Relevant Experience:

• networks and infrastructures
• Windows, Linux and Mac operating systems
• embedded computer systems
• web/mobile applications
• cloud environments
• application programming interfaces
• SCADA (supervisory control and data acquisition) control systems
• Internet of Things (IoTs).

Job Description: 

• lan and carry out remote testing of a client's network, computer systems or web/mobile applications or onsite testing of their infrastructure to expose weaknesses in security
• work with clients to determine their requirements from the test, for example, the number and type of systems they would like testing
• simulate security breaches to test a system's relative security
• create and implement new penetration testing methods, scripts and tools
• check for gaps in security that could occur from human error, for example inadequate password policies or login permissions, and advise on best practice to minimise risk
• create reports and recommendations from your findings, including the security issues uncovered and level of risk
• advise on methods to fix or lower security risks to systems
• present your findings, risks and conclusions to management and other relevant parties
• consider the impact your 'attack' will have on the business and its users
• understand how the flaws that you identify could affect a business, or business function, if they're not fixed
• carry out training for users to minimise future security risks.