Start Hiring Start Applying
Start Applying

StudySmarter Job Board

Senior Penetration Tester
Apply now
Job Board
Companies
Starling Bank
Senior Penetration Tester

Senior Penetration Tester

Full-Time 60000 - 80000 £ / year (est.) No home office possible
Apply now Go Premium
Starling Bank

At a Glance

  • Tasks: Join our team to conduct penetration tests and enhance security across our digital banking platform.
  • Company: Starling Bank, the UK's leading digital bank with a tech-driven culture.
  • Benefits: Enjoy 25 days holiday, private medical insurance, and flexible working options.
  • Why this job: Make a real impact in fintech while collaborating with talented cyber security professionals.
  • Qualifications: 5+ years in information security and experience in penetration testing.
  • Other info: Open to diverse backgrounds; we value attitude and aptitude over specific qualifications.

The predicted salary is between 60000 - 80000 £ per year.

Starling is the UK's first and leading digital bank on a mission to fix banking! We built a new kind of bank because we knew technology had the power to help people save, spend and manage their money in a new and transformative way. We're a fully licensed UK bank with the culture and spirit of a fast-moving, disruptive tech company. Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and disruptive technology that keeps us on the cutting edge of fintech.

We operate a flat structure to empower you to make decisions regardless of what your primary responsibilities may be. Innovation and collaboration will be at the core of everything you do. Help is never far away in our open culture; you will find support in your team and from across the business.

The way to thrive and shine within Starling is to be a self-driven individual and take full ownership of everything around you: from building things, designing, discovering, to sharing knowledge with your colleagues and ensuring all processes are efficient and productive to deliver the best possible results for our customers. Our purpose is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness.

Hybrid Working

We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we can interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week.

About the Role

As an experienced Penetration Tester at Starling, you'll be joining an established team, working with talented cyber security professionals to ensure our services are designed, developed and operated securely. This is a collaborative role - you'll directly interact with multiple areas of the business to understand requirements, conduct research, perform security testing, and report issues aligned to our risk framework.

Being an internal tester, you'll gain a strong understanding of how technology works at Starling to enable in-depth testing. You'll also support remediation processes, seeing your findings lead to tangible security improvements. We understand the importance of knowledge and expertise remaining current, so we'll actively support your advancement through research and training. In turn, you'll help us continuously improve our processes, methodologies and tools to maintain the highest standard of testing.

Responsibilities

  • Scoping and performing mobile, web application, cloud and infrastructure penetration tests.
  • Collaborating with engineering teams to facilitate secure development, including:
  • Reviewing and analysing proposed technical solutions to identify appropriate security controls.
  • Conducting code reviews of features and critical security components.
  • Performing in-depth practical security testing.
  • Advising on the remediation of security issues and identifying solutions to address root causes.
  • Automating security testing and developing internal tooling to achieve continuous assurance.
  • Identifying and implementing improvements to the team's internal processes and procedures.
  • Mentoring less-experienced team members, leading by example in technical assessments, and promoting a collaborative approach to security across Starling.

    • Requirements

    We're open-minded when it comes to hiring and we care more about aptitude and attitude than specific experience or qualifications. Ideally, we would like:

    • 5+ years technical information security experience.
    • Experience in mobile, web application, cloud and infrastructure penetration testing.
    • Technical knowledge - we don't expect mastery of every area, but are looking for a good foundation in the following domains:
    • Mobile security (iOS and Android)
    • Web application security
    • Networking and associated protocols
    • Cloud security (AWS and GCP)
    • Containers and Kubernetes
  • A desire to learn, and the ability to apply technical security knowledge to new and unfamiliar areas.
  • Penetration testing qualifications (e.g. CREST Certified Tester, OSCP) or equivalent industry experience.
  • Experience performing code reviews or code-assisted testing, particularly in Java and Go.
  • Experience in automation of security testing (e.g. using Python or Go).
  • Excellent verbal and written communication skills.

    • Interview process

    Interviewing is a two-way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general, you can expect the below, following a chat with one of our Talent Team:

    • First stage with the Penetration Testing Team Lead
    • Second stage with additional members of the Penetration Testing team
    • Final stage with Infosec Director and CISO

    Benefits

    We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we can interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week.

