assurance across the SDLC in line with MoJ and NCSC guidelines. Essential Criteria Penetration testing, ethical hacking, or vulnerability assessments. Security testing tools (e.g., Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc.). DevSecOps principles and tools (e.g., Veracode, SonarQube, GitHub Advanced Security, IaC scanning, etc.). Secure Cloud Infrastructure, specifically AWS and Azure. Scripting and automation using Python and More ❯
lifecycle, aligned with NCSC and industry standards Required Experience: Proven track record in pen testing, vulnerability assessments, and ethical hacking Hands-on with tools such as Burp Suite, ZAP, Nmap, Metasploit Deep understanding of secure cloud infrastructure (AWS/Azure) and scripting (Python, Bash) Familiarity with DevSecOps tools (e.g. Veracode, GitHub Advanced Security) Certifications such as OSCP or CREST/ More ❯
response activities. Required Skills and Qualifications : Technical Expertise : Expert in C++ , C# , PowerShell , and other scripting/programming languages. Strong knowledge of penetration testing tools (e.g., Metasploit, Burp Suite, Nmap, Wireshark). Experience with reverse engineering, exploit development, and vulnerability research. Familiarity with operating systems (Windows, Linux, macOS) and their security mechanisms. Understanding of network protocols, firewalls, and intrusion detection More ❯
London, England, United Kingdom Hybrid / WFH Options
Mindrift
files, crafting malicious Linux commands, etc. Requirements Required Qualifications: Strong Linux administration and automation skills (Bash, Python, PowerShell) Hands-on experience with penetration testing tools (Metasploit, Burp Suite, Nessus, Nmap) Knowledge of AI security risks, including prompt injection, adversarial attacks, and AI red teaming Experience in automating security tasks, securing DevOps workflows, and integrating security into CI/CD pipelines More ❯
London, England, United Kingdom Hybrid / WFH Options
Remarkable Jobs
Are Looking For: Essential: 3–5 years of hands–on penetration testing experience Strong understanding of OWASP and vulnerability testing standards Proficiency with tools such as Kali, Burp Suite, Nmap, Nessus, Metasploit Knowledge of cloud platform testing (AWS, Azure, GCP) Strong reporting and client communication skills Relevant qualifications such as CREST CRT, OSCP, OSCE, or CCT Desirable: Familiarity with CI More ❯
Hounslow, England, United Kingdom Hybrid / WFH Options
JR United Kingdom
but not required). Solid understanding of common attack techniques and vulnerability classes (e.g., OWASP Top 10, MITRE ATT&CK). Strong familiarity with tools such as Burp Suite, Nmap, Metasploit, etc. Excellent communication and reporting skills. Required Qualifications: Demonstrable experience in penetration testing (minimum 2 years preferred). Hold at least one of the following certifications: OSCP (Offensive Security More ❯
London, England, United Kingdom Hybrid / WFH Options
Damco Spain SL
identification methods. Keen to participate in purple teaming activities, helping to develop scenarios and engage in both blue and red team activities. Some experience with tooling such as Metasploit, Nmap, Cobalt Strike, Hydra, John the Ripper, Burp Suite, Mimikatz, Bloodhound, and others. Threat Hunting Ability to learn fast new advanced persistent threat (APT) tactics, techniques, and procedures (TTPs) mapped to More ❯
level certifications (e.g. CREST Certified Tester or Cyber Scheme Team Leader). Strong client-facing experience. Able to obtain UK security clearance. Skills & Knowledge: Skilled in tools like Nessus, Nmap, BurpSuite, Metasploit. Proficient in at least one scripting language (Bash, PowerShell, Python, etc.). Strong understanding of TCP/IP, OSI model, and network device reviews. Solid experience testing web More ❯
City Of London, England, United Kingdom Hybrid / WFH Options
Hamilton Barnes 🌳
and articles. Skills/Must have: Strong knowledge of OWASP methodologies and offensive testing across black/grey/white-box approaches. Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit. Familiarity with cloud platform security testing (AWS, Azure, GCP). Understanding of mobile security (Android & iOS), networking protocols, and the OSI model. Excellent verbal and written communication More ❯
experience. Strong understanding of OWASP, SSL/TLS, SSH, and HTTP. Comfortable conducting black box, grey box, and white box testing. Familiar with tools like Kali, Burp Suite, Metasploit, Nmap, Nessus, and Qualys. Knowledge of AWS, Azure, or Google Cloud platform security. At least 2 certifications from: CREST CRT, OSCP, OSCE, or CCT. Desirable Extras: Experience with CI/CD More ❯
City of London, London, Grange, United Kingdom Hybrid / WFH Options
Applause IT Recruitment Ltd
