menu

close

close

Start your search

Internal Penetration Tester

Cardiff

  1. Full time

Closing date

03/05/2021

About the job

Are you tired of being on the road? Fed up with living out of a bag? Spending too much time in the cold aisle?

If you are looking for a permanent role outside of consulting, we are looking for a Penetration Tester to join our internal team.

Within the internal testing team, you will deliver a range of security assurance services such as web application penetration tests, network, and infrastructure penetration tests. You will be exposed to cutting edge Cloud technologies. You will also undertake social engineering engagements and physical security assessments (when we return to a post-Covid world!) and secure code reviews.

We believe that the key deliverable of any security test is the report. You will prepare high-quality reports detailing findings and making key recommendations. Your findings will feed into our ongoing vulnerability management process, will have a significant impact, and will create change across the business.

You will work alongside IT and development project teams to ensure that all our services – both to our customers and to our staff – are delivered in a secure manner. You will question information that others would take on face value and remain inquisitive to improve the quality of security tests carried out against our infrastructure and applications.

We provide a generous training budget. Members of the team have chosen to undertake numerous training courses and further certifications including SANS and CREST. We expect you to keep up to date on current security trends, techniques, and tools. We love gamifying security training, and staff are encouraged to take part in CTFs. You will also be encouraged to attend conferences, seminars, and industry briefings (currently virtually, of course).

Responsibilities

An Internal Penetration Tester will:

  • Carry out detailed application and/or infrastructure penetration test assignments either alone or in a small team.
  • Write high quality reports.
  • Work collaboratively with the wider Information Security teams. 
  • Assist with post incident reviews when required.

Essential Experience/Skills

  • 2 years’ experience in penetration testing.
  • Solid report writing skills.
  • Familiarity with ‘standard’ penetration testing tools.

Highly Desirable Skills

  • Familiarity with at least one cloud platform such as Microsoft Azure, Amazon AWS or Google GCP.
  • Understanding of the Cyber Kill Chain, MITRE ATT&CK and other information security defence and intelligence frameworks.
  • Programming or scripting skills in at least one modern computer language.
  • One or more of the following:
    • CREST Registered Tester (CRT)
    • Tigerscheme Senior Security Tester (QSTM)
    • Other ‘CHECK Team Member’ equivalent qualification.
    • (ISC)2 Certification such as CISSP
    • GIAC Certification such as GEVA, GPEN, GCIH, GWAPT

About Admiral

We're Wales’ only FTSE 100 company. We have forward-thinking approaches and provide endless opportunities to test, learn and grow. There's a reason we've been named a Best Place to Work: our progressive culture, core values, and commitment to diversity and inclusion have created a working environment where people share ideas, aren’t afraid to speak up and change things, and above all, feel valued.

Admiral has grown from being a small start-up into a multi-national organisation. The company is constantly investigating new products, services and markets and is now present in eight countries with a diverse product portfolio.

Our success goes hand-in-hand with having a strong culture where we put our people and customers first. Our philosophy is simple yet effective: people who like what they do, do it better, and this, in turn, means that our customers receive the level of service and products that they deserve. Our culture is honest, open and wholeheartedly focused on four key areas:

Communication, Equality, Reward & Recognition, and Fun.

Salary, Benefits and Work-Life Balance

We do not have a set salary for this position, as it will be dependent on the successful candidate’s experience. We are happy to see CVs from all candidates who meet the requirements and will be happy to discuss the remuneration package.

At Admiral, we are proud to be a diverse business where we put our people and customers first. We have great benefits to ensure employees have a great work-life balance; it's one of the reasons we're voted no. 1 in the 2019 Sunday Times Best Big Companies to Work For in the UK. We want you to have an element of freedom to define a working lifestyle that supports this, so accommodate flexible hours wherever possible.

You can also view some of our other key benefits here; https://admiraljobs.co.uk/employee-benefits/.

If you think this role is for you and would like to be considered for this opportunity, please click “apply now” to complete an online application form.

Please note, we are unable to accept CVs via email and from agencies. 

