Security Penetration Tester

16th November 2021

Security Penetration Tester

QuantuMDx Careers

QuantuMDx are offering an exciting opportunity of Security Penetration Tester to develop software for the Q-POC™ platform which is designed to diagnose infectious disease within minutes and make a real impact on human healthcare.

As a Security Penetration Tester, you will perform authorized tests on computer systems in order to expose weaknesses in their security that could be exploited by criminals. You can choose to specialize in manipulating a particular type of system, such as:

  • networks and infrastructures ;
  • Windows, Linux and Mac operating systems ;
  • embedded computer systems ;
  • web/mobile applications ;
  • SCADA (supervisory control and data acquisition) control systems ;
  • Internet of Things (IoTs) ;
  • Embedded system.

As well as identifying problems, you may also provide advice on how to minimize risks. You may work in-house for large companies where system security is a crucial function.

Key Roles & Responsibilities

Performing a combination, but not necessarily all, of the following duties.

As a Security Penetration Tester, you’ll understand complex computer systems and technical cyber security terms.

This should be accompanied by:

  • work with clients to determine their requirements from the test, for example the number and type of systems they would like testing
  • plan and create penetration methods, scripts and tests
  • carry out remote testing of a client’s network or onsite testing of their infrastructure to expose weaknesses in security
  • simulate security breaches to test a system’s relative security
  • create reports and recommendations from your findings, including the security issues uncovered and level of risk
  • advise on methods to fix or lower security risks to systems
  • present your findings, risks and conclusions to management and other relevant parties
  • consider the impact your ‘attack’ will have on the business and its users
  • understand how the flaws that you identify could affect a business, or business function, if they’re not fixed
  • keep up to date with the latest security and technology developments
  • plan for disaster recovery and create contingency plans in the event of any security
    breaches
  • monitor for attacks, intrusions and unusual, unauthorized or illegal activity
  • test and evaluate security products
  • use advanced analytic tools to determine emerging threat patterns and vulnerabilities
  • engage in ‘ethical hacking’, for example, simulating security breaches
  • identify potential weaknesses and implement measures, such as firewalls and encryption
  • liaise with stakeholders in relation to cyber security issues and provide future recommendations

Experience, knowledge and requirements

Essential

  • Proven Agile Software Development experience
  • In-depth knowledge of computer operating systems and at least two to four years of experience in a role related to information security
  • B.S. or M.S. in computer science or equivalent
  • Relevant professional qualifications such as cyber security and forensic computing are a plus
  • Trainee and graduate roles will usually include training and certification in these qualifications as part of the role
    • CREST Registered Penetration Tester (CRT)
    • Offensive Security Certified Professional (OSCP)
    • Certified Ethical Hacker (CEH) Certification
    • GIAC Penetration Tester (GPEN) Certification
    • company certification schemes from major vendors and equipment providers like Microsoft (MCP, MCSE) or Cisco (CCNA Security)
  • Eligible to work full time in the UK without restriction

Desirable

  • in-depth understanding of computer systems and their operation
  • excellent spoken and written communication to explain your methods to a technical and non-technical audience
  • attention to detail, to be able to plan and execute tests while considering client requirements
  • the ability to think creatively and strategically to penetrate security systems
  • good time management and organisational skills to meet client deadlines
  • ethical integrity to be trusted with a high level of confidential information
  • the ability to think laterally and ‘outside the box’
  • teamwork skills, to support colleagues and share techniques
  • exceptional analytical and problem-solving skills and the persistence to apply different techniques to get the job done
  • business skills to understand the implications of any weaknesses you find
  • commitment to continuously updating your technical knowledge base

Company Overview

QuantuMDx is a UK-based developer of transformational point-of-care diagnostics, with global operations.

QuantuMDx has developed Q-POC™ – a rapid, portable, PCR point of care diagnostic system. Q-POC™ compresses an entire molecular diagnostic laboratory into a simple to use, accessible and affordable single device, for use at the point of care, with results in approximately 30 minutes. Q-POC™ has been designed for front-line healthcare professionals within a wide range of settings, including emergency rooms, ICU and birthing centers, clinics and pharmacies. Patients are tested, diagnosed and given treatment options in one efficient consultation.

Our first Q-POC™ test detects SARS-CoV-2, the virus causing COVID-19.


The intent of this job description is to provide a representation and level of the types of duties and responsibilities that will be required of positions given this title and shall not be construed as a declaration of the total of the specific duties and responsibilities of any particular position. Employees may be directed to perform job-related tasks other than those specifically presented in this description.


Apply Here

"*" indicates required fields

Name*
Drop files here or
Max. file size: 10 MB, Max. files: 3.
    Consent*
    This field is for validation purposes and should be left unchanged.