Source Technology

Source Technology Swindon, Swindon, Swindon, UK
16/06/2018
Contractor
My client, a leading Financial Services company are currently recruiting for a Contract Operations Engineer to join their Technology Services Division. This role will be a split between delivery of a number of different virtual server and desktop related projects as well as BAU support. The successful candidate will be an experienced Infrastructure/Operations Engineer who has experience in deployment projects and BAU support within: 1. Applying security best practice to our virtual Servers and desktop estate 2. Windows 10 managed device administration 3. System Centre Configuration Management Infrastructure and Administration 4. Windows server administration 5. Exchange 2010 and Office 365 Administration Required Skills: - Windows server 2016, 2012 R2 and 2008 R2 - Windows 10 - Exchange 2010 - AWS ( Nice to have )
Source Technology Swindon, Swindon, Swindon, UK
14/06/2018
Contractor
My client, a leading Financial Services company are currently recruiting for a proven Data Modeller to join their Data Architecture team. The successful candidate will be a proven Data Modeller who has ideally worked for a Financial Services client in the past, has worked with the below technologies and enjoys working in an autonomous environment and likes to take pride and responsibility in the work that they do. Please see the job spec below: Purpose Develop Conceptual, Logical & Physical Data Models to support key Data Developments Agree, Document and Promote the adoption of sound, pragmatic Datamodelling and mapping standards , based on exploitation of ErWin and the ErWin Portal Promote the adoption of sound pragmatic data flow diagramming , for development reuse by Projects, based on AssetGen Establish a metadata repository of data interfaces, that drives AssetGen Objectives Work with Business Analysts & Agile Product Owner's to drive out Data Requirements Will include review of Business Requirement Documentation and possibly contribute to development of agile User Stories Build High Level Design Documentation (HLD) Develop Conceptual, Logical and Physical Data Models Build Data Flows, track interfaces Walkthroughs/approvals Liaise with Onshore and offshore Developers and DM&S Data Analysts to interpret HLD's, review Tech Specs Erwin Portal - administer, advise on adoption for mappings, glossaries (with Data Owners ), build standards Reqd Skills Reading and Creating Data Models - Conceptual, Logical, Physical - and knowing when a logical model is too abstract Business Requirements Analysis SQL Normalisation, Dimensional High Degree of Competence of using Erwin (recent edition - R9+ ideal) - admin, conceptual/logical/physical, model driven DB design, Nice to have - Erwin workgroup/portal Experience Financial Services Experience - advantageous Working with Enterprise Data Models - advantageous, not essential Waterfall & Agile Scrum Development Approaches 'Soft Skills' A good communicator - written, oral, presentation Attention to detail, but an understanding of when to stop - Team player - not a loner Highly Numerate & Analytical ( normally possessing a maths or technical degree)
Source Technology London, UK
14/06/2018
Full time
Penetration Tester - West London - £55k A British telecommunications company is currently looking for a junior Penetration Tester to join their technical team. As a Penetration Tester you will play a key role in protecting key information assets as well as being responsible for conducting various security assessments, educating the business on the inherent risks and providing hardening and mitigation strategies As a member of the Information Security team, the Penetration Tester will be required to be a thought leader within selected information security practices, have proven experience in development and maintenance of security operations, and have a strong understanding of technology risks with an ability to identify mitigating controls. Job responsibilities: • Web-based and mobile application penetration tests • Network penetration tests • Logical security audits • Hands-on technical security evaluations and remediation advice Assignments & Skills: • The ability to perform and manage application security assessments • Penetration testing • Data leakage • Network and system forensics • Testing the design and effectiveness of security controls of Internet systems, networks and applications. Team Overview: IS Security is responsible for Threat Assessment and Incident Response for the company's Technology Infrastructure. In addition the team is responsible for the development and compliance maintenance of Policies, Standards and business cases to manage the risks posed to the company technology. The department is also responsible for ensuring Programme delivery is compliant against these standards and Policies through project consultancy. Key