Cyber Security Engineer - Automation
- Employer
- Barclay Simpson.
- Location
- Fully Remote
- Salary
- Competitive
- Closing date
- 29 Aug 2022
View more
- Sector
- Consultancy
- Job Role
- Information Security Officer
- Job Type
- Contract
You need to sign in or create an account to save a job.
Job Description
Cyber Security Engineer required for long-term client and market leading financial services firm. The role will be centred around integrating tooling with the aim of automating parts of penetration testing. You will support the team and advise on the development of the automation of a two recurring Pen Tests. This will be used to help understand the benefits of automation and to help define a future Programme of work for further automation.
The Secure Application Tester will:
Cyber Security Engineer required for long-term client and market leading financial services firm. The role will be centred around integrating tooling with the aim of automating parts of penetration testing. You will support the team and advise on the development of the automation of a two recurring Pen Tests. This will be used to help understand the benefits of automation and to help define a future Programme of work for further automation.
The Secure Application Tester will:
- Secure Application Testing for team within the sprint cycles
- Plan and conduct tests and record vulnerabilities accordingly
- Work with asset owners and IT Teams to plan and drive vulnerability remediation
- Write high quality reports
- Create actionable metrics and reports for executive and technical leadership
- Work collaboratively with the wider Information Security teams
- Assist the team in building new as well as maintaining current assets
- 1 years' experience of working in a DevOps/Agile environment.
- 1 years' experience of software testing
- 1 years' experience of automation - eg, Azure DevOps
- Excellent Java programming skills
- Report writing skills
- Familiarity with the OWASP top ten web application risks
- Understanding of the Cyber Kill Chain, MITRE ATT&CK and other information security defence and intelligence frameworks.
- Familiarity with at least one cloud platform such as Microsoft Azure, Amazon AWS, or Google GCP.
- Knowledge of APIs and standard formats such as REST.
- Knowledge of infrastructure as code, such as Terraform.
- One or more of the following:
- ISTQB/ISEB Test Foundation Certificate.
- ISTQB/ISEB Information Security Management Principles.
- Recognised programming qualification (Java)
- AZ-400: Designing and Implementing Microsoft DevOps Solutions
You need to sign in or create an account to save a job.
Get job alerts
Create a job alert and receive personalised job recommendations straight to your inbox.
Create alert