At a Glance
- Tasks: Conduct penetration testing to identify vulnerabilities and enhance security for the bank's services.
- Company: Join a leading bank focused on secure service delivery and innovation.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Other info: Dynamic team environment with excellent career advancement opportunities.
- Why this job: Make a real impact by protecting customers and colleagues through cutting-edge security practices.
- Qualifications: Experience in penetration testing and knowledge of security controls required.
The predicted salary is between 36000 - 60000 £ per year.
Join us as a Senior Security Penetration Tester. Take on a new challenge and use your specialist knowledge to support the wider bank in building and operating secure services that protect both colleagues and customers.
You’ll act as a subject matter expert in a security related field, making sure that the security implications of the backlog are understood in the right way, building security early into design. You’ll be joining an exciting and fast-paced area of the bank, where you can expect great exposure both for you and your work.
What you'll do
- Work at a domain level to understand and ensure robust security is continuously considered and incorporated at every stage, programme increment and feature team delivery.
- Conduct penetration testing, looking for vulnerabilities with real business impact.
- Conduct security testing such as Web Application and API testing independently and as part of a team for larger projects.
- Scope and refine requirements to deliver value for money and meaningful testing.
- Engage with customers to offer a high level of service to the bank’s internal project teams to assist getting projects into production securely.
- Maintain a high level of skills and keep up to date with vulnerabilities in modern web application systems, Network, Mobile, Thick Client, and Cloud testing.
- Support with the identification of risks, while contributing to risk management strategies to achieve business objectives and customer outcomes.
- Use specialist knowledge to support the wider organisation in building and operating secure services that protect both colleagues and customers.
- Make complex or technical issues actionable by colleagues through effective communication.
- Build and leverage relationships with colleagues across the group and where appropriate, with third parties, to make sure decisions made are commercially focused and create long term value for the organisation.
The skills you'll need
- Penetration testing experience and knowledge of technology security controls within the security technology specialism along with an understanding of Agile methodologies.
- Experience of managing penetration testing assignments, including scoping, delivering tests and producing high quality reports in line with good industry practice.
- Familiarity with testing tools like Burp Suite and common bApp store extensions, plus Metasploit, nmap, and Nessus.
- Experience with one of the certifications, such as OSCP/OSWA, CRT/CSTM, CWES/CPTS, BurpSuite Certified Practitioner CREST, Cyberscheme, Tigerscheme or Offensive security.
- An understanding of the OWASP Top Ten vulnerabilities, how to identify and exploit them.
- Excellent verbal and written communication skills and able to adapt for technical and non-technical audiences.
- Strong communication skills, ability to write technical reports, detailed presentation and documentation.
- Experience of providing accurate reports with well-evidenced issues demonstrating the full impact of any identified vulnerabilities.
- Strong analytical and problem solving skills.
Senior Security Penetration Tester employer: NatWest Group
At NatWest Group, we pride ourselves on being an exceptional employer, offering a dynamic work environment where innovation and security are at the forefront. As a Senior Security Penetration Tester, you'll benefit from a culture that values continuous learning and professional growth, with access to cutting-edge tools and technologies. Our commitment to employee well-being and collaboration ensures that you will thrive in a supportive atmosphere while making a meaningful impact on the security of our services.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Security Penetration Tester
✨Tip Number 1
Network like a pro! Attend industry meetups, conferences, or webinars related to security and penetration testing. It's a great way to meet potential employers and showcase your expertise in person.
✨Tip Number 2
Show off your skills! Create a portfolio of your past penetration testing projects, including reports and outcomes. This will give you an edge when discussing your experience during interviews.
✨Tip Number 3
Practice makes perfect! Engage in Capture The Flag (CTF) competitions or contribute to open-source security projects. This not only sharpens your skills but also demonstrates your passion for the field.
✨Tip Number 4
Apply through our website! We’re always on the lookout for talented individuals like you. Tailor your application to highlight your penetration testing experience and how you can add value to our team.
We think you need these skills to ace Senior Security Penetration Tester
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Senior Security Penetration Tester role. Highlight your relevant experience, especially in penetration testing and security controls. We want to see how your skills align with what we’re looking for!
Showcase Your Skills:In your application, don’t just list your skills—show us how you’ve used them! Provide examples of past projects where you conducted penetration testing or managed assignments. This helps us understand your hands-on experience.
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re passionate about security and how you can contribute to our team. We love seeing enthusiasm and a clear understanding of the role.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It’s the best way for us to receive your application and ensures you don’t miss any important updates from us!
How to prepare for a job interview at NatWest Group
✨Know Your Stuff
Make sure you brush up on your penetration testing knowledge, especially around the OWASP Top Ten vulnerabilities. Be ready to discuss how you've identified and exploited these in past roles. This shows you're not just familiar with the theory but have practical experience too.
✨Showcase Your Tools
Familiarise yourself with the tools mentioned in the job description, like Burp Suite, Metasploit, and Nessus. If you can, prepare examples of how you've used these tools effectively in previous projects. This will demonstrate your hands-on experience and technical prowess.
✨Communicate Clearly
Since you'll need to explain complex security issues to both technical and non-technical audiences, practice articulating your thoughts clearly. Prepare to give examples of how you've communicated findings in reports or presentations, highlighting your ability to make technical details accessible.
✨Engage with the Team
Research the company culture and be ready to discuss how you can contribute to team dynamics. Think about how you've built relationships in past roles and be prepared to share those experiences. This shows that you’re not just a lone wolf but someone who values collaboration.