responsibilities: • Performing penetration tests and vulnerability assessments on company assets and where necessary 3rd Parties. • Web Application Penetration Testing -End User Environment • Performing application security penetration and vulnerability testing against applications. • Testing a diverse range of Applications, Devices and systems. • Manual Web App testing for SQL injection, XSS, CSRF, Broken Auth & Session Management, Buffer overflows, OWASP top 10 etc. • Mobile Application Security testing of Android & IOS Devices • Work with developers. Have a direct impact on projects and applications. Identify issues and enhance security. • Respond to cutting edge threats facing the business. • Simulate real life Hacking attacks • Performing research as necessary on reported issues and emerging risks to identify best-practice solutions. Candidate requirements Essential: • 1+ years of experience performing network, web / application and wireless penetration testing including exploitation. • Demonstrable skills in common types of penetration testing such as web/application and infrastructure testing, wireless network testing, VoIP, firewall rule set review. • Hands-on experience with software security testing and common testing tools like Appscan, WebInspect, Fortify, etc • Experienced with tools such as Burp/Paros/Proxy tools, nmap, Nessus, Metasploit, Backtrack, Kali, SQL Ninja and various hacking tools. • Experience with penetration testing frameworks • Ability to do manual penetration testing/validation and not rely on automated scanners. Desirable: • Technical certifications such as: OSCP, OSCE, GWAPT, GPEN, GCIH, CISSP, CISA, CISM, CEH, CHECK, CREST, TIGET SST • PCI/DSS • Reverse engineering, binary analysis, antivirus avoidance, and exploit development. • Advanced understanding of security architecture and related components. • Advanced understanding of Application Security and techniques to mitigate threats in application code and functions. • Proven experience across consultancy, service provider and end user environments. Location: West London Salary: Up to £55k Apply with your CV to be considered.
Source Technology Bristol, City of Bristol, UK
14/06/2018
Full time
Senior Penetration Tester - up to £80k An exciting, well established and market leading Security consultancy are looking for experienced Penetration Tester with a deep passion for Information Security to join their growing team. This awards winning provider of cyber security, compliance, infrastructure and incident response services to organisations globally always go the extra mile to provide clients with an excellent security service experience. As a senior member of the team, you will be delivering security consulting engagements of various types, e.g. penetration tests, security architecture and configuration reviews, PCI-DSS assessments, etc. A Senior Penetration Tester is expected to keep up to date with the latest IT Security developments, news and attack techniques and to ensure the wider team receive and understand this knowledge. There will be a requirement to lead small to medium projects and to help mentor Junior Penetration Testers and Security Consultants. A Senior Penetration Tester must work towards attaining upper level industry certification such as OSCP, OSCE, CREST CCT, CREST CSAM and CREST CSAS, for which the company will provide training, development and support. Requirements Demonstrably strong skills and experience in several of the following: Infrastructure penetration testing Web application penetration testing Mobile penetration testing (iOS, Android, Windows Phone) Social Engineering, Open Source Intelligence Gathering, Phishing Firewall ruleset and configuration review Server and workstation secure build configuration review Strong social, presentation, written and English speaking skills. OSCP/OSCE, CREST CCT or equivalent level of IT security related certification. An ability to lead, teach, present and inspire the wider team. Tasks & Responsibilities The following list is indicative of the overall expectations of the role): Deliver penetration testing and other related security audit activities. To perform kick off calls, wash up calls, email responses and debrief for each assigned engagement. To help develop client relationships and to provide professional consultative-style engagements. Write full and thorough reports for each engagement that show quick and constant improvement, based on comments from QA and peers. Verse themselves in a wide variety of IT security skills. Willingness to mentor Junior Security Consultants and Security Consultants where appropriate. To assist in Security Testing related activities, providing technical assessment of scope, principal security concerns and testing methodology to Account Manager, including face-to-face meetings when requested. Location: Cheltenham Salary: U p to £80k Apply with your CV to be considered.
