At a Glance
- Tasks: Lead offensive security tests and identify vulnerabilities to enhance our security posture.
- Company: Join a forward-thinking company dedicated to cybersecurity excellence.
- Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
- Other info: Collaborative environment with a focus on innovation and knowledge-sharing.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technologies.
- Qualifications: 5+ years in cybersecurity with strong Red Teaming and penetration testing experience.
The predicted salary is between 60000 - 80000 £ per year.
Requirements
- Bachelor's Degree in Information Systems / Technology, Computer Science / Engineering or equivalent field of study or a minimum of 5 years of cyber security experience
- Demonstrable experience in Red Teaming and Penetration Testing
- Minimum 3 years of deep, hands-on, technical security experience with at least one of: multiple security technologies such as Firewalls, IDS/IPS, Web Proxies and DLP among others, Web Applications and Services, Cryptography, Social Engineering and Open Source Intelligence Gathering (OSINT), Mobile platforms, Software Security, malware reverse engineering
- Deep technical understanding of enterprise operating system environments, Active Directory and networking
- Solid understanding of security vulnerabilities and common software engineering flaws
- Familiarity with popular scripting languages and ability to automate simple tasks
- Familiarity with CND-based analytical models (Kill Chain, ATT&CK, etc.)
- One or more of the following security certifications OSCP, OSCE, OSEE, OSWE, CREST, GXPEN preferred
- Experience working with Financial Services and Critical Infrastructure
- Strong verbal & written communication skills & presentation skills
- Ability to work in a fast-paced environment
- Problem solver and barrier breaker
What the job involves
- Plan and execute security testing operations across the enterprise.
- Work closely with Business partners, BISOs, GSOC, and other entities to ensure effective testing of Group’s established security program and identify potential gaps around our people, process, and technology.
- Plan, lead and execute offensive security engagements where you assume the role of a threat actor during tests, attack simulations, training and exercises.
- Employ simulated adversary threat-based approaches to expose and exploit vulnerabilities and weaknesses to improve the security of both our products and technology landscape.
- Replicate tactics, techniques and procedures used by modern attackers, common network exploitation and penetration techniques as well as common software exploitation techniques.
- Develop attack plans to meet specified objectives and coordinate with other Red Team Operators and 3rd Party vendors to achieve these goals.
- Provide constructive feedback to the defenders and product teams on their successes and failures.
- Develop, modify and extend tools/exploits that assist with execution of security assessments, including custom tools and automation.
- Establish credibility as a trusted advisor to stakeholders including customers, executives, peers, and employees.
- Stay current with sophisticated attacks and apply them during red team activities.
- Help defensive teams and product teams understand how to detect and/or stop cyber-attacks via purple teaming exercises, CTF demonstrations, etc.
- Become part of a team of security enthusiasts that perform ground breaking research and promote an environment of innovation and knowledge-sharing.
- This is an individual contributor role, but may need to supervise those at an earlier career stage and 3rd party vendors.
- Effectively report analysis and findings in the most accessible way (written reports, Jira, tickets, presentations etc).
- Maintain and develop security testing processes and related artefacts.
Senior Security Specialist (RedTeam) employer: London Stock Exchange
As a Senior Security Specialist (RedTeam) at our company, you will join a dynamic team that thrives on innovation and collaboration in the heart of the financial services sector. We offer a supportive work culture that prioritises employee growth through continuous learning opportunities and hands-on experience with cutting-edge security technologies. Our commitment to fostering a diverse and inclusive environment ensures that every voice is heard, making us an exceptional employer for those seeking meaningful and rewarding careers in cybersecurity.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Security Specialist (RedTeam)
✨Tip Number 1
Network like a pro! Attend industry meetups, conferences, or webinars related to cybersecurity. It's a great way to connect with potential employers and other professionals who can give you the inside scoop on job openings.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your Red Teaming projects, penetration tests, or any relevant work. This gives you a tangible way to demonstrate your expertise and makes you stand out in interviews.
✨Tip Number 3
Practice makes perfect! Engage in Capture The Flag (CTF) challenges or contribute to open-source security projects. This not only sharpens your skills but also shows employers that you're passionate about staying current in the field.
✨Tip Number 4
Apply through our website! We love seeing candidates who are genuinely interested in joining our team. Tailor your application to highlight your experience with security technologies and your problem-solving abilities to catch our eye.
We think you need these skills to ace Senior Security Specialist (RedTeam)
Some tips for your application 🫡
Show Off Your Skills:Make sure to highlight your experience in Red Teaming and Penetration Testing. We want to see how you've tackled security challenges in the past, so don’t hold back on those juicy details!
Tailor Your Application:Customise your CV and cover letter to match the job description. Use keywords from the listing to show us you’re a perfect fit for the Senior Security Specialist role. It’s all about making that connection!
Be Clear and Concise:When writing your application, keep it straightforward. We appreciate clarity, so avoid jargon unless it’s necessary. Make it easy for us to see your qualifications and experience at a glance.
Apply Through Our Website:Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at London Stock Exchange
✨Know Your Stuff
Make sure you brush up on your technical knowledge, especially around Red Teaming and Penetration Testing. Be ready to discuss specific tools and techniques you've used in the past, as well as any relevant security certifications you hold. This will show that you're not just familiar with the concepts but have hands-on experience.
✨Showcase Your Problem-Solving Skills
Prepare to share examples of how you've tackled complex security challenges in previous roles. Think about specific incidents where you identified vulnerabilities or improved security processes. This will demonstrate your ability to think critically and act decisively in a fast-paced environment.
✨Communicate Clearly
Since strong verbal and written communication skills are essential for this role, practice explaining technical concepts in simple terms. You might be asked to present your findings or collaborate with non-technical stakeholders, so being able to convey your ideas clearly is key.
✨Stay Current with Trends
Familiarise yourself with the latest trends in cyber security and common attack vectors. Being knowledgeable about recent attacks and how they were executed can give you an edge in the interview. It shows that you're proactive and committed to staying ahead in the field.
