Our people work differently depending on their jobs and needs. From home working to job sharing, visit the remote and flexible working page on our website to find out more.

This role is based in the United Kingdom and as such all normal working days must be carried out in the United Kingdom.

Join us as a Penetration Tester, Technology Security

• This is an opportunity to take on a technical role and make a tangible impact on our function
• You’ll be able to build and maintain a wide network of stakeholders of varying seniority
• Hone your existing technical skills and advance your career in this critical, fast paced role

What you'll do

As a Penetration Tester, you’ll provide an end to end security response, including triage, response, escalation, and coordination of events and incidents. You’ll carry out and contribute to root cause analysis on security incidents and events, conduct training and scenario planning to prepare for and anticipate future events.

You’ll also:

• Collaborate with internal and external colleagues, specialists and stakeholders to ensure activities relating to incident response, user access, alert monitoring, root cause analysis and scenario planning are completed in line with standard operating procedures and to a high standard
• Respond to customer queries and security events, ensuring making sure feedback loops are in place to improve our service and response
• Proactively identify and manage risk escalation to deliver key security related customer and compliance outcomes
• Interrogate and interpret large volumes of data and understand the root cause of problems
• Create and maintain documentation, and support controls and quality assurance in line with the bank’s standards

The skills you'll need

You'll bring web application and infrastructure level penetration testing experience, or a relevant degree in subjects such as Ethical Hacking or Information Security. You should also have good collaboration and stakeholder management skills.

You’ll also need:

• Incident management and security controls experience
• The ability to deliver penetration testing services in line with approved processes
• A successful track record of discovering vulnerabilities and security flaws
• Knowledge of testing methodologies, including OWASP and OSSTMM
• Good communication skills, and the ability to write technical reports, detailed presentations and documentation

If you need any adjustments to support your application, such as information in alternative formats or special requirements to access our buildings, or if you’re eligible under the Disability Confident Scheme please contact us and we’ll do everything we can to help.