Source Technology City Corner, Hinton Parva, Swindon SN4 0DH, UK
13/06/2018
Full time
My client, a leading Financial Services company are currently recruiting for a proven Data Modeller to join their Data Architecture team. The successful candidate will be a proven Data Modeller who has ideally worked for a Financial Services client in the past, has worked with the below technologies and enjoys working in an autonomous environment and likes to take pride and responsibility in the work that they do. Please see the job spec below: Purpose Develop Conceptual, Logical & Physical Data Models to support key Data Developments Agree, Document and Promote the adoption of sound, pragmatic Datamodelling and mapping standards, based on exploitation of ErWin and the ErWin Portal Promote the adoption of sound pragmatic data flow diagramming, for development reuse by Projects, based on AssetGen Establish a metadata repository of data interfaces, that drives AssetGen Objectives Work with Business Analysts & Agile Product Owner's to drive out Data Requirements Will include review of Business Requirement Documentation and possibly contribute to development of agile User Stories Build High Level Design Documentation (HLD) Develop Conceptual, Logical and Physical Data Models Build Data Flows, track interfaces Walkthroughs/approvals Liaise with Onshore and offshore Developers and DM&S Data Analysts to interpret HLD's, review Tech Specs Erwin Portal - administer, advise on adoption for mappings, glossaries (with Data Owners ), build standards Reqd Skills Reading and Creating Data Models - Conceptual, Logical, Physical - and knowing when a logical model is too abstract Business Requirements Analysis SQL Normalisation, Dimensional High Degree of Competence of using Erwin (recent edition - R9+ ideal) - admin, conceptual/logical/physical, model driven DB design, Nice to have - Erwin workgroup/portal Experience Financial Services Experience - advantageous Working with Enterprise Data Models - advantageous, not essential Waterfall & Agile Scrum Development Approaches 'Soft Skills' A good communicator - written, oral, presentation Attention to detail, but an understanding of when to stop - Team player - not a loner Highly Numerate & Analytical ( normally possessing a maths or technical degree) - provided by Dice AGILE, DEGREE, ERWIN, METADATA, REQUIREMENTS ANALYSIS, SCRUM, SQL
Source Technology 16 Hestham Cres, Morecambe, Morecambe, Lancashire LA4 4QF, UK
07/06/2018
Full time
Penetration Tester / Security Consultant / Ethical hacker A well-established Information Security consultancy is expanding its technical team and therefore looking to bring on experienced penetration testers. With threats to companies forever on the rise, this company prides themselves on their technical level of work and partnership with clients. You will be working alongside some of the most well-known and experienced testers in the industry. As a penetration Tester, this is a great chance to join a penetration testing team that works on some diverse and different engagements where you will constantly be able to develop your skills and be supported to gain further certifications and truly develop and enhance your career. As a penetration tester you will be responsible for conducting a range of advanced infrastructure, web application, wireless and mobile testing. What You'll Be Doing As a Penetration Tester, you will be working on client projects within a highly skilled team. As part of the team you will be expected to: Deliver high quality work to meet client expectations and project deadlines. Respond to client requests, anticipating and meeting client problems and needs using innovative approaches when applicable. Respond to, and resolve, technical issues. Share knowledge with colleagues and assist team members with their objectives. Work closely with the Penetration Testing Team Manager, identifying and resolving issues affecting the team. Essential skills: Previous experience in a Penetration Tester position. An in-depth knowledge of performing Network and/or Web Application Penetration Testing. An innovative and analytical approach to performing penetration testing, particularly of novel devices and environments. Excellent technical presentation and reporting skills, both written and verbal, with the ability to communicate the impact and importance of detailed technical information to a non-technical audience. Currently holding any ethical hacker/ penetration testing certifications would be a huge bonus such as CREST CRT, CCT, TigerScheme QSTM, SST, OSCP, OSCE Salary depends on experience but a nice healthy budget has been signed off for additional hires. Anything up to £85k is very achievable. Locations: London, Cheltenham, Manchester Home based working is also available for the right candidate. To apply or find out more, contact 'John Hickles' or call me directly on
Source Technology Birmingham, Birmingham, West Midlands, UK
07/06/2018
Full time
Senior Penetration Tester - up to £85k An exciting, well established and market leading Security consultancy are looking for experienced Penetration Tester with a deep passion for Information Security to join their growing team. This awards winning provider of cyber security, compliance, infrastructure and incident response services to organisations globally always go the extra mile to provide clients with an excellent security service experience. As a senior member of the team, you will be delivering security consulting engagements of various types, e.g. penetration tests, security architecture and configuration reviews, PCI-DSS assessments, etc. A Senior Penetration Tester is expected to keep up to date with the latest IT Security developments, news and attack techniques and to ensure the wider team receive and understand this knowledge. There will be a requirement to lead small to medium projects and to help mentor Junior Penetration Testers and Security Consultants. A Senior Penetration Tester must work towards attaining upper level industry certification such as OSCP, OSCE, CREST CCT, CREST CSAM and CREST CSAS, for which the company will provide training, development and support. Requirements Demonstrably strong skills and experience in several of the following: Infrastructure penetration testing Web application penetration testing Mobile penetration testing (iOS, Android, Windows Phone) Social Engineering, Open Source Intelligence Gathering, Phishing Firewall ruleset and configuration review Server and workstation secure build configuration review Strong social, presentation, written and English speaking skills. OSCP/OSCE, CREST CCT or equivalent level of IT security related certification. An ability to lead, teach, present and inspire the wider team. Tasks & Responsibilities The following list is indicative of the overall expectations of the role): Deliver penetration testing and other related security audit activities. To perform kick off calls, wash up calls, email responses and debrief for each assigned engagement. To help develop client relationships and to provide professional consultative-style engagements. Write full and thorough reports for each engagement that show quick and constant improvement, based on comments from QA and peers. Verse themselves in a wide variety of IT security skills. Willingness to mentor Junior Security Consultants and Security Consultants where appropriate. To assist in Security Testing related activities, providing technical assessment of scope, principal security concerns and testing methodology to Account Manager, including face-to-face meetings when requested. Location: Midlands Salary: U p to £85k Apply with your CV to be considered.
