-term success.

Our people are at the heart of our customer-centric business and we have company values which have been defined by our people - About us - Trustmarque. There’s never been a better time to join Trustmarque, we are growing and investing and you can play your part in influencing the future of IT in the UK.

**Job Summary**

Reporting to a Principal Security Consultant, the Security Consultant will be an active member of the Security Testing Practice. You will be an ambassador for the Practice and promote the Cyber brand.

**Accountabilities and main responsibilities**

**Key responsibilities**
- Ensure your personal penetration testing qualifications remain up to date and in line with business needs.
- Share knowledge and experience with other members of the Security Testing Practice team.
- Work with Senior members of the penetration testing team to deliver IT Health Check and penetration tests and report on findings.
- Develop skill set to offer wide range of services in line with business needs

**Key attributes**

**Experience**
- Experience in working in penetration testing teams contributing to the delivery of penetration testing services.
- Current penetration testing qualification, such as, CREST Practitioner Security Analyst, Crest Registered Tester or Cyber Scheme Team Member.
- 2+ years of penetration testing experience
- Ability to maintain UK security clearances as required by the business.

**Behaviours and abilities**
- Passionate about the security lifecycle.
- Ability to engage with senior executives of differing technical levels, and to encourage the buy in of our security ethos.
- Confidence, flexibility and ability to think creatively and offer solutions to complex problems.
- Ability to translate specialist, technical information for all audiences.

**Skills**
- Proficient in at least one scripting language, Bash, PowerShell, VB, Python etc.
- Demonstrable experience of the use of penetration tools such as Nessus, Nmap, Metasploit, BurpSuite etc.
- Solid understanding of the suite of TCP/IP protocols and the OSI model.
- Ability to follow security testing methodologies developed by the security testing practice when performing and reporting on IT Health Checks and penetration tests.

**Values & Behaviours**

The individual must be able to demonstrate that they embody the following Trustmarque Behaviour and Values:

- Share Ambitions
- Strive to Improve
- Be Diverse and Inclusive
- Embrace Change
- Demonstrate Integrity

**Standard benefits**

As well as competitive rates of pay, we offer 25 days holiday (rising to 27), 2 volunteering days and 1 personal day plus bank holidays. We also provide a substantial benefits package which includes a company-matched pension, life assurance, enhanced parental leave policies, the option to buy extra leave, a cycle2work scheme and more.