Job Closed
This listing is no longer active.
At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what’s possible and drive extraordinary impact. We’re building a dynamic and collaborative workplace where new ideas are welcome. Protecting 11,000+ customers against bad actors and threats means we’re continuing to push the envelope - just like we’ve been doing for the past 20 years. If you’re ready to solve some of the toughest challenges in cybersecurity, we’re ready to help you take command of your career. Join us.
Penetration Tester, Social Engineering Specialist
Location
United Kingdom
Posted
86 days ago
Salary
0
Seniority
Senior
Job Description
Penetration Tester, Social Engineering Specialist
Rapid7
• Deliver Rapid7’s Vector Command Continuous Red Teaming service • Design social engineering campaigns which function at scale, supporting numerous customers each month • Deploy, configure, and maintain social engineering infrastructure to perform phishing operations at scale • Perform manual and automated reconnaissance at scale to identify targets for social engineering operations each month • Leverage external network vulnerabilities reported by Vector Command team members in targeted real-world social engineering attacks • Research the latest techniques in social engineering and implement them in monthly campaigns • Research and test methods to bypass social engineering defenses such as email filters, download restrictions, multi-factor authentication mechanisms • Be an expert in sending phishing emails which make it to the client’s inbox • Design and execute vishing campaigns • Incorporate payloads provided by the Red Team lead into phishing and vishing operations • Evaluate the impact and coordinate with Vector Command team members for post-compromise breach simulation • Collaborate closely with a team of Red Team operators, participating in daily meetings to establish attack objectives and operational direction • Develop and maintain positive relationships with clients and understand their business and needs
Job Requirements
- 5+ years in an active technical security role
- Strong knowledge of the following: Advanced Social engineering techniques and tactics
- Infrastructure management and deployment (domain records, web servers, terraform, ansible, phishing website creation).
- Modern penetration testing tools and methods
- Network, wireless and web application security concepts
- Experience using interpreted languages (Ruby, Python, PHP, etc.)
- Knowledge of common regulatory structures and obligations and common I.T. governance.
- Bug Bounty experience, identifying novel vulnerabilities in arbitrary internet-facing attack surfaces
- Certifications such as OSCP, OSCE, GXPN, OSEE, CREST
- Experience with Red & Purple Teams
Benefits
- Professional development opportunities
- Remote work options
Related Guides
Related Categories
Related Job Pages
More QA Engineer Jobs
• Understand product requirements and matching test cases. • Understand expected product functionality and bug reports. • Elaborate test cases to cover existing and new functionality. • Setup Test Environment in preparation for test cases execution. • Execute test cases, analyze results and report all detected issues/defects. • Track reported issues/defects. • Write automated test cases to increase coverage and help increase product quality. • Collaborate with other team members and test managers. • Keep abreast of industry standards and newest testing methodologies and tools. • Support strategic team goals. • Provide technical know-how, documentation and training to test and other business functions.
- Manage end-to-end Agile testing projects related to data management, data quality, and data migration within banking systems. - Collaborate with product owners, business analysts, developers, and QA teams to define test strategies, plans, and acceptance criteria. - Coordinate the execution of test cases, monitor testing progress, and track defects to resolution. - Facilitate Agile ceremonies such as daily stand-ups, sprint planning, retrospectives, and demos with a focus on testing activities. - Identify potential risks and blockers related to testing and work with teams to mitigate them promptly. - Ensure compliance with banking regulatory standards and data governance policies throughout testing processes. - Provide regular reports and updates to senior management and stakeholders regarding testing status and quality metrics.
• Develop test plans and test cases based on business requirements and technical specifications. • Execute manual and automated tests to identify defects and ensure the software meets quality standards. • Report bugs and issues to the development team, providing detailed information and steps to reproduce the problem. • Conduct regression testing to ensure new code changes do not adversely affect existing functionalities. • Document test cases, test results, and defects to support development and maintenance. • Work closely with developers, QA analysts, and other team members to ensure seamless integration and testing. • Conduct performance testing to ensure the software meets performance criteria and benchmarks. • Stay updated with the latest testing tools and techniques and implement improvements in the testing process.
• Create and implement automated test scripts using tools such as Cypress, Playwright, Jira • Analyze requirements and create detailed test cases and scenarios for automated testing • Execute automated test scripts and analyze results to identify defects and issues • Perform manual testing and regression testing • Report bugs and issues to the development team • Work closely with developers and other team members • Stay updated with the latest automation testing tools and techniques • Maintain and update documentation of test cases, test plans, and test results • Conduct performance testing to ensure the software meets performance criteria and benchmarks
