Penetration Tester - Financial Services

Job Description

Sterlings are currently partnering with a Bank, based in the City on London, who are currently seeking a Penetration Tester to join their team.

The team help develop and execute penetration testing plans, including network, web application, and social engineering assessments. Other duties within the team include dentifying security risks and vulnerabilities through simulated attacks, and helping the organization understand the potential impact, as well as managing Red Team tools and the Security Testing & Validation Platform.

The team also implement and maintain governance of any assessments finding remediation progress and create regular reporting for tech and executives.

There is also a lot of collaborating with other technology teams (i.e. infra, app and etc) to develop and improve defensive strategies and security measures to prevent real-world attacks.

Skills and Experience:

• Able to obtain and maintain persistence within corporate systems, while avoiding detection from common security tools.
• Knowledge of tactics related to malicious insider activity, organized crime/fraud groups, and threat actors, both state and non-state sponsored. Solid understanding of offensive and pentest technologies
• Ability to provide remediations recommendation based on test and automated security testing result
• Understanding of how an advance persistent threat and their tactics, procedure and technics
• Understanding of Enterprise Backend to Frontend system architecture
• Familiarity with defender techniques, security monitoring and SIEM tools