Application Penetration Tester

Role: Application Penetration Tester

Job Type: Permanent

Location: Onsite preferred / Hybrid 3-days a week onsite

Number of hours: 40 hours per week – full time

Ready to utilise your skills in Application Penetration Testing?

We have an exciting role for you as an Application Penetration Tester.

Careers at TCS: It means more

TCS is a purpose-led transformation company, built on belief. We do not just help businesses to transform through technology. We support them in making a meaningful difference to the people and communities they serve - our clients include some of the biggest brands in the UK and worldwide. For you, it means more to make an impact that matters, through challenging projects which demand ambitious innovation and thought leadership.

• Be part of an exciting team where you will be challenged every day to find, demonstrate, explain and support remediation of application-level vulnerabilities.
• Looking to make a real impact for your customer and strategically drive down risk?
• Work in a fast paced, dynamic environment where you will be constantly learning

The Role

As an Application Penetration Tester you will work within the Customer Attack Surface Management team. The client is looking to expand its team with experienced security resources that can deliver Application Penetration testing with remediation expertise. In this role you will work with development teams to show the vulnerabilities that have been discovered and work to remediate these. You will work to strategically look for trends and address quickly and securely.

Key responsibilities:

• Application Penetration Testing of APIs, Web & Mobile applications to find and revalidate vulnerabilities.
• Provide targeted and language specific vulnerability guidance to development community.
• Work across groups to reduce application risks and remediation of vulnerabilities.
• Build trust with multiple stakeholders and establish yourself as key support for remediation efforts.
• Analyze vulnerability data to look for trends and be able to create risk-based action plans to address quickly and securely.
• Research latest and emerging security threats.

Your Profile

Essential skills/knowledge/experience:

• Industry experience in Application Security focused roles such as Application Penetration Testing, DAST of APIs, Web & Mobile Applications.
• Proficient in using the CVSS (Common Vulnerability Scoring System) calculator to accurately assess and prioritize risks based on severity and potential impact.
• Hands on experience recommending and implementing vulnerability remediation.
• In depth understanding of application-level security risks and how to test them.
• Confident with all OWASP Top 10s and SANS Top 25 vulnerabilities.
• Familiar working with multiple technologies such as Burp Suite professional, Jira & ServiceNow.
• Ability to deliver several key pieces of work at pace, whilst maintaining high standards.
• Excellent communication and interpersonal skills, with the ability to clearly articulate vulnerabilities, risks, and remediation strategies to diverse stakeholders, including both technical and non-technical audiences.
• Experienced in managing and coordinating tasks across multiple programs.

Desirable skills/knowledge/experience:

• Development experience.
• Experience with the New Ways of Working (NWOW) framework and Agile methodologies, effectively adapting to dynamic project environments and promoting continuous improvement.
• Project Management experience would be beneficial.
• Experience working within the financial services industry.

Rewards & Benefits

TCS is consistently voted a Top Employer in the UK and globally. Our competitive salary packages feature pension, health care, life assurance, laptop, phone, access to extensive training resources and discounts within the larger Tata network.

Diversity, Inclusion and Wellbeing

Tata Consultancy Services UK&I is committed to meeting the accessibility needs of all individuals in accordance with the UK Equality Act 2010 and the UK Human Rights Act 1998.

We believe in building and sustaining a culture of equity and belonging where everyone can thrive. Our diversity and inclusion motto is ‘Inclusion without Exception’. Our continued commitment to Culture and Diversity is reflected across our workforce implemented through equitable workplace policies and processes.

You’ll find a welcoming culture and many internal volunteering and social networks to join (these are optional). Our diversity, inclusion and social activities include 12 employee networks such as gender diversity, LGBTQIA+ & Allies, mental health, disability & neurodiversity inclusion and many more, as well as health & wellness initiatives and sports events and we sponsor the London Marathon.

We welcome and embrace diversity in race, nationality, ethnicity, disability, neurodiversity, gender identity, age, physical ability, gender reassignment, sexual orientation. We are a disability inclusive employer and encourage disabled people to apply for this role. If you need support in completing this application or if you require a different format of this document, please get in touch with [email protected] with subject “Application Support Request”.

Next Steps

Due to a high volume of applications, we will be unable to contact each applicant individually on the status of their application. If you have not received a direct response within 30 days, then it should be deemed unsuccessful on this occasion.

Join us and do more of what matters. Apply online now.