PEN Tester - SC Cleared

Penetration Tester

Whitehall Resources are looking for a Penetration Tester. This role is hybrid working with 3 days per week onsite in Woking and the remainder remote, for an initial 6‑month contract. Due to the nature of the work, the client requires active SC Clearance. The position is Inside IR35.

• Conduct full range of effective and comprehensive technical assessments and consultancy services to the highest standards
• Maintain accurate and up‑to‑date knowledge of information security issues, keep abreast of new technologies, methodologies, techniques, vulnerabilities, and market trends, and communicate this throughout the team
• Produce concise and accurate technical reports and executive summaries, in line with client and company expectations, in accordance with the QA manual and within defined deadlines
• Participate in specialist areas of technical assessments and consultancy services where required
• Engage in delivery of security management consultancy including IT Health Checks (ITHC), risk assessments, compliance and standards‑based audits where required
• Engage in research and service development projects
• Ensure professional, coherent and relevant communication using appropriate language, reflecting the client’s values
• Maintain confidentiality at all times
• Ensure work is carried out according to defined policies and procedures
• Complete tasks with commercial awareness, managing client expectations and ensuring projects delivered on time and on budget
• Complete administrative duties, including weekly timesheet and expense submissions
• Identify opportunities for further business development and growth and communicate to line manager, PMO, and Sales department
• Assist the commercial team in preparing test scopes and proposals where necessary
• Carry out any other reasonable and alternative tasks as required from time to time

• Proven experience (2‑3 years) in an IT security role to CTM level, and be able to attain SC clearance (UK Single National)
• Excellent written and verbal communication skills
• Great organisational skills and ability to work under pressure while meeting deadlines
• Proficiency with MS Office (Word, Excel, PowerPoint)
• Strong knowledge of penetration testing tools (Burp Suite, Metasploit, Nmap, etc)
• Good knowledge of multiple OS, including Windows and
  * NIX
• Ability to configure network devices, firewalls, IDS/IPS devices and wireless technologies
• Document findings in detailed reports, providing clear recommendations for remediation
• Understanding of common security standards and regulatory compliance such as GDPR, ISO
  27001 and PCI DSS
• Positive team player, willing to collaborate and share knowledge and skills

• Experience in Cloud Security (AWS / Azure)

Not Applicable

Contract

Information Technology

IT Services and IT Consulting