cyber security consultant
This role sits within our offensive security team who is responsible for performing offensive security services for our clients. Some of these services include, penetration testing, security configuration reviews, build reviews, purple teaming, red teaming, and other adversarial focussed engagements.
who we are looking for.
The position mandates an individual possessing robust technical proficiency and up-to-date awareness of prevailing cyber threats, who can adeptly integrate and implement these technical tenets within a corporate environment. Consequently, the candidate should possess the capacity to translate technical understanding into pertinent cyber risk.
This role presents the chance to collaborate with a range of prominent entities, encompassing both public and private sector establishments. Hence, it necessitates an individual capable of providing guidance regarding organisational cyber threats.
- Strong interpersonal abilities (in both written and spoken communication) with a consultative demeanour.
- Proven technical expertise in various offensive security services.
- Capability to offer targeted technical solutions while effectively explaining risks and business consequences to non-technical stakeholders.
- Solid grasp of security standards, best practices, and frameworks.
- Experience scoping and delivering web application, internal and external infrastructure testing, mobile testing (IOS / Android).
- Aptitude for contributing to internal tool development and open-source resources, engaging in research, crafting articles, and composing blog posts that augment our standing as a reliable security partner and advisor.
- Eligible for or currently holding SC status.
- Has spearheaded project teams for consultative assignments, showcasing proficiency in delivering diverse solutions.
- Proficient in collaboratively designing projects with clients to fulfil a variety of business needs (extending beyond transactional or compliance-focused assessments).
- Possess, or in the process of obtaining, recognised CHECK/CREST certifications for penetration testing, such as CTM/CTL or CRT/CCT (or equivalent).
- Technical expertise and the skill to conduct comprehensive technical assessments encompassing areas such as thick applications, infrastructure, cloud, IoT, OT, and source code reviews.
- Demonstrated capacity to collaborate closely with clients and effectively execute intricate consultative projects, both independently and within a team dynamic.
- Familiarity and hands-on experience in executing various forms of attack simulation.
- Ability to create and adapt exploits using an array of offensive tools.
roles & Responsibilities.
- Perform offensive security engagements for Stripe OLT’s clients, this includes scoping, reporting, project design and workshops / debriefs.
- Work with the existing offensive security team to innovate and improve operations within the team.
- Share knowledge, insights, and technical proficiencies with the wider teams – regularly demonstrating new exciting techniques and tools to the wider business.
- Work with the defensive teams to perform proactive attack / defence workshops, in attempt to improve the quality and fidelity of the alerts and SOC response activity.
- Be an active part of Stripe OLT’s effort to increase technical articles and blogs that are published on the website and to the wider community.
- Permanent role with competitive salary of £40 – £45k DoE
- Performance-related, discretionary end of year bonus
- Individual training budget
- Buy and Sell holiday scheme
- Private healthcare package
- Workplace pension with employer contributions of up to 11%
- 25 days holidays, plus bank holidays
- Regular staff socials
- Unlimited fruit, tea and coffee in the office
- Cycle to work scheme
Founded in 2004, we have over 18 years of extensive technology experience, specialising in secure, cloud-first Microsoft technologies.
✅ We take ownership
✅ We create strong partnerships
✅ We act with integrity
✅ We drive client success