Job Summary
A cyber security professional is required to assist and coordinate with the design, development, delivery and sustainment of a robust and comprehensive cyber assessment and testing capability. The ideal candidate will have good experience in a technical cyber security testing and assurance function preferably with critical infrastructure in the Energy Sector.
About This Role
* This role involves selecting appropriate testing approach using in-depth technical analysis of risks and typical vulnerabilities.
* The successful candidate will produce test scripts, materials and test packs and tests new and existing networks, systems, or applications to identify vulnerabilities and non-conformance with standards and patterns.
* They will work with project teams, security/solution architect, application owners to develop penetration test scope that include relevant threat scenarios.
Key Responsibilities:
* Plan and drive penetration testing within a defined area of business activity.
* Record and analyse actions and results and modify tests if necessary.
* Provide advice on penetration testing to support others.
Requirements
* Detailed understanding of contemporary adversary tradecraft, effective controls, and models for adversary emulation (including Mitre ATT&CK).
* Demonstrated experience in successfully working with external vendors to perform the penetration testing.
* Problem Solving: Within clear organisational policies and business/professional principles jobholder applies analytical thinking to diverse problems.