Penetration Tester
Cambridge
Darktrace
Darktrace AI interrupts in-progress cyber-attacks in seconds, including ransomware, email phishing, and threats to cloud environments and critical infrastructure.Founded by mathematicians and cyber defense experts in 2013, Darktrace is a global leader in cyber security AI, delivering complete AI-powered solutions in its mission to free the world of cyber disruption. We protect more than 9,000 customers from the world’s most complex threats, including ransomware, cloud, and SaaS attacks.
Our roots lie deep in innovation. The Darktrace AI Research Centre based in our Cambridge, UK headquarters, has conducted research establishing new thresholds in cyber security, with technology innovations backed by over 130 patents and pending applications.
For more information on our cutting-edge technology, visit darktrace.com.
What will I be doing:
As a Penetration Tester, you will be working within the internal security team to help conduct full security audits against targets to identify, assess, and report on vulnerabilities. The role will involve scoping out new targets, executing full penetration tests against these services and applications, as well as reporting on all discovered findings for each test under the guidance of a senior member of the team. Your role will predominantly cover internally created systems and services here at Darktrace and will include infrastructure, cloud, web application, and mobile penetration testing.
- Working closely with other teams to understand penetration test requirements and deliver reporting,
- Assisting in development of new processes and policies for as well as improving our internal tooling arsenal,
- Tracking vulnerability findings once reported with an attributed severity score.
What experience do I need:
We welcome applicants who have a basic understanding of penetration testing stages, methodologies and tools. Ideally you will have familiarity with network, web application and system security concepts.
- Knowledge of common vulnerabilities and attack vectors,
- Some experience or exposure to scripting (Bash or Python preferable),
- Relevant certifications such as OSCP, CEH, LPT, GPEN, CompTIA PenTest+ are desirable but not essential,
- A curious candidate with strong written and spoken communication, analysis, problem-solving, and reporting skills,
- Strong analytical and problem-solving skills.
Benefits we offer:
- 23 days’ holiday + all public holidays, rising to 25 days after 2 years of service,
- Additional day off for your birthday,
- Private medical insurance which covers you, your cohabiting partner and children,
- Life insurance of 4 times your base salary,
- Salary sacrifice pension scheme,
- Enhanced family leave,
- Confidential Employee Assistance Program,
- Cycle to work scheme.
#LI-Hybrid
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Bash CEH Cloud CompTIA Cyber defense GPEN OSCP Pentesting Python SaaS Scripting Vulnerabilities
Perks/benefits: Career development Health care Medical leave
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.