Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team as a Penetration Testing Engineer, scoping and delivering security assessments.
- Company: Nationwide is dedicated to protecting members' data and finances through innovative security measures.
- Benefits: Enjoy flexible working, a personal pension plan, 25 days holiday, and wellness options.
- Why this job: Make a real impact on enterprise security while working in a dynamic, supportive environment.
- Qualifications: Significant experience in penetration testing with industry-recognized qualifications like OSCP or CRT.
- Other info: This is a 6-month Fixed-Term Contract with opportunities for continuous training.
The predicted salary is between 36000 - 60000 £ per year.
We’re looking for an enthusiastic and motivated penetration tester with the ability to scope and deliver a range of assessment types including mobile, thick client and containerised solutions.
You’ll be used to working in a fast-paced, dynamic environment, functioning as part of a multi-disciplinary team where you have been responsible for maintaining high standards of operational output.
You will be expected to work independently and proactively to ensure that penetration tests are completed successfully, and the findings are understood by key stakeholders.
You will have significant experience in delivering penetration tests from scoping to reporting and triage activity. You will be able to perform tests across a wide range of system and software stacks.
Communication skills are vital for the role. You must be comfortable explaining the risks of identified findings to non-technical stakeholders.
You will be required to undertake continuous training to meet the technical requirements of a business undergoing significant transformation and adoption of new technologies.
Protecting our members’ data and finances is at the heart of what the Security & Resilience teams do. We operate technical controls to help ensure that vulnerabilities are identified and reported to key stakeholders. As part of the Technical Vulnerability Identification (penetration test) team, this is an exciting opportunity to have a real impact on the security of our enterprise.
We are happy to consider flexible working approaches to help you perform at your best.
This role is a 6 month Fixed-Term Contract.
What you’ll be doing
Your core responsibilities will be to apply methodologies and tooling to test for the presence of security vulnerabilities in Nationwide and supplier systems to meet strategic, operational and tactical objectives.
You’ll be effective at communicating with senior stakeholders and you will be adept at articulating technical vulnerabilities and making recommendations in layman’s terms.
The successful candidate will be able to demonstrate an excellent understanding of, and experience in, a diverse range of technologies, with a clear focus on security.
In addition, you will have a detailed understanding of penetration testing methodologies together with a keen interest in the future of cyber security issues faced by financial organisations.
The individual we are looking for will have a strong delivery focus, be self-motivated with a positive can-do attitude and will be eager to seek out new challenges. You will also be able to mentor and support more junior members of the team, leaning on your extensive and varied experience.
About you
We are looking for someone who has:
- Significant experience of undertaking penetration tests, for highly resilient solutions.
- Detailed knowledge of penetration testing tools, techniques and methodologies.
- Formal industry recognised qualification, e.g. CSTM, CRT, OSCP, OSEP.
- Be a resilient and a highly motivated self-starter who relishes a challenge and is able to work independently or as part of a close-knit team.
- Experience of testing cloud services, API-based technologies, containerised solutions and mobile applications.
The extras you’ll get
There are all sorts of employee benefits available at Nationwide, including:
- A personal pension – if you put in 7% of your salary, we’ll top up by a further 16%
- Up to 2 days of paid volunteering a year
- Life assurance worth 8x your salary
- A great selection of additional benefits through our salary sacrifice scheme
- Wellhub – Access to a range of free and paid options for health and wellness
- Access to an annual performance related bonus
- Access to training to help you develop and progress your career
- 25 days holiday, pro rata
What to do next
If this role is for you, please click the ‘Apply Now’ button. You’ll need to attach your up-to-date CV and answer a few quick questions for us.
We respond to everyone, so we will be in contact shortly after the closing date to let you know the outcome of your application.
#J-18808-Ljbffr
Penetration Testing Engineer - 6 month FTC employer: Nationwide Building Society
Contact Detail:
Nationwide Building Society Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Penetration Testing Engineer - 6 month FTC
✨Tip Number 1
Make sure to showcase your experience with a diverse range of technologies in your discussions. Highlight specific examples of penetration tests you've conducted, especially those involving cloud services and mobile applications, as this aligns closely with what we're looking for.
✨Tip Number 2
Prepare to discuss your approach to communicating technical vulnerabilities to non-technical stakeholders. Being able to articulate complex issues in layman's terms is crucial for this role, so think of scenarios where you've successfully done this in the past.
✨Tip Number 3
Stay updated on the latest trends and challenges in cyber security, particularly those affecting financial organizations. This knowledge will not only help you during interviews but also demonstrate your commitment to continuous learning and adaptation in a rapidly changing field.
✨Tip Number 4
If you have any formal industry qualifications like OSCP or CRT, be ready to discuss how these have equipped you with the skills necessary for this role. Mentioning your ongoing training efforts can also show your dedication to professional growth.
We think you need these skills to ace Penetration Testing Engineer - 6 month FTC
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your significant experience in penetration testing, especially with mobile, thick client, and containerised solutions. Include specific examples of past projects where you successfully scoped and delivered assessments.
Showcase Communication Skills: Since communication with non-technical stakeholders is vital for this role, include examples in your application that demonstrate your ability to explain technical vulnerabilities in layman's terms. This could be through previous job experiences or relevant training.
Highlight Relevant Qualifications: Mention any formal industry-recognized qualifications you hold, such as CSTM, CRT, OSCP, or OSEP. This will help establish your credibility and expertise in the field of penetration testing.
Express Your Motivation: In your cover letter or application answers, convey your self-motivated attitude and eagerness to take on new challenges. Discuss your interest in the future of cybersecurity issues faced by financial organizations to align with the company's goals.
How to prepare for a job interview at Nationwide Building Society
✨Showcase Your Technical Expertise
Be prepared to discuss your experience with various penetration testing tools and methodologies. Highlight specific projects where you successfully identified vulnerabilities and how you communicated those findings to stakeholders.
✨Communicate Clearly with Non-Technical Stakeholders
Practice explaining complex technical concepts in simple terms. This will demonstrate your ability to bridge the gap between technical and non-technical audiences, which is crucial for this role.
✨Demonstrate Your Problem-Solving Skills
Prepare examples of challenges you've faced during penetration tests and how you overcame them. This will show your resilience and proactive approach to problem-solving.
✨Express Your Passion for Cyber Security
Share your thoughts on current trends and future challenges in cyber security, especially in the financial sector. This will reflect your enthusiasm for the field and your commitment to continuous learning.
