ABOUT S-RM

S-RM is a global risk and intelligence consultancy. Founded in 2005, we have 250+ practitioners spanning six international offices, serving clients across all regions and major sectors.

We support our clients by providing intelligence that informs critical decision-making and strategies, from investments and partnerships through to disputes; by helping organisations build resilience to cyber, operational and security threats; and by responding to cyber-attacks, security incidents and organisational crises.

Technology sits at the heart of our business and is central to our growth strategy. Our existing digital services include Portal, a secure report-management application, Monitor, an integrity and reputation monitoring service, GSI, a security risk platform and Swan, an intelligence collection platform. We are constantly adding new services and investing in digital transformation across all areas of the business, as we expand the scope of our Corporate Intelligence and Cyber Security offerings.

MAIN DUTIES AND RESPONSIBILITIES

What the day to day will look like:

  • Working on testing engagements. This will be a mix of engagement types but will mostly be internal penetration testing and assumed breach scenarios for a variety of clients. Most of our internal tests can be done remotely so can be done from the comfort of your home or from our office.
  • Supporting junior team members with technical questions / advancement
  • Helping shape and evolve our products
  • 20% of research time

What you will have the opportunity to get involved in:

  • Working with leadership to define our testing strategy
  • Developing our threat intelligence driven pentesting offering
  • Working on our infrastructure and applications, or helping the response team deal with ransomware incidents if that’s something you’re interested in
  • Participating to the wider cyber community via events, publications, etc.
  • Access to industry-recognised certifications such as offensive security certs

The role will be based in our London office, however we have flexible working arrangements available.

SKILLS, QUALIFICATIONS & EXPERIENCE

  • Proven experience in penetration testing
  • Technical skills:
    • Proficiency in the usual pentesting activities: web, external and internal infrastructure, Active Directory exploitation
    • Experience in stealthy penetration testing, threat actor simulation or red teaming
    • Experience scoping engagements and helping clients define their pentesting needs
  • Soft skills:
    • Reporting – we have an automated reporting tool but clients get a lot of value from the clear representation of risk and impact in our pentest report exec sum
    • Great communication skills (pre, during and post test) – both with clients and teammates
    • Project management – can manage several projects simultaneously and prioritize efficiently to meet deadlines, and keeps leadership informed of progress and issues
    • Leadership and mentoring – proactive in helping junior members improve their pentesting skills
    • Team player – always looking for ways to improve internal tools, processes, environment

Bonuses:

  • Mobile application testing and source code review
  • Physical penetration testing
  • Experience in team leader roles

The successful candidate must have permission to work in the UK by the start of their employment.

BENEFITS

  • Market leading maternity and paternity benefits including:
    • Maternity leave: 26 weeks full pay followed by 13 weeks half pay
    • Paternity leave: 6 weeks of full pay
  • 25 holiday days per year + bank holidays, which increases with service to a maximum of 30 days
  • Up to 40% off with Nuffield Gyms and 20% off for partners
  • Fertility treatment leave
  • 6% matching pension contribution
  • 4 x annual salary life insurance
  • EAP (Employee Assistance Programme) for employees and immediate family, including counselling sessions
  • Flexible working hours
  • Extensive training available, including through LinkedIn Learning with access to more than 13,000 different courses
  • Very comprehensive private medical insurance as well as eye tests and glasses reimbursement, and seasonal flu vaccination
  • Dental Insurance
  • Season ticket loan for your train commute
  • Cycle to work scheme
  • A formalised recognition programme

S-RM nurtures a culture of equality, diversity and inclusion and we are dedicated to developing a workforce that displays a variety of talents, experiences and perspectives.

Contact

To apply for this role, please email your CV and cover letter to recruitment@s-rminform.com