Web Application Tester at Waterstons Ltd

Glasgow, Scotland, United Kingdom -

Full Time

Start Date

Immediate

Expiry Date

09 Mar, 26

Salary

0.0

Posted On

09 Dec, 25

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Penetration Testing, Web Applications, APIs, Network Security, Cloud Infrastructure Security, Security Vulnerabilities, Risk Mitigation, Metasploit, Nmap, Burp Suite, OWASP Zap, Scripting Languages, Mobile Application Testing, Vulnerability Assessments, Security Audits, Technical Reporting

Industry

IT Services and IT Consulting

Description

A bit about us At Waterstons, we don’t just build technology—we create meaningful business transformations. With a global presence spanning the UK and Australia, we partner with businesses to unlock their full potential through innovative solutions. Our clients tell us our people are our greatest strength, and who are we to disagree? That’s why we invest in our team with unlimited holidays, flexible working, and private healthcare—because we believe the best work happens when people feel valued. Did we also mention that we’ve been awarded Gold Investors in People for a fourth consecutive time? What You’ll Be Doing A technical security expert with the ability to conduct penetration tests and the appetite to deliver a wide spectrum of interesting security related work seeking a new challenge to join our growing Cyber team to help shape the company’s security and compliance services nationwide for a leading IT and business consultancy, supporting national and international clients. Your Day-to-Day Leading and delivering web application penetration testing, with an expectation to participate in infrastructure penetration testing, vulnerability assessments, and security audits across various business functions as needed Lead technical scoping activities and understanding a client’s requirements to ensure they get the most out of their engagement with Waterstons Write clear, concise, and professional reports that are understandable to both technical and non-technical stakeholders. Being available to travel to client sites when required Improving areas of work, such as methodologies, tools and processes used by the team Helping upskill junior members and the wider cyber team Maintain up-to-date knowledge of emerging security threats and trends. Ability to manage multiple client engagements concurrently Act as a trusted partner to all of our clients What we're looking for If some (or most) of the following sound like you, we'd love to hear from you: Proven experience in performing penetration tests across a broad range of systems, more specifically web applications and APIs Wider technical knowledge of network and cloud infrastructure security Understanding of security vulnerabilities and risk mitigation techniques Extensive tooling experience such as Metasploit, Nmap, BloodHound, Eyewitness, Burp Suite, NIKTO, OWASP Zap etc. Nice to have Qualifications such as: CRT, CHECK Team Member (CTM) or CSTL, OSCP, CSTL Be a Cyber Essentials Plus Auditor Experience with scripting languages such as Python, Bash, or PowerShell Experience with Mobile Application Penetration Testing. How We Take Care of You As well as offering a competitive salary, we have an attractive benefits package including: A healthy work life balance with flexible and agile working being the norm Unlimited holiday allowance EV car scheme (salary sacrifice) Room to grow with supported development opportunities and sponsored training Enhanced family policies If you ever need it, company sick pay and life assurance Supported wellbeing with regular initiatives, an employee assistance programme and private medical insurance Flexible benefits such as a dental scheme, eye care support, season ticket loan and cycle to work We require a security check to be carried out on all colleagues due to the nature of some of our clients’ industries. Waterstons is committed to creating and an inclusive, understanding, and flexible place to work. We value diversity, equality and inclusion and encourage everyone to 'bring their whole selves' to work. We believe that a company that works to truly embrace and value diversity, create an environment where everyone from any background can do their best work, and feel valued and appreciated is a better company to work for. Privacy Statement Waterstons are gathering the data in this application for the purpose of recruitment and to ensure we can contact you regarding this application. For information about what we do with your personal data see our Privacy Notice.

Responsibilities

The role involves leading and delivering web application penetration testing and participating in infrastructure penetration testing and security audits. The candidate will also be responsible for writing reports and improving methodologies and processes within the team.