experience. Strong understanding of OWASP, SSL/TLS, SSH, and HTTP. Comfortable conducting black box, grey box, and white box testing. Familiar with tools like Kali, Burp Suite, Metasploit, Nmap, Nessus, and Qualys. Knowledge of AWS, Azure, or Google Cloud platform security. At least 2 certifications from: CREST CRT, OSCP, OSCE, or CCT. Desirable Extras: Experience with CI/CD More ❯
security defences. Technologies and Soft Skills required: Advanced technical knowledge of penetration testing techniques, security assessments, and vulnerability exploitation. Expertise in security testing tools (such as Burp Suite, Metasploit, Nmap, OWASP ZAP, etc.), as well as manual testing methods. Strong understanding of common application security vulnerabilities (such as SQL injection, XSS, CSRF, insecure deserialization, etc.) and OWASP Top 10. Proficiency More ❯
clearances as required by the business. Proficient in at least one scripting language, Bash, PowerShell, VB, Python etc. Demonstrable experience of the use of penetration tools such as Nessus, Nmap, Metasploit, BurpSuite etc. Solid understanding of the suite of TCP/IP protocols and the OSI model. Proven track record of carrying out ITHC’s for PCI DSS and PSN More ❯
leading tool for web application security testing. This includes leveraging its various features for intercepting traffic, conducting automated scans, manipulating requests and responses, and identifying vulnerabilities in web applications. Nmap and Enumeration Tools: Skilled in using Nmap for network scanning and enumeration. This involves not just running scans but interpreting results to identify open ports, services, and potential vulnerabilities. Familiarity More ❯
clearances as required by the business. Proficient in at least one scripting language, Bash, PowerShell, VB, Python etc. Demonstrable experience of the use of penetration tools such as Nessus, Nmap, Metasploit, BurpSuite etc. Solid understanding of the suite of TCP/IP protocols and the OSI model. Proven track record of carrying out ITHC’s for PCI DSS and PSN More ❯
London, England, United Kingdom Hybrid / WFH Options
S-RM
technical issues into business friendly/executive language. Experience with Bash and/or PowerShell automation is essential. Experience with ethical hacking tools, such as (But not limited to) nmap, Nessus, and Burpsuite. Practical experience of the Software Development Life Cycle and Agile frameworks. Fostering a positive culture of security with end users, engineers, developers, product managers. Excellent communication, teamwork More ❯
or Nessus Palo Alto Firewalls, InTune, Entra ID, Active Directory Desirable: Imperva WAF, Menlo Security, Cisco Secure Access/Umbrella, KnowBe4, AppCheck Ivanti or Automox patching Kali Linux, Metasploit, NMAP, BurpSuite Candidate Profile Professional certifications such as CISM, MS SC100/200/900, OSCP are advantageous Background in financial services, SOC environments, or penetration testing preferred Strong interpersonal and More ❯
or Nessus Palo Alto Firewalls, InTune, Entra ID, Active Directory Desirable: Imperva WAF, Menlo Security, Cisco Secure Access/Umbrella, KnowBe4, AppCheck Ivanti or Automox patching Kali Linux, Metasploit, NMAP, BurpSuite Candidate Profile Professional certifications such as CISM, MS SC100/200/900, OSCP are advantageous Background in financial services, SOC environments, or penetration testing preferred Strong interpersonal and More ❯
or Nessus Palo Alto Firewalls, InTune, Entra ID, Active Directory Desirable: Imperva WAF, Menlo Security, Cisco Secure Access/Umbrella, KnowBe4, AppCheck Ivanti or Automox patching Kali Linux, Metasploit, NMAP, BurpSuite Candidate Profile Professional certifications such as CISM, MS SC100/200/900, OSCP are advantageous Background in financial services, SOC environments, or penetration testing preferred Strong interpersonal and More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Marlin Selection Recruitment
Web Security Gateway Menlo CASB Cisco Secure Access Cisco Umbrella Cisco ASA KnowBe4 Digicert Certificates and Microsoft Certificate Services Ivanti or Automox patching AppCheck or Tenable WAS Kali Linux (NMAP, Metasploit, BurpSuite, John etc) Desired Education: CISM, MS SC100, 200 and 900, OSCP or other penetration testing qualifications. Industry: Financial services, SOC, Pentesting is desirable Personal Skills: Excellent inter-personal More ❯
Web Security Gateway Menlo CASB Cisco Secure Access Cisco Umbrella Cisco ASA KnowBe4 Digicert Certificates and Microsoft Certificate Services Ivanti or Automox patching AppCheck or Tenable WAS Kali Linux (NMAP, Metasploit, BurpSuite, John etc) Desired Education: CISM, MS SC100, 200 and 900, OSCP or other penetration testing qualifications. Industry: Financial services, SOC, Pentesting is desirable Personal Skills: Excellent inter-personal More ❯
