Senior Network Penetration Tester

Location: Onsite – Dublin
Contract Start Date: 15th January 2025
Contract Type: Full-time, Contract
Remote/Onsite/Hybrid: Onsite only
 

Job Overview: 

We are seeking a highly skilled Senior Network Penetration Tester with over 7 years of extensive experience in penetration testing and cybersecurity. The role will involve leading complex penetration testing engagements, working closely with key stakeholders, and providing detailed technical reports to assess and mitigate security vulnerabilities across ICT infrastructures. The successful candidate will play a crucial role in delivering high-quality, detailed assessments and driving security improvements while leading a team of professionals.

Key Responsibilities:

• Penetration Testing: Perform comprehensive penetration tests across all areas of the ICT infrastructure, including web applications, network components, mobile applications, and specialized equipment like in-car routers and body-worn cameras, adhering to industry best practices and minimizing disruption.

• Collaboration & Planning: Work with internal teams to design and plan penetration testing activities, identify critical systems, and select appropriate testing methodologies to minimize operational impact.

• Reporting: Provide detailed reports that include an executive summary, technical analysis of findings, evidence (e.g., screenshots, logs), and prioritized remediation recommendations.

• Training & Knowledge Transfer: Deliver training sessions to staff to enhance their understanding of findings and implement remediation strategies, improving overall security practices.

• Follow-up Testing & Support: Conduct follow-up tests to verify the effectiveness of remediation efforts and offer ongoing consultation for security improvements.

• Security Audits & Reviews: Perform regular audits and reviews of security controls and penetration testing procedures, ensuring compliance with cybersecurity standards.

Mandatory Requirements:

1. Experience: At least 7 years of professional experience in penetration testing or cybersecurity.

2. Qualifications:

   • Mandatory: Penetration Testing certifications (e.g., OSCP, CEH).
   • Desirable:
     • Systems Security Certified Practitioner (SSCP)
     • Certified Information Systems Security Professional (CISSP)
     • Certified Information Security Manager (CISM)

3. Language Proficiency: English proficiency at C2 Mastery level or equivalent (Common European Framework of Reference for Languages).

Key Competencies & Skillsets:

• Penetration Testing Experience: Proven experience in performing penetration testing of applications before deployment and during updates.

• Vulnerability Identification: Ability to identify vulnerabilities in programs and web applications that can be exploited for malicious access or data exfiltration.

• Advanced Adversary Simulation: Expertise in simulating sophisticated adversaries through comprehensive testing of system configurations, pathways, and interactions.

• Technical Analysis & Reporting: Ability to provide detailed technical analysis of vulnerabilities, with a focus on forensics, threat analysis, and incident response.

• Adversary Simulation & System Resilience: Skilled in assessing systems and networks for resilience against advanced adversaries with deep technical expertise and knowledge of targeted systems.

Desirable Experience:

• Experience with advanced technical testing methods, including multi-vector attacks.
• Strong understanding of ethical hacking, threat analysis, and remediation processes.