#LI-LP1

 

jobs

Related jobs

Threat Intelligence Analyst

** DEFAULT listwidget.vacancypartial.salary - en-GB **

** DEFAULT listwidget.vacancypartial.locationfreetext - en-GB **

Cardiff

Job Type

Full time

Department

Information Security

Location

Cardiff

Office address

Tŷ Admiral, David Street, Cardiff, CF10 2EH

Description

The Threat Intelligence Analyst will be working to support specific intelligence types (tactical, operational and strategic) dependent on the tertiary team’s focus within the Threat Intelligence team.

Reference

4654

Expiry Date

12/02/2021

Allison Martin

Vacancy managed by

Allison Martin
Allison Martin

Vacancy managed by

Allison Martin
View Shortlist
Information Security Risk Consultant

** DEFAULT listwidget.vacancypartial.salary - en-GB **

** DEFAULT listwidget.vacancypartial.locationfreetext - en-GB **

Cardiff

Job Type

Full time

Department

Information Security

Location

Cardiff

Office address

Tŷ Admiral, David Street, Cardiff, CF10 2EH

Description

Overview This is a role for an information security risk management expert who will take ownership of risk management processes, as part of the Security Risk and Governance team, reporting to the Go

Reference

4706

Expiry Date

05/03/2021

Loren Jones

Vacancy managed by

Loren Jones
Loren Jones

Vacancy managed by

Loren Jones
View Shortlist
Senior Internal Penetration Tester

** DEFAULT listwidget.vacancypartial.salary - en-GB **

** DEFAULT listwidget.vacancypartial.locationfreetext - en-GB **

Cardiff

Job Type

Full time

Department

Information Security

Location

Cardiff

Office address

Tŷ Admiral, David Street, Cardiff, CF10 2EH

Description

Are you tired of being on the road? Fed up with living out of a bag? Spending too much time in the cold aisle? If you are looking for a permanent role outside of consulting, we are looking for a Se

Reference

4681

Expiry Date

26/02/2021

Kate  Williams

Vacancy managed by

Kate Williams
Kate  Williams

Vacancy managed by

Kate Williams
View Shortlist
posts

Related posts

Celebrating our 5th Annual Learning & Development Conference

Teaser

Contact Centre

Content Type

Blog

** DEFAULT postresults.publishdate - en-GB **

20/11/2019

Summary

On the 8th of November, our very own Admiral Academy hosted their 5th International Learning and Development (L&D) Conference. Over 150 training professionals came together from all corners of the business to collaborate, share best practise, network and most importantly celebrate success. The day kicked off with the amazing Admiral Inspire Choir and an opening speech from Head of People Services and Head of Learning and Development. David Stevens (CEO) also recorded a personal thank you message to attendees for their efforts in winning the L&D Award at the Best Big Companies to Work for Awards this year!The day included a whole host of talks from managers around the business, with keynote speaker Garan Pieniazek who gave an inspiring talk. The day also incuded talks from our ILM 7 Graduates and Working Groups who have worked incredibly hard throughout the year to deliver current content at this year’s conference.The second part of the day was recognising staff in the business who made a real impact within the learning and development community over the last year.Award Winners from this year’s conference are;Getting To Know Your Learners – Holly: Admiral AcademyDriving Performance – Deepshika: Customer ServiceGuardian of The Culture – Daniel: Admiral AcademyHighly Commended - Excellence in Learning and Development – New BusinessWinner - Excellence in Learning and Development - RenewalsThe L&D Conference and Awards highlights the incredible work of training professionals throughout the business and truly make a difference to the business and staff. Thank you to all and a huge well done!

