Risk Crew is a unique London-based Cyber Security GRC & Testing Consultancy and we're seeking a passionate, detail -oriented Security Penetration Tester to join our creative, eclectic team. Is it you? Position is office-based during probationary period and hybrid thereafter. Interested? The preferred candidate possesses a … minimum of 5 years hands-on skills and experience in, scoping and delivering: Web application security penetrationtesting Mobile application security penetrationtesting API security testing Network security penetrationtesting Red Team testing With the following complementary technical skills: Hands-on with … programming languages, databases and IoT Knowledge of containerisation technologies (such as Docker) Experience with Attack & Threat Modelling Red Team testing and social engineering attack methodologies Working knowledge of CobaltStrike Experience with bug bounty programs and vulnerability disclosure policies The preferred candicate should also posess a Bachelors in Cybersecurity/ more »
CTL - Senior Penetration Tester - £70k -£90k *REMOTE WORKING* *On-Site travel required irregularly* The Role A Forensic and Offensive Cyber-Security provider that supports Government Agencies, Commercial Organizations and Legal firms, and many other industry sectors both nationally and globally , require a CHECK accredited Penetration Tester to join … to train, develop and manage some of the leading offensive security SME's whilst working in a professional and trusted working environment. CTL - Senior Penetration Tester Responsibilities Oversee and conduct a range of penetrationtesting engagements including web applications, infrastructure, APIs, wireless networks, cloud platforms, and mobile … emulating real-world threats to provide a comprehensive overview of clients vulnerabilities Working on client site occasionally to deliver Internal Infrastructure, Wifi and Physical Testing engagements CTL - Senior Penetration Tester Requirements Proven experience leading penetrationtesting engagements within a CHECK environment Proficiency in conducting a wide more »
Graduate Penetration Tester (Red Team) Hybrid WFH to £60k Do you have an academic record of achievement combined with an interest in Cyber Security/PenetrationTesting? You could be progressing your career as a Penetration Tester at a rapidly expanding scale-up software house that … highly complex network cyber security platform, working on Greenfield projects, collaborating with, and learning from a hugely talented team. Your role: As a Graduate Penetration Tester you will manage client engagements, perform security tests and report findings; you'll be using an industry standard tools combined with in-house … reviews to discover any issues with customer infrastructure and web applications. You'll be pro-active and will have the opportunity within Red Team testing to try anything and everything to outmanoeuvre the defenders and gain access to customer networks. WFH Policy: There's a remote interview/onboarding more »
Role Title: NFT OAT/INFRA - Lead Architect/Testing Location: Hybrid - 2 days in office (if required) Duration: 06+ Months MUST BE PAYE THROUGH UMBRELLA Role Description: • 8-10+ years hands-on experience doing infra & OAT(operational acceptance testing) testing I,e. Alert & monitoring, failover … transaction reconciliation, zero data lose, Adaptability, Interoperability ,Maintainability, Security, Resilience, Recoverability, Installation & Deployment, Service Continuity, availability testing etc. • Experience of defining and implementing Test Policies/Standards and Processes • Experience gained in a Financial Services environment. A combination of strong hands-on technical skills and excellent communication skills. • Should … able to do Non-functional test requirement gathering for Infra and OAT testing, provide technical estimates and solution to test the requirement • E2E test delivery management for OAT & Infra testing. • Good experience in IBM TIVOLI or APPDYNAMICs for alert monitoring configuration and testing. • Should have very good administrative knowledge more »
oversee Security Operations Centre (SOC) activities, SIEM, IDS/IPS, threat and incident responses Manage the cyber security vulnerability programme Manage and oversee security penetrationtesting activities Implement information security policies, processes, governance standards and frameworks Advise departments on security requirements and controls, providing information security guidance across … operational information security roles Previous experience of SOC operations and management Extensive knowledge of technical security issues and solutions Extensive knowledge of cyber threats, penetrationtesting and vulnerability assessments Experience of Cyber Essentials, ISO27001 compliance and leveraging NIST CSF and CIS benchmarks Excellent communication skills both verbal and more »
oversee Security Operations Centre (SOC) activities, SIEM, IDS/IPS, threat and incident responses. Manage the cyber security vulnerability programme. Manage and oversee security penetrationtesting activities. Implement information security policies, processes, governance standards and frameworks. Advise departments on security requirements and controls, providing information security guidance across … operational information security roles. Previous experience of SOC operations and management. Extensive knowledge of technical security issues and solutions. Extensive knowledge of cyber threats, penetrationtesting and vulnerability assessments. Experience of Cyber Essentials, ISO27001 compliance and leveraging NIST CSF and CIS benchmarks. Excellent communication skills both verbal and more »
