Senior Penetration Tester

Senior Pen Tester

Warwick based, flexible hybrid working

Full time, permanent (37 hours per week)

Competitive salary plus benefits (below)

National Gas is securing Britain’s energy.  We are responsible for transporting gas to power stations, major industries, storage facilities, and more than half a million businesses and 24 million homes through nearly 5,000 miles of pipes across Britain. National Gas is also proud to lead the way in transforming the energy network for a clean energy future.

As a crucial part of our cyber security team, the Senior Pen Tester will proactively identify and exploit vulnerabilities within Enterprise and Critical National Infrastructure (CNI) system to help uncover security weakness to ensure resilience and security of gas transmission nationwide.

Join us, and help be the energy behind the change.

About the role:

The Senior Pen Tester will:

• Scope and perform penetration testing of a wide variety of Infrastructure, Cloud environments and applications
• Formulate testing plans based on relevant threat assessments
• Keep cybersecurity training and knowledge current by monitoring the latest security threats and vulnerabilities.
• Write clear and concise penetration testing reports detailing findings and recommendations
• Provide recommendations for remediation of identified vulnerabilities.
• Collaborate with IT and development teams to facilitate the implementation of security measures and remediation of identified vulnerabilities.
• Ensure that penetration testing activities align with industry regulations, compliance standards, and organizational security policies.

About you:

• Proven penetration testing and ethical hacking experience.
• Strong knowledge of various operating systems and networks (especially Linux, Windows, and Active Directory).
• Proficiency in a programming language such as Python, JavaScript, or C++.
• Knowledge of web application security.
• Experience with a variety of security tools and techniques and the ability to write scripts to automate tasks.
• A degree or recognized certification such as the CPTS penetration testing certification (e.g. CompTIA PenTest+, CREST or OSCP would be well regarded).
• Experience with cloud and container technologies (e.g. AWS, Azure, Kubernetes).
• Strong attention to detail.
• Strong presenting and report writing skills, with the ability to succinctly convey technical topic to a non-technical audience.
• Team-player.
• Intimate knowledge of CIS controls, NIST CSF, etc.
• Contribute to tool development, both software and hardware, as well as processes and infrastructure, to advance the capabilities of the practice.
• Ideally relevant experience in both IT and OT/ICS/CNI cyber security environments.

What we can offer you:

• Competitive salary, dependant on experience
• Annual performance bonus of up to 6%,
• 26 days' holiday, plus 8 statutory days - plus option to buy 5 additional days,
• Double-match pension - every £1 you put in, we add £2 (max company contribution 12%),
• Opt-In flexible benefit scheme, including salary sacrifice private healthcare, dental insurance, technology plans, car plan and more,
• Financial protection with 10x salary death in service and financial support if you're unable to work due to long term illness or injury,
• Excellent family friendly provisions - maternity/paternity/adoption/surrogacy/ shared parental leave,
• Career progression, professional training, courses & certifications,
• Employee assistance programme offering free confidential professional counselling 24/7,
• Financial support to cover the cost of professional membership subscriptions relevant to your role.

Other 'nice to knows':

• Hybrid flexible working
• Dedicated research time
• Some travel (approximately once a month, to operational sites)
• Free gym and exercise classes onsite at our Warwick office,
• Canteen and coffee shop onsite,
• Free parking.      

About us:

Gas is an essential part of a secure energy supply in Britain and will continue to play a vital role in the energy system for decades to come. More than ever, we need the security that gas brings to keep the lights on, businesses running, and homes warm. National Gas provides that security.

Gas provides the energy security to support renewable electricity generation, and we are developing our infrastructure to transport hydrogen and carbon dioxide across the country. We are Britain’s national gas network, providing secure energy to power the country, achieve net zero and maintain our industrial competitiveness.

At National Gas, we’re committed to building a workforce that reflects the communities that we serve. We celebrate the different experiences our colleagues bring and encourage applicants of all backgrounds to apply. To that end we want to support you during the interview process, please advise your recruitment partner if you require any reasonable adjustments.

#LI-PT1 #LI-Hybrid

Security clearance:

The successful candidate must be able to achieve and maintain Security Check (SC) security clearance for this role.

Many of the positions within our company are subject to national security clearance and Trade Control restrictions. This means that your eligibility for certain roles may be affected by your place of birth, nationality, current or former citizenship, and any residency you hold or have held. Further details are available at United Kingdom Security Vetting: clearance levels - GOV.UK (www.gov.uk).