“I need a Consultant,
I’m holding out for a Consultant ‘til the end of the night,
He’s gotta be strong, and he’s gotta be fast, and he’s gotta Pen Test at the speed of light”
Much like Bonny Tyler, I need a Hero; well more of a Security Consultant but the principle is the same. I’m looking for that Knight to valiantly ride into companies on his steed, assess their security setup, look at their vulnerabilities and then advise on how to become heroes themselves. You may be a young knight trying his trade before the big battle, or you may have your fair share of battle scars; we’re open to all levels of experience with multiple positions available.
With this role, you won’t be sharpening swords or practicing your jousting techniques; you’ll be working closely with clients, carrying out Penetration Tests, Security Assessments and even carrying out Attack Simulations. When you’re not doing work with clients, you are free to spend your time as you wish; you can research into new technologies, you can create your own, you can attend conferences to boost your knowledge.
What we need in a hero is self-motivation, good communication skills and a passion for security that extends further than the workplace. Do you go home and research into the latest ransomware attack to figure out its origins? Do you reverse code rather than watch Netflix? We are looking for someone at that next level; you can use Nmap to complete port scans but you’ve created your own tool which is more efficient and heroic that you’d prefer to use!
In an ideal world, the hero of our story would have the below skills;
• Testing experience with Web Applications, Infrastructure and Mobile Applications. That means you’ve got a good level of experience with Burp, SQLi, SQLmap, Nessus and Drozer (other tools are available) but you’ve also got a stack of other tools which you prefer and do the job better.
• Ideally we are looking for OSCP and OSCE qualified candidates. You might have CEH which is great but we want the step up.
Again you might not have all of this experience, you may have only completed security assessments on Infrastructures; that’s grand, our client are more than happy to train people with other application testing, to help upskill themselves to the next level of experience. This isn’t a generic Security Consultant role; you will be able to shape your own work and to autonomously shift between tools as you see fit.
If the above sounds like something you would be interested in then forward across your most recent CV and we can have a chat to see if you are the Shrek to our Fiona.
“I need a Consultant,