Skip to main content

Beta What do you think of this service? Your feedback will help us to improve it.

  5. Security (Penetration) Testing Lead

Security (Penetration) Testing Lead

Role summary

Security Testing provides Cyber Security assurance by attempting to penetrate existing defences, to feed back on potential vulnerabilities (whether in a system, an application or across the entire IT estate) and co-ordinate the production of a remediation action plan

Role expectations

Typically, at this role level you may perform following responsibilities.

  • Scope, conduct and procure penetration tests, red team exercises, vulnerability assessments of IT assets, and other tests to assess the robustness of a system, product or technology
  • Disseminate the implications of test findings and explain the potential business impact if vulnerabilities are exploited
  • Co-ordinate engagement with internal and external stakeholders to manage and provide appropriate Cyber Security assurance to the required standard and in accordance with policy and regulations
  • Advise on potential issues and mitigation options to appropriate stakeholders or governance forums
  • Review and interpret reports and co-ordinate and manage remediation action plan production  

Learning pathway

CREST Certified Infrastructure Tester

 

 

Skills

Penetration testing

Expert

Information risk assessment and risk management

Expert

Protective security

Practitioner

Threat understanding

Practitioner

Sign up to UK Government Security

Subscribe to our newsletters to receive notifications when changes to strategy, policy, standards, and guidance are published on the website.

Sign up now