Teaser

Read on
Laura  Pengilly

by

Laura Pengilly

Laura  Pengilly

by

Laura Pengilly

Changes to our Family Friendly Policies

Teaser

Contact Centre

Content Type

Blog

** DEFAULT postresults.publishdate - en-GB **

06/03/2019

Summary

We understand that balancing the demands of a family and a career can be challenging at times. Taking time off work to be with your new family is very important and we recognise that many fathers, partners and adopters want to be more hands on and involved with the care of their children. We are committed to supporting our staff when they go through parenthood and a valued source of support is provided by our Parental Leave policies. The policies allow staff to spend cherished time at home with their family, so that when they return to work, they can thrive and flourish.   Our policies go above the statutory pay requirements to encourage our staff to take more time at home when they become parents. As long as you've worked for us for 26 weeks, you can expect the following benefits. Maternity LeaveEmployees receive 16 weeks of full pay, followed by 23 weeks statutory maternity payPaternity LeaveEmployees receive 2 weeks full pay, 2 weeks statutory paternity pay and 12 days of unpaid leave (should they wish to take it)Shared Parental LeaveWhen both parents work for Admiral they can share the 16-weeks full pay benefit. So, if the mother/primary caregiver decides to return to work prior to 16 weeks, the other parent can pick up the remaining weeks on full payIf one parent is employed by Admiral, and together with their partner fulfil eligibility criteria, they can share the Parental LeaveAdmiral believes that the support doesn’t stop at Parental Leave. We recognise that flexible working is another valuable way in which our staff can attain the work-life balance they need and so employees can request flexible working arrangements.Our employee benefits don’t stop here, take a look at our top 7 perks for working at Admiral.

Teaser

Read on
Alexandra  Dobbie

by

Alexandra Dobbie

Alexandra  Dobbie

by

Alexandra Dobbie

Welsh Data Science Graduate Programme - What to expect!

Teaser

Graduates and Students

Content Type

Blog

** DEFAULT postresults.publishdate - en-GB **

14/11/2018

Summary

Kieran, a grad on the Welsh Data Science Graduate Programme chats to us about his first week and placement here…  We’re so proud to be one of 13 Welsh companies to get involved in the Welsh Data Science Graduate Programme, which encourages top talent to build their careers in a growing data science sector in South Wales.“We are delighted to play a part in the South Wales Data Scientists Graduate Scheme'', said Business Analytics Manager, Sarah (pictured above). “Initiatives like this allow us to develop and keep talented individuals in South Wales and Admiral.” We chatted with Kieran to learn more about the programme, his experience so far and what he’s going to get involved in during his time at Admiral.What is your educational background?‘’I completed a physics degree at Cardiff University (I’m originally from Bath) and now I’m doing an MSc in applied data science, which is funded through the Welsh Data Science Graduate Programme.’’How did you find yourself on the Welsh Data Science Grad Scheme and what exactly does it involve? I applied like you would with any normal job role; it’s a 2-year course and I’ll complete three 8-month rotations with three different companies. On Fridays I am in USW completing various academic units and Monday to Thursday I’m here at Admiral working on a work-based project. What will you be doing here at Admiral?‘’I’m working with Claims Analytics – quite a small team but growing quickly. With the company seeing the value in data science, this is a big area of focus. I’m currently training in SAS and looking to start my project soon, which will involve working with the department at minimising the number of open claims that will have a predicted £0 paid value.’’How are you using your data science degree?‘’I’m using all skills gained from my data science degree as well as using a machine learning model to assess current data for future predictions.’’How are you finding it so far?‘’I’m enjoying it; I’ve never worked in an office environment before – I like it, it’s very relaxed, everyone on the team is friendly and willing to help out. I was recently part of a big solutions meeting and it was good to see how everyone shared the problems they had, and different teams presented different solutions. It was nice to see people taking others advice and working collaboratively.’’Do you have any advice to anybody thinking about doing the same programme?‘’Data science in Wales is booming with so many companies expanding to account for this new area of focus.For me, it was about taking my scientific degree into commercial environment, which can be hard to do with physics degree because of its academic focus. You have to have to find something to make it adaptable in a business environment.There’s room for every science degree to fit into data science, it’s just finding a way to commercialise it and the Welsh Data Science Graduate Programme is a great way to do this.’’You can find out more and stay up to date with similar opportunities through following the Graduate Programme Wales on LinkedIn.You can also follow us on LinkedIn for graduate and data science opportunities.

Teaser

Read on
Emily  Bonney

by

Emily Bonney

Emily  Bonney

by

Emily Bonney

Our Benefits

As one of our four pillars to our culture, Reward and Recognition is extremely important. We believe that happy staff make happy customers, so we have a huge range of great benefits to make sure everybody has something to smile about! Here are a few of our more popular ones.

Share
Schemes

Flexible
Working

Local
Discounts  

Travel Season
Ticket loans

Groups
& Societies 

Development 
Opportunities

View more benefits