Source Technology 16 Hestham Cres, Morecambe, Morecambe, Lancashire LA4 4QF, UK
07/06/2018
Full time
Red Teaming - Red Team Testers An awards winning provider of cyber security, compliance, infrastructure and incident response services to organisations globally are looking to add to their established Red Team. As part of the Red Team, you can expect to deliver a large number of red teaming engagements for a variety of prestigious clients and the right individuals will engage in top tier red teaming, STAR & CBEST work. Be at the forefront of offensive security and join a team that goes the extra mile with their technical ability. SKILLS AND EXPERIENCE The following skills and attributes illustrate the type background that is required as is a wider security knowledge, although we're very pragmatic in our assessments: Experience of red team testing. Experience of infrastructure penetration testing. In depth knowledge and understanding of common C2 frameworks (e.g. Cobalt Strike, PoshC2, Empire). Ability to work with exploits and vulnerabilities. Exploit creation, skills with scripting, vulnerability analysis and reverse engineering. Experience working with and against many security products, ranging from perimeter security to endpoint protection tools. An in depth level of knowledge of Windows exploitation and Active Directory. The ability to perform under pressure - we have to outfox and outrun the blue team! Strong knowledge of the cyber kill chain and common tactics, techniques and procedures often employed by a variety of threat actors. A thirst for research and being at the cutting edge of the industry. CREST CCSAS, Offensive Security (e.g. OSCP, OSCE), SANS and other recognized industry training and certification is appreciated but not required. Able to obtain security clearance Salary is flexible due to multiple Red Team testers required: Ranging from £40k - £100k for the right person. Location: Midlands or Home Based
Source Technology London, UK
07/06/2018
Full time
Penetration tester - TigerScheme / CREST Team Member Job Description/Person Specification A company who experts in defence, aerospace and security are looking to recruit an Information Security Consultant for their Penetration Testing team. You must have a current Team Member certificate, either TIGER or CREST (other certifications will be considered). Active CHECK status is desirable. As a Penetration tester you will have the flexibility to switch between application and infrastructure testing and you will also be involved in the "Red Teaming" service, Advanced Intrusion Testing, developing skills which would normally fall outside of traditional penetration testing. Funded personal research is also on hand. As a client-facing Penetration Tester, you must be highly experienced and credible operating at both technical and management levels. You will be given the opportunity to work with a broad range of client organisations, alongside some of the best consultants in the security industry. This opportunity boasts the benefits of being a smaller team within a large company enabling them to have an agile environment with the backing of the wider organisation. Pentesters here get to see a broader range of projects than some other pentest teams and gives possibilities to do project secondments within the wider organisation which makes for engagement variety and working on some really cool and different projects. Required Qualities CREST or TIGER certification UK driving license. Strong desire to get root. Good communication skills. Willingness to travel to customer sites in the UK and Europe. Excellent report writing skills coupled with an acute attention to detail. Deep technical knowledge of hacking and penetration testing techniques, methodologies and tools across all common platforms. Desirable Qualities Active CHECK status UK security clearance to SC or DV level. Ability to scope security assessments and deliver them on time and within budget. Evidence of on-going personal development in the penetration testing space e.g. research and development. The position comes with a competitive salary, excellent benefits and a commitment to help maintain a good work/life balance. Salary is flexible paying up to £60k Location: UK wide out of one of their UK offices. Can be home based. Why don't you join some of the world's finest scientific and technical minds and help make tomorrow work today?