Security Testing Specialist

Job content

We’re looking for a Security Testing Specialist to join us in our Bradford, Reading or Schiphol-Rijk office.

As Security Testing Specialist, you will be reporting directly into the Senior Manager Security Testing and a key member of the Global Security team within the Global Security ;responsible for end to end penetration testing within a project capacity, with a view to ensuring the company is in line with security & compliance requirements. Drive and define solutions such as continuous testing methodologies for reducing technical risks and a reduction in security vulnerabilities by developing clear scoping templates and working with both in-house and outsourced Development teams, solution designers and external testing partners to introduce and maintain Secure Development and Integration

What will you be doing?

• Responsible for ensuring technical security controls are in place for all CTIO and GDO projects, delivering high quality services and creative solutions across all infrastructure & application development platforms.
• Perform design reviews of new solutions, applications, products, and services to identify potential risks and recommend appropriate mitigations.
• Perform security assessments/penetration testing of applications and infrastructure assets.
• Perform post incident root-cause analysis and develop and implement strategies to prevent recurrence.
• Assist with development and delivery of Liberty Global’s DevSecOps application security strategy.
• Responsible for monitoring and driving Application Security Compliance during project lifecycle.
• Work with stakeholders to implement security solutions and initiatives addressing new vulnerabilities.
• Delivering the technical guidance and testing cope for projects.
• Engage across multiple functions on a global level to ensure Code Development Lifecycles are in place and application verification is drive through all application development programs.
• Ensure consistent and efficient testing methodologies and reporting standards are in place.
  

Essential

We tend to look for people with:

• Hands-on experience of application security. This could either be as an AppSec specialist within a security team, or as a developer with significant experience of securing and defending applications against real-world threats
• Experienced at identify security flaws in networks and applications via architectural assessment and threat modelling.
• In depth knowledge specific to secure coding in one or more of the following: PHP, Python, Objective C and Swift,C#, .net, Java, javascript, perl
• In-depth knowledge of security aspects of at least two of the following:
  
• Modern web applications and related technologies (Angular, React, Jquery, Spring, etc).
• Android and IOS mobile applications
• APIs and micro services
• Network and Server technologies
• Relational Databases
• Authentication/Authorization frameworks e.g. OAuth
• Experience of manual security testing of applications and infrastructure assets using relevant tools (e.g. Burp suite, Nikto, SQLmap, Kali)
• Familiarity with common application related compliance requirements – GDPR, PCI-DSS, CAS-T
• Experience of analysing, assessing and resolving complex technology requirements, problems and issues
• Excellent reporting skills with a key to identifying high risk issues and mitigation strategies.
  

Desirable

• Educated to degree level or equivalent or able to demonstrate a similar level of ability from industrial experience.
• CREST, OSCP/OCSE, SANS or equivalent desirable
• Familiar with Penetration testing methodologies such as OSSTM, ISSAF, OWASP
  

Benefits

• Competitive salary + Bonus.
• 25 days annual leave with the option to purchase 5 more.
• Access to wellbeing and mental health benefits such as the Calm app, personal medical, critical illness cover and dental insurance.
• Access to our online learning platform to continue to develop and grow your career with us.
  

Return To Work

We at Liberty Global understand that having flexibility to maintain your work life balance is essential to being successful in your role. This is why we intend to introduce a hybrid working model (3 days in the office / 2 days remote) once it is safe for our employees to return to the office that we hope will provide our employees with both the chance to come together to collaborate, innovate and keep face-to-face connection with colleagues, all whilst maintaining the flexibility of being able to work remotely.

• Liberty Global is an equal opportunity employer. We embrace diversity and are committed to creating an inclusive environment for our people *