19 of 19 Penetration Testing Jobs in the South West

Role: Penetration Tester Type: Permanent Location: Cheltenham/Remote Clearance: SC/DV Are you an offensive security specialist who is excited about delivering the best service possible? Keen to work in a business where you stand to work alongside some very talented testers? CND are working with a boutique Cyber Security consultancy who are focused on the Penetration Testing market. What makes them stand out? They are not interested in flashy marketing and would never be caught trying to pass off a Nessus scan as a Penetration Test. The business has been built on delivering excellent testing and reports as well as ensuring that clients see the real benefits of their testing outputs. … The company have an office in Cheltenham however you are welcome to work where is best for you. Key Responsibilities: • Work to deliver CHECK penetration testing services • Lean into non-CHECK work where necessary • Work with the sales team to flesh out technical input as needed • Deliver quality reports to customers, • Stay up to date with industry trends More ❯

Summary: CCL Solutions Group is seeking an exceptional Senior Penetration Tester with CHECK Team Leader Infrastructure (CTL-INF) qualifications to join our elite team of security professionals. Location: Home based Main Job Summary This is more than just a job, we're looking for individuals with a hacker's mindset, deep technical expertise, and a relentless drive to secure … leading provider of cybersecurity services, we are a team committed to making a real difference in protecting communities, businesses, and the critical infrastructure of the UK. As a Senior Penetration Tester within CCL Solutions Group, your key responsibilities will be: Lead and deliver end-to-end penetration testing engagements across infrastructure and cloud environments. Manage and mentor … Leader certification (Cyber Scheme Team Leader - INF or CREST CCT-INF). Minimum of 2 years delivering CHECK engagements as a CTL. At least 3 years of hands-on penetration testing experience in enterprise environments. Deep understanding of infrastructure testing, Active Directory security, and cloud technologies (AWS, Azure, Kubernetes). Strong familiarity with tools such as Nmap More ❯

security incident response plan, including detection, analysis, containment, eradication, recovery, and post-incident review, supporting timely reporting to relevant authorities (eg ICO, NHS England) where required. Vulnerability management and testing: Own, support and oversee programs for vulnerability scanning, penetration testing, and security audits of applications and infrastructure to identify and address security weaknesses. Security awareness and training … mentoring: Proven ability to lead, mentor, and develop a high-performing governance, risk, and compliance (GRC) team. Vulnerability management: Experience scoping, overseeing and interpreting the results of vulnerability scanning, penetration testing, and security audits. Desirable: Cloud Security Expertise: Experience securing cloud-native applications and infrastructure (eg AWS, GCP), including knowledge of cloud security best practices and compliance frameworks More ❯

security incident response plan, including detection, analysis, containment, eradication, recovery, and post-incident review, supporting timely reporting to relevant authorities (eg ICO, NHS England) where required. Vulnerability management and testing: Own, support and oversee programs for vulnerability scanning, penetration testing, and security audits of applications and infrastructure to identify and address security weaknesses. Security awareness and training … mentoring: Proven ability to lead, mentor, and develop a high-performing governance, risk, and compliance (GRC) team. Vulnerability management: Experience scoping, overseeing and interpreting the results of vulnerability scanning, penetration testing, and security audits. Desirable: Cloud Security Expertise: Experience securing cloud-native applications and infrastructure (eg AWS, GCP), including knowledge of cloud security best practices and compliance frameworks More ❯

ATT&CK Framework Desirable Certifications, Qualifications Experience: Computer Security Security Blue Team 1 or higher CompTIA Cyber Security Analyst SC-200 Microsoft Security Operations Analyst One of: CREST Registered Penetration Tester, CREST Certified Infrastructure Tester, Cyber Scheme Team Member (CSTM), Cyber Scheme Team Leader (CSTL), EC-Council Certified Security Analyst (ECSA): Penetration Testing practical, EC-Council Certified … Penetration Testing Professional (CPENT), Offensive Security Certified Professional (OSCP) Company benefits include: Discretionary 10% bonus Discretionary 2k annual training fund per employee Very competitive pension scheme Virtual GP Annual Eye Test More ❯

part of a truly team driven environment. As a First Responder, you must display excellent outside-the-box thinking and communication skills. DESIRABLE EXPERIENCE. Vulnerability Assessment experience. Knowledge of Penetration testing tools and techniques. Network and firewall alert management. Active Directory and group policy management experience. Experience in deploying, managing, and supporting of endpoint security platforms Information security … in line with business requirements. PowerShell scripting. Experience with server infrastructure deployment, configuration and support. Ability to produce high-quality technical reports. Experience with Cyber Essentials and Essentials Plus. Penetration testing experience. Security related certifications (BTL1, BTL2, SC200, CySA+, Sec+, etc). Shift Allowance: additional 5k salary uplift for being on shift Performance-related, discretionary end-of-year More ❯

