At a Glance
- Tasks: Identify security vulnerabilities in web apps, APIs, and networks using modern testing tools.
- Company: Join Bugcrowd, a leader in crowdsourced security since 2012.
- Benefits: Remote work, flexible hours, and opportunities for continuous learning.
- Other info: Work in a dynamic environment with a focus on professional growth.
- Why this job: Make a real impact in cybersecurity while working with elite hackers.
- Qualifications: 6+ months of penetration testing experience and strong communication skills.
The predicted salary is between 40000 - 50000 £ per year.
We are Bugcrowd. Since 2012, we've been empowering organizations to take back control and stay ahead of threat actors by uniting the collective ingenuity and expertise of our customers and trusted alliance of elite hackers, with our patented data and AI-powered Security Knowledge PlatformTM. Our network of hackers brings diverse expertise to uncover hidden weaknesses, adapting swiftly to evolving threats, even against zero‐day exploits.
With unmatched scalability and adaptability, our data and AI‐driven CrowdMatchTM technology in our platform finds the perfect talent for your unique fight. We aim to create a new era of modern crowdsourced security that outpaces threat actors.
Role Responsibilities- Conduct Structured Testing to Identify Security Vulnerabilities: Demonstrate a functional understanding of modern attack vectors and penetration testing software as well as be technically capable of using them in the identification of security vulnerabilities in Web applications, APIs and network infrastructure. Consistently complete assigned penetration tests within allocated timeframes, and in accordance with our methodologies.
- Continuous Learning: Actively engage in keeping up to date with fundamental security concepts and core testing tools, applying newly acquired knowledge under instruction and supervision.
- Problem Identification & Escalation: Promptly identify and effectively communicate technical blockers or concerns to mentors or Technical Pentest Managers as needed, actively seeking clarification and guidance to avoid missteps.
- Team Support & Documentation: Assist in test retrospectives, documentation of processes, and provide support to more senior team members as directed by the team lead or manager.
Be able to execute testing within UK core business hours (09:00 - 17:30 GMT). Some tests may fall outside of these hours, but the majority of tests will need to be completed within this timeframe.
Desired Skills & Experience- Experience: 6+ months as a penetration tester (or equivalent demonstrable experience) with a foundational understanding of wider cybersecurity concepts and best practices.
- Technical Skills: Familiarity with commonly used security testing tools (e.g. BurpSuite, Nmap) and approach to penetration testing activities.
- Soft Skills: Strong desire to learn, good communication skills for peer and mentor interactions, and the ability to follow instructions. Strong written and spoken business English (C1+ or native fluency).
- Certifications: Certifications such as CEH (Certified Ethical Hacker), OSCP+ (Offensive Security Certified Professional), CPSA (CREST Practitioner Security Analyst) are considered a plus.
The ideal candidate must be able to complete all physical requirements of the job with or without reasonable accommodation. Sitting and/or standing – Must be able to remain in a stationary position 50% of the time. Carrying and/or lifting – Must be able to carry/move laptop as needed throughout the work day. Environment – remote, work‐from‐home 100% of the time.
DisclaimerThis position has access to highly confidential, sensitive information relating to the technologies of Bugcrowd. It is essential that the applicant possess the requisite integrity to maintain the information in the strictest confidence.
The company is authorized to obtain background checks for employment purposes under state and federal law. Background checks will be conducted for positions that involve access to confidential or proprietary information (including trade secrets). Background checks may include Social Security verification, prior employment verification, personal and professional references, educational verification, and criminal history. Applicants with conviction histories will not be excluded from consideration to the extent required by law.
Equal Employment OpportunityBugcrowd is EOE, Disability/Age Employer. Individuals seeking employment at Bugcrowd are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. Bugcrowd is committed to the full inclusion of all qualified individuals. In keeping with our commitment, Bugcrowd will take the steps to assure that people with disabilities are provided reasonable accommodations. Accordingly, if reasonable accommodation is required to fully participate in the job application or interview process, to perform the essential functions of the position, and/or to receive all other benefits and privileges of employment, please contact HR at ADA at bugcrowd.com.
Apply at: https://www.bugcrowd.com/about/careers/#J-18808-Ljbffr
Penetration Tester in London employer: jobr.pro
At jobr.pro, we pride ourselves on being an excellent employer by fostering a flexible and culturally diverse work environment in Exeter. Our commitment to personal development ensures that employees have ample opportunities for growth while enjoying attractive benefits, making it a rewarding place to advance your career in the transport infrastructure sector.
StudySmarter Expert Advice🤫
We think this is how you could land Penetration Tester in London
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including jobr.pro, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through jobr.pro
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at jobr.pro. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace Penetration Tester in London
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at jobr.pro insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to jobr.pro that you’re committed to staying ahead in the game.
How to prepare for a job interview at jobr.pro
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at jobr.pro to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at jobr.pro.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.