    • 25 days holiday (plus take your public holiday allowance whenever works best for you)
    • An extra day's holiday for your birthday
    • Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off
    • 16 hours paid volunteering time a year
    • Salary sacrifice, company enhanced pension scheme
    • Life insurance at 4x your salary & group income protection
    • Private Medical Insurance with VitalityHealth including mental health support and cancer care.
    • Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton
    • Generous family-friendly policies
    • Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks
    • Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing

    About Us

    You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems.

    Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law.

    Senior Penetration Tester employer: Starling Bank

    Starling Bank is an exceptional employer, offering a dynamic work environment that combines the innovation of a tech company with the stability of a fully licensed bank. Employees benefit from a culture of collaboration and support, with ample opportunities for professional growth through training and mentorship. With a strong commitment to work-life balance, generous holiday allowances, and a range of health and wellness benefits, Starling is dedicated to fostering a diverse and inclusive workplace where every team member can thrive.
    Starling Bank

    Contact Detail:

    Starling Bank Recruiting Team

    View Starling Bank Profile

    StudySmarter Expert Advice 🤫

    We think this is how you could land Senior Penetration Tester

    ✨Tip Number 1

    Network like a pro! Reach out to current or former employees at Starling on LinkedIn. A friendly chat can give you insider info and maybe even a referral, which can really boost your chances.

    ✨Tip Number 2

    Prepare for the interview by brushing up on your technical skills. Make sure you can talk confidently about your experience in penetration testing and how it relates to Starling's tech stack. Show them you know your stuff!

    ✨Tip Number 3

    Don’t just sit back and wait for the interview! Be proactive and come up with questions that show your interest in their projects and culture. This will help you stand out as someone who’s genuinely excited about the role.

    ✨Tip Number 4

    Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re serious about joining the Starling team.

    We think you need these skills to ace Senior Penetration Tester

    Penetration Testing
    Mobile Security (iOS and Android)
    Web Application Security
    Cloud Security (AWS and GCP)
    Networking and Associated Protocols
    Containers and Kubernetes
    Code Reviews
    Automation of Security Testing (e.g. using Python or Go)
    Excellent Verbal and Written Communication Skills
    Technical Information Security Experience
    Problem-Solving Skills
    Collaboration
    Mentoring
    Research and Training

    Some tips for your application 🫡

    Tailor Your CV: Make sure your CV reflects the skills and experiences that align with the Senior Penetration Tester role. Highlight your technical knowledge in mobile, web application, and cloud security, as well as any relevant qualifications.

    Craft a Compelling Cover Letter: Use your cover letter to tell us why you're excited about joining Starling. Share your passion for cybersecurity and how you can contribute to our mission of transforming banking through technology.

    Showcase Your Projects: If you've worked on any interesting penetration testing projects or have relevant experience, don’t hesitate to include them. We love seeing practical examples of your work and how you've tackled security challenges.

    Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen to join our team!

    How to prepare for a job interview at Starling Bank

    ✨Know Your Stuff

    Make sure you brush up on your technical knowledge, especially in mobile, web application, and cloud security. Be ready to discuss your experience with penetration testing and any relevant qualifications you have. This will show that you're not just a candidate, but a knowledgeable professional who can contribute from day one.

    ✨Show Your Curiosity

    During the interview, don’t hesitate to ask questions about Starling's approach to security and how the team collaborates. This is a two-way street, and showing genuine interest in their processes will demonstrate that you’re eager to be part of their innovative culture.

    ✨Be Ready to Collaborate

    Since this role involves working closely with various teams, prepare examples of how you've successfully collaborated in the past. Highlight your ability to communicate complex security concepts clearly and how you’ve contributed to team success in previous roles.

    ✨Emphasise Continuous Learning

    Starling values individuals who are keen to learn and grow. Share your experiences with ongoing education, whether through formal training or self-study. Discuss how you stay updated with the latest trends in cybersecurity and how you plan to bring that knowledge to the team.

    Senior Penetration Tester
    Starling Bank

    Land your dream job quicker with Premium

    You’re marked as a top applicant with our partner companies
    Individual CV and cover letter feedback including tailoring to specific job roles
    Be among the first applications for new jobs with our AI application
    1:1 support and career advice from our career coaches
    Go Premium

    Money-back if you don't land a job in 6-months

    >