Simulate the Threats. Strengthen the Defenses. Are you passionate about uncovering vulnerabilities before they become headlines? Join a global veterinary business where your expertise in cyber security testing will help protect the digital infrastructure that supports animal health worldwide. As our Cyber Security Testing Lead, you'll lead proactive testing efforts to expose weaknesses, validate controls, and … leadership role within our Cyber Defence Red Team, focused on simulating real-world attack techniques to identify and close security gaps before they're exploited. Key responsibilities include: Security Testing Strategy: Design and execute end-to-end testing-from basic port scans to advanced adversarial simulations. Vulnerability Identification: Perform External Attack Surface Management (EASM) and threat hunting to … the Blue Team and Compliance, driving remediation efforts. Collaboration & Mentorship: Work closely with IT and development teams to resolve issues and mentor internal testers. Third-Party Oversight: Manage external testing providers and ensure alignment with internal standards. Continuous Improvement: Help close the gap between theoretical controls and real-world threats. What You Bring Significant hands-on experience in cyber More ❯

is. SIEM, IDS/IPS, ASM, WAF) to safeguard against security breaches, cyber threats and unauthorized access Report on and assist with all security events and incidents. Oversee Security testing, including penetration testing and vulnerability scanning Ensure products compliance with security standards and regulations Ensure NAVBLUE Security strategy deployment within technical operations Ensure effective synchronization and alignment … Excellent management, analytical and problem-resolution skills Working knowledge of the SDLC and AWS network architecture Knowledge of the SAFe Agile method would be an asset Understanding of security testing in the software pipeline (SAST, DAST, SCA, RASP) Knowledge of STRIDE, DICE and other threat and risk frameworks Knowledge of AWS tools Proven experience managing multiple projects simultaneously Practical More ❯

to monitor, analyse, and respond to evolving cyber threats, lead forensic investigations, and support wider resilience initiatives. Key Responsibilities: Design, implement, and manage secure network architectures Perform vulnerability assessments , penetration testing , and remediation strategy delivery Lead and coordinate incident response , forensic analysis, and post-incident reporting Use and optimise security tooling (e.g. firewalls, IDS/IPS , endpoint protection More ❯

to monitor, analyse, and respond to evolving cyber threats, lead forensic investigations, and support wider resilience initiatives. Key Responsibilities: Design, implement, and manage secure network architectures Perform vulnerability assessments , penetration testing , and remediation strategy delivery Lead and coordinate incident response , forensic analysis, and post-incident reporting Use and optimise security tooling (e.g. firewalls, IDS/IPS , endpoint protection More ❯

to monitor, analyse, and respond to evolving cyber threats, lead forensic investigations, and support wider resilience initiatives. Key Responsibilities: Design, implement, and manage secure network architectures Perform vulnerability assessments , penetration testing , and remediation strategy delivery Lead and coordinate incident response , forensic analysis, and post-incident reporting Use and optimise security tooling (e.g. firewalls, IDS/IPS , endpoint protection More ❯

to monitor, analyse, and respond to evolving cyber threats, lead forensic investigations, and support wider resilience initiatives. Key Responsibilities: Design, implement, and manage secure network architectures Perform vulnerability assessments , penetration testing , and remediation strategy delivery Lead and coordinate incident response , forensic analysis, and post-incident reporting Use and optimise security tooling (e.g. firewalls, IDS/IPS , endpoint protection More ❯

or comfortable teaching (or able to learn) in the following areas: Network Security (e.g., Firewalls, IDS/IPS, VPNs) Operating System Security (e.g., Windows, Linux hardening) Ethical Hacking and Penetration Testing (e.g., reconnaissance, vulnerability scanning, exploitation) Security Operations (e.g., SIEM, SOC analysis) Incident Response and Digital Forensics Cryptography and Secure Communications Cloud Security (e.g., AWS, Azure, GCP security More ❯

or comfortable teaching (or able to learn) in the following areas: Network Security (e.g., Firewalls, IDS/IPS, VPNs) Operating System Security (e.g., Windows, Linux hardening) Ethical Hacking and Penetration Testing (e.g., reconnaissance, vulnerability scanning, exploitation) Security Operations (e.g., SIEM, SOC analysis) Incident Response and Digital Forensics Cryptography and Secure Communications Cloud Security (e.g., AWS, Azure, GCP security More ❯

Doing Network Security: Design, implement, and manage secure network architectures. Monitor traffic for suspicious activity and respond to incidents. Conduct security assessments and audits. Vulnerability Analysis: Conduct assessments and penetration testing. Develop mitigation strategies and track vulnerabilities. Forensic Analysis: Analyze security incidents, collect evidence, and prepare reports to improve security posture. Incident Response: Lead response efforts, develop plans, and More ❯

Penetration Tester £60,000 | Predominantly Remote (UK-based) with very occasional client site visits in the Gloucestershire area A leading UK-based cyber security consultancy , accredited under the NCSC CHECK scheme , is seeking an experienced Penetration Tester to join its specialist team. The organisation delivers advanced security testing and assurance to high-profile clients across defence, government … and critical national infrastructure. This role is remote-first , with only rare client site visits required in the Gloucestershire area. 🔐 Key Responsibilities: Perform infrastructure, web application, wireless, and API penetration testing to recognised industry standards. Produce clear, high-quality technical reports and present findings to both technical and non-technical audiences. Provide remediation