and driving the application security and privacy initiatives Perform threat modeling and architecture review on upcoming features and products Perform regular security assessments through penetrationtesting and code reviews of products Encourage and train developers in secure coding practices Develop security features in our product and scale security … re experienced in working with highly technical engineering teams You have performed threat modeling and architectural review for years You like bug hunting and penetrationtesting (bonus points if you share your Bugcrowd/HackerOne profiles) Experience in AWS is a plus Experienced contributing to the security community more »
OFFICIAL and above classifications. Provide specialist advice and knowledge of Public Cloud (Azure, AWS, GCP) cloud-based security architectures. Define and lead external security testing (e.g ITHC) of solutions on the public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. … Serverless architectures Implementing Information Security and Privacy Standards and Frameworks (e.g. ISO 27k, NIST800-53, CIS, GDPR) Leading security working groups and external security testing (ITHC, PenetrationTesting, etc) of cloud solutions at high HMG classification levels (OFFICIAL required, SECRET desirable) or equivalent in other industries Designing … utilising DevOps, DevSecOps, SRE, CI/CD, Infrastructure & Security as Code (Docker, Git, Terraform) Managing technical assessments of security related technologies, vulnerability assessments and penetration tools and techniques Enabling & informing risk-based decisions: Working with higher impact or more complex risks, advising on the impact and whether this is more »
risk, and data privacy issues. The analyst serves as an expert on cybersecurity protection, detection, response, and recovery. This individual is responsible for coordinating penetrationtesting and managing internal and external cybersecurity analysts to detect, mitigate, and analyze threats. Works closely with other teams to develop controls such … security technologies by developing selection criteria to identify appropriate security solutions to support strategic, operational needs, and security requirements. Participate in the development and testing of the security incident response plan, act as the incident response leader. Develop security, risk, and compliance reports and alerts. Participate in the yearly … review of policies and procedures to support information security, risk, and security compliance activities. Participates in developing, testing, and implementation of disaster recovery procedures for the cybersecurity technology in place. Manages cybersecurity projects to ensure that the delivery is on-time, within budget, and adopted to meet the company more »
Greater London, England, United Kingdom Hybrid / WFH Options
Luware
ensure technical compliance with relevant regulations and standards Identify and assess security risks and vulnerabilities to the company’s products Plan, scope and review penetrationtesting reports, new software patch releases and vulnerability scan reports, to develop remediation plans with our operational support teams to mitigate issues based more »
solutions '€¢Experience of threat intelligence '€¢Leadership and mentoring experience and skills '€¢Understanding of low-level concepts including operating systems and networking '€¢Commercial experience in PenetrationTesting and/or Security Monitoring '€¢Understanding of networking and infrastructure design '€¢Knowledge/experience of one or more System administration (Linux, Windows more »
solutions Experience of threat intelligence Leadership and mentoring experience and skills Understanding of low-level concepts including operating systems and networking Commercial experience in PenetrationTesting and/or Security Monitoring Understanding of networking and infrastructure design Knowledge/experience of one or more System administration (Linux, Windows more »
proactive, confident, credible, and persuasive team player. Collaborate and support developers, analysts, and data scientists to continually improve and innovate. Conduct SAST and DAST testing as well as penetrationtesting and threat simulations to identify potential risks. Have a practical understanding of firewall networking, ingress, VPNs, and more »
role in ensuring the successful delivery of a high-quality system. Responsibilities: Manage the test plan and strategy for the Salesforce implementation project. Orchestrate testing throughout the project lifecycle, collaborating with business users, system integrators, and technical teams. Oversee the planning, design, and execution of comprehensive test suites to … guarantee a defect-free system. Manage all aspects of end-to-end testing, including planning, risks, issues, and stakeholder communication. Develop and maintain high-quality test scripts for various testing methodologies. Champion the use of testing tools and best practices. Prepare and guide business users through testing activities. Identify and escalate functionality or quality issues, recommending improvement solutions. Manage penetrationtesting with third-party vendors. Effectively communicate test results to program managers, product owners, and stakeholders. Qualifications: Track record in testing Salesforce CRM implementations (experience with Oracle CX to Salesforce migrations is a more »
