Job Summary

The Penetration Testing Engineer will play a vital role in supporting the penetration testing team by ensuring the reliability and security of all testing infrastructure and tools. This position involves maintaining and optimising workstations, servers, virtual environments, and specialised hardware required for testing activities. The engineer will be responsible for troubleshooting technical issues, managing software updates, and implementing automation to streamline operational processes, thereby enabling the team to conduct thorough and efficient security assessments.

The chosen candidate will operate as a First Line of Defence control owner (where applicable) for defined security testing processes and supporting infrastructure.

Key Responsibilities

• Maintain and manage penetration testing infrastructure, including testing workstations, servers, virtual environments, and specialized hardware.
• Administer and support internal security testing platforms (e.g., scanning engines, attack simulation tools, reporting systems), ensuring availability, stability, and performance.
• Perform installation, configuration, updates, and patch management of security testing tools, operating systems, and supporting software.
• Develop, customize, and improve internal tooling and automation scripts to enhance testing efficiency and repeatability.
• Manage test lab environments, including provisioning, configuration management, access control, and secure data handling.
• Monitor and maintain licensing, tool integrations, and compatibility across the security testing ecosystem.
• Troubleshoot technical issues related to testing infrastructure, tools, and lab environments, ensuring minimal disruption to project delivery.
• Ensure testing infrastructure complies with internal security policies, legal requirements, and data protection standards.
• Maintain clear documentation of lab architecture, configurations, procedures, and operational processes.
• Collaborate with security, IT, and engineering teams to support secure configuration and continuous improvement of testing capabilities.
• Contribute to knowledge sharing and continuous enhancement of methodologies, tooling standards, and operational best practices.

Skills and Experience

• Linux and Windows system administration
• DevOps tools and practices (Azure DevOps pipelines, Git, AWS, terraform).
• Web server management (nginx).
• Security platform administration and support (scanning engines, reporting systems).
• Installation, configuration, patch management of operating systems and software.
• Automation scripting with Python, Go, Bash, and cron.
• REST API integration and development.
• Configuration management and provisioning of lab environments.
• Access control and secure data handling.
• Licensing and tool compatibility monitoring.
• Troubleshooting technical issues across infrastructure and tools.
• Internal security policy, legal, and data protection compliance.
• Documentation of lab architecture, configurations, and operational processes.
• Collaboration with security, IT, and engineering teams.
• Knowledge sharing and adoption of best practices in tooling and operations.

Qualifications

Education

• Bachelor’s degree in information security, Computer Science, Cybersecurity, Information Technology, Engineering, or a related Discipline; or Equivalent Practical Experience.
• Minimum 3 years Hands-on Experience in Penetration Testing, Security Engineering, or Infrastructure Administration in lieu of a formal degree. 
• Solid Foundational Knowledge of Networking, Operating Systems (WINDOWS/LINUX), and Information Security Principles.

Training

•  Training in System Administration, Server Management, Virtualization, or cloud platform Administration Relevant to Maintaining Testing Infrastructure. • Industry-Recognized Certifications (Desirable), such as:
  • Red Hat Certified System Administrator (RHCSA)
  • AWS Cloud Practitione
  • Crtified Kubernetes Administrator (CKA)
  • HashiCorp Terraform Associate
• Ongoing Professional Development Through Technical Courses, Workshops, Labs, Security Research, or Industry Conferences.

Languages
English: Professional Working Proficiency (Written and Spoken) 

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.