Website Stroz Friedberg Careers
Gotham Digital Science, a part of the Cyber Resilience practice, is looking for smart, energetic and motivated individuals to add to its London and Manchester based teams. This will be an office based role in London, or initially a home based role for Manchester when not working on client site. As a Consultant, you will be performing the following services:
Application penetration testing and application source code review.
Secure Development Lifecycle consultancy and advisory.
Vulnerability and penetration assessments on Internet exposed systems.
Applying and developing appropriate exploits to gain access, and expand access to remote systems.
Documenting technical issues identified during security assessments.
GDS provides a challenging and exciting work environment that offers a healthy combination of autonomy and senior level support. Our team publishes books and security blogs, contributes to open source software projects, and are engaged in a variety of continuous security research projects. If you enjoy performing deep technical work in a fun and casual atmosphere, contact us to find out more about joining our team.
The following qualifications are expected from potential applicants:
Application and/or infrastructure penetration testing experience above and beyond running automated tools.
Development and/or source code review experience in C/C++, C#, VB.NET, ASP, PHP, or Java.
Familiarity with threat modelling and security design review methodologies.
A good understanding of Unix, Windows and network security skills.
Excellent written and communication skills in English.
Ability to work both independently and perform as a leader in a team environment.
At least 2 years relevant experience in the above.
Offensive Security Certified Professional (OSCP), CREST Registered Tester (CRT).
Degree from an accredited University or equivalent.
The following skills are not required from applicants but would be considered a differentiator:
Currently residing within the United Kingdom, or not requiring work permit sponsorship.
CREST Certified Tester (CCT).
Degree in Computer Science, Information Systems, Engineering or related major.
Experience working as part of an enterprise development team.
Experience developing custom scripts or tools used for vulnerability scanning and identification.
British National able to gain/hold UK government SC clearance.
Fluency in one or more Western European languages.
Note: This job description is intended to describe the general nature and level of work being performed by employees in this position. It is not intended to be an exhaustive list of all responsibilities, duties, and skills required for this position; other duties outside of normal responsibilities may be performed as necessary to meet the needs of the organization.
Background Investigation Notice: Offers of employment are contingent upon our receipt of references consistent with our expectations, the results of pre-employment background checks, and execution upon an employee’s arrival of our confidentiality and non-compete agreement.
Stroz Friedberg is an equal opportunity employer.
You must register to apply for this job.