Security Tester and evaluator

London Full-Time 40000 £ / year No home office possible

At a Glance

Tasks: Evaluate and conduct security testing for applications and systems, identifying vulnerabilities.
Company: SeCore is an innovative cybersecurity firm focused on AI-driven security assessment solutions.
Benefits: Join a dynamic team with opportunities for growth and cutting-edge technology.
Why this job: Be part of revolutionising digital security while enhancing your skills in a collaborative environment.
Qualifications: Experience in security testing, strong knowledge of network and web security, and scripting skills required.
Other info: Preferred certifications include GWAPT, CPT, CEH, and GPEN, but not mandatory.

We are looking for a skilled Security Tester and Evaluator to evaluate and conduct security testing for applications and systems. In this role, you will support threat modelling and security assurance activities in collaboration with the security team. As a security tester and evaluator, you will be responsible for designing and creating appropriate test strategies and test plans for systems and applications of our customers based on the security assurance profiles. Additionally, you will conduct and execute test plans using various security testing and assessment methods and techniques to identify vulnerabilities and ensure full coverage. Finally, you will propose mitigation plans to mitigate identified vulnerabilities and strengthen the level of security of the target system.

Key Responsibility:

Design and create testing plans and evaluation strategies that are connected to the identified security threats and assurance requirements. These include evaluation objectives, the testing scope, testing approaches and techniques, testing environment etc.
Design and create a list of test cases and test scenarios based on the identified testing plan and strategy.
Conduct manual and automated security tests in order to evaluate and assess the security of applications and systems in different domains, e.g., web applications, mobile applications, APIs, networks, IoT applications and cloud environments, and various sectors, like healthcare, insurance, finance, etc.
Design and suggest a mitigation plan that consists of different measures and controls to mitigate and overcome the identified risks and vulnerabilities.

Requirements:

Proven experience in security testing, penetration testing, or ethical hacking.
Strong knowledge of network security, web security, cryptography, operating systems and secure coding practices.
Hands-on experience with security testing tools and scripting (Python, Bash, PowerShell, etc.).
Familiarity with SOC 2, ISO 27001, NIST, OWASP, MITRE ATT&CK, SDLC frameworks.
Ability to write detailed, professional security assessment reports.
Strong problem-solving skills, analytical mindset, excellent communication skills and the ability to work in teams and to explain complex security concepts to non-technical stakeholders.

Preferred Certifications (Not Mandatory but a Plus):

GWAPT (GIAC Web Application Penetration Tester)
CPT (Certified Penetration Tester)
CEH (Certified Ethical Hacker)
GPEN (GIAC Penetration Tester)

Security Tester and evaluator employer: CV-Library

At SeCore Information Security Limited, we pride ourselves on being an exceptional employer, offering a vibrant work culture that fosters innovation and collaboration in the heart of the cybersecurity sector. Our commitment to employee growth is evident through continuous training opportunities and a supportive environment that encourages professional development, making it an ideal place for skilled Security Testers and Evaluators to thrive. Join us and be part of a pioneering team dedicated to revolutionising digital security while enjoying the benefits of a dynamic workplace that values your contributions.

Contact Detail:

CV-Library Recruiting Team

View CV-Library Profile

StudySmarter Expert Advice 🤫

We think this is how you could land Security Tester and evaluator

✨Tip Number 1

Familiarise yourself with the specific security testing tools mentioned in the job description. Having hands-on experience with tools like Python, Bash, and PowerShell will give you a significant edge during the interview process.

✨Tip Number 2

Brush up on your knowledge of security frameworks such as SOC 2, ISO 27001, and OWASP. Being able to discuss these frameworks confidently will demonstrate your expertise and understanding of industry standards.

✨Tip Number 3

Prepare to showcase your problem-solving skills by discussing past experiences where you identified vulnerabilities and proposed effective mitigation plans. Real-world examples can make a strong impression.

✨Tip Number 4

Practice explaining complex security concepts in simple terms. This skill is crucial for communicating with non-technical stakeholders, and demonstrating this ability can set you apart from other candidates.

We think you need these skills to ace Security Tester and evaluator

Security Testing

Penetration Testing

Ethical Hacking

Network Security

Web Security

Cryptography

Secure Coding Practices

Test Strategy Design

Test Plan Creation

Manual and Automated Testing

Security Testing Tools

Scripting (Python, Bash, PowerShell)

Familiarity with SOC 2

ISO 27001

NIST

OWASP

MITRE ATT&CK

SDLC Frameworks

Security Assessment Reporting

Problem-Solving Skills

Analytical Mindset

Communication Skills

Team Collaboration

Some tips for your application 🫡

Tailor Your CV: Make sure your CV highlights relevant experience in security testing, penetration testing, and ethical hacking. Use specific examples that demonstrate your skills in designing test plans and conducting assessments.

Craft a Compelling Cover Letter: In your cover letter, express your passion for cybersecurity and explain why you want to work with SeCORE. Mention your familiarity with their innovative approach and how your skills align with their needs.

Showcase Technical Skills: Clearly outline your hands-on experience with security testing tools and scripting languages like Python, Bash, or PowerShell. Provide examples of how you've used these skills in previous roles to identify vulnerabilities.

Highlight Problem-Solving Abilities: Emphasise your analytical mindset and problem-solving skills in your application. Include instances where you've successfully proposed mitigation plans or resolved security issues in past projects.

How to prepare for a job interview at CV-Library

✨Showcase Your Technical Skills

Be prepared to discuss your hands-on experience with security testing tools and scripting languages like Python, Bash, or PowerShell. Highlight specific projects where you successfully identified vulnerabilities and implemented mitigation strategies.

✨Understand the Company’s Security Frameworks

Familiarise yourself with the security frameworks mentioned in the job description, such as SOC 2, ISO 27001, and OWASP. Demonstrating knowledge of these frameworks will show that you are aligned with the company's security standards and practices.

✨Prepare for Scenario-Based Questions

Expect scenario-based questions where you may need to design a test plan or propose a mitigation strategy for a hypothetical vulnerability. Practising these scenarios can help you articulate your thought process clearly during the interview.

✨Communicate Complex Concepts Simply

Since you'll be explaining security concepts to non-technical stakeholders, practice simplifying complex ideas. Use analogies or straightforward language to demonstrate your ability to communicate effectively across different audiences.

Security Tester and evaluator

London

Full-Time

40000 £ / year

Application deadline: 2027-04-06
CV-Library

View CV-Library Profile

Similar positions in other companies

UK’s top job board for Gen Z

Discover now