maintaining, and configuring various security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetrationtesting tools, etc.). Knowledge of TCP/IP and related network protocols, including standard protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP more »
maintaining, and configuring various security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetrationtesting tools, etc.). Knowledge of TCP/IP and related network protocols, including standard protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP more »
Work together with the 1LOD and provide evidence that IT Security operations are within risk tolerances (e.g., Evergreen IT, Patching, Vulnerability scanning and Pen Testing) (supported by a 2nd member of the 2LOD team) Oversee compliance with the Bank’s cyber security standards and policies liaising with CIO (1LOD more »
to incorporate security into applications and company culture. •Research and evaluate technologies to mitigate cyber security threats. •Lead major security incidents and investigations. •Perform penetrationtesting and ethical hacking activities. •Penetration test and enhance internal FIAT and cryptocurrency custodian processes and procedures. •Monitor and investigate activities on more »
Central London, London, United Kingdom Hybrid / WFH Options
Hireful
the role entails, but some key points to be considered: - Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, PenetrationTesting,) directly, or through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS industry, such as more »
Central London, London, United Kingdom Hybrid / WFH Options
Hireful
the role entails, but some key points to be considered: - Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, PenetrationTesting,) directly, or through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS industry, such as more »
knowledge of current Security standards – NIST, ISO 27001, GDPR, CyberEssentials Solid knowledge of IT Security Operations – tools, processes and policies – patching, vulnerability scanning, pen testing Comfortable working in all forms of Cloud environments Extensive stakeholder management skills and outstanding communication skills – verbal and written more »
provisioning to retirement. Implement and manage Mobile Device Management (MDM) solutions for company devices, integrating security tools to ensure data protection. Review Vulnerability and Penetration Test Results: Analyse vulnerability and penetration test results to identify potential security weaknesses, in either cloud infrastructure, applications or 3rd party SaaS. Provide … Disaster Recovery: Develop and maintain a comprehensive disaster recovery plan for critical internal services, incorporating security tooling for threat detection and response. Conduct regular testing and updates of the DR plan, ensuring security measures are aligned with business continuity goals. The skills required Proven experience in Azure infrastructure management … cost control, cloud networking, security tooling, IDM, and staff/contractor onboarding/offboarding. Strong knowledge of scripting languages. Proficiency in vulnerability and penetrationtesting, as well as remediation strategies. Additional Information Competitive salary Excellent additional benefits including pension, great holiday entitlement, private medical and dental insurance. Flexible more »
West End, London, United Kingdom Hybrid / WFH Options
Eligo Recruitment Ltd
risk assessments, and ensure compliance (ISO27001, SOC2, Cyber Essentials+), and formulate IT policies. IT Security: Manage malware, AV, password security, MFA, SSO, vulnerability scanning, penetrationtesting, and encryption. Device Management: Handle Mobile Device Management (MDM) using Kandji, Apple Device Enrolment Program (DEP), and asset management. Business Continuity : Design more »
West End, London, Oxford Circus, United Kingdom Hybrid / WFH Options
Eligo Recruitment Ltd
risk assessments, and ensure compliance (ISO27001, SOC2, Cyber Essentials+), and formulate IT policies. IT Security: Manage malware, AV, password security, MFA, SSO, vulnerability scanning, penetrationtesting, and encryption. Device Management: Handle Mobile Device Management (MDM) using Kandji, Apple Device Enrolment Program (DEP), and asset management. Business Continuity : Design more »
commissioning new services. Ensure operating procedures are provided to the Infrastructure Operations function in a comprehensive and timely manner. Oversee the configuration, installation and testing of network hardware, and software; includes but not limited to routers, switches, firewalls and SD-WAN. Where necessary, support Infrastructure Operations in monitoring, collecting … business. Recommend, cost-justify and lead execution of modifications to the existing infrastructure design to improve efficiency, reliability, and performance. Participates in disaster recovery testing and rehearsals. Who You Are: Minimum 10 years of experience in infrastructure support, delivery and design. The Infrastructure Solution Architecture Manager must be a … that enable applications and data). experience to include building an enterprise architecture. Planning and supporting processes and adhering to best practices. Knowledge of penetrationtesting methodologies. Knowledge of Intrusion detection/prevention systems (IDS/IPS/WAF) and vulnerability assessment tools. Extensive switching, routing and firewall more »