Pentester - Cheltenham, United Kingdom - bailie group

bailie group
bailie group
Verified Company
Cheltenham, United Kingdom

3 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

Company Overview


CDS Defence & Security (CDS DS) is part of the Bailie Group - a family-owned group of agencies and consultancies with the collective mission to improve people's lives by sharing knowledge.


CDS DS is an industry leading technical consultancy delivering world class services in Support Engineering, Cyber Security & Information Assurance, Training & Leadership Development and Communications.

We exist to make the world a safer place and do this by providing sophisticated training solutions, operational support, information assurance and engineering support to a breadth of clients within the defence and security domain.


Working for a sector-leading, independent SME brings the capacity for real innovation and agility in all aspects of the defence and security sectors, public and private.

Working in the CDS DS CS&IA Services business unit is highly attractive, as the Company seeks to develop a market-leading proposition wider than its current support for strategic UK defence offering.


About the role


CDS DS is looking for a strong, technically minded and ambitious person to come in and pioneer our Penetration Testing services function.

This is a new capability for CDS DS - you would be the first member of the team with the potential to grow into a lead role in a short space of time.


This is a fantastic opportunity to join a dynamic and highly successful team as a Penetration Tester/Technical Assurance Consultant, and to play an integral part in our ambitious targets for growth and progress up the value chain.

Bringing a proven penetration testing and technical assurance background to the team, you will have the opportunity to shape the new aspects of our offering, to complement the rest of the business and best exploit existing, new and developing market opportunities.


Responsibilities

  • Proactively assist the Technical Assurance Practice Lead in the strategy and growth of a new penetration testing capability.
  • Establish CDS DS as an IASME Cyber Essentials Plus (CE+) Certification Body (we are already offer CE Basic Certifications).
  • Perform penetration testing and technical assurance activities on client systems and business processes to assess the effectiveness of CS&IA controls and identify gaps to address.
  • Provide technical security architecture advice and guidance for clients in 'business as usual', technical refresh and new project environments.
  • Identify and establish good technical security practice to meet client business requirements.
  • Mitigate technical CS&IA risks within client operational environments and determine appropriate remediation based on business risk appetite that protects information assets from loss, misuse, leakage or corruption.

Essential:

In order to establish CDS DS as a Cyber Essentials Certification Body, you MUST hold at least one of the following qualifications:

  • CREST Registered Penetration Tester
  • CREST Certified Infrastructure Tester
  • Cyber Scheme Team Member (CSTM)
  • Cyber Scheme Team Leader (CSTL)
  • EC-Council Certified Security Analyst (ECSA):
Penetration Testing practical

  • Offensive Security Certified Professional (OSCP)
  • TigerScheme Team Member (CTM/QSTM)
  • TigerScheme Team Leader (CTL/SST)
CS&IA associated degree level education (desirable)

UK Security Clearance (or the agreement and ability to undergo and maintain such)


Desirable:


  • A minimum of 3 years of experience of delivering penetration testing/technical assurance services (mandatory)
  • Red Teaming experience
  • Experience within a Defence environment, or other UK Government sectors.
  • Evidence of providing penetration testing/technical assurance services within complex scenarios.
  • Evidence of assessing and assuring technical security controls using established or novel approaches.
  • An excellent verbal and written communicator.
  • Ability to work on multiple projects and tasks concurrently, successfully balancing business and client priorities.
  • Ability to provide highquality work under pressure that delivers security outcomes to tight deadlines and manage clientstakeholder expectations.
  • Ability to work effectively both individually and as a team member in a multidisciplined organisation.
  • Experience of producing and inputting into enterprise level technical security architecture designs and documentation.
  • Technical architecture and assurance
  • Application of different delivery methodologies
  • HMG/NCSC Information Assurance Policies, Standards and Guidelines
  • Security Policy Framework,
  • DCPP's Cyber Security Model
  • Cyber Essentials
  • Office for Nuclear Regulation (ONR) Security Assessment Principles (SyAPs)
  • GDPR, DPA, Computer Misuse Act, Official Secrets Act
  • Flexibility to travel and work throughout the UK.
  • A proactive interest in maintaining and enhancing technical and consultancy skills.

Benefits

  • Competitive remuneration package
  • Life Assurance Scheme
  • 25 days annual leave (excluding bank holidays)
  • Onsite Parking
  • Fl
More jobs from bailie group
See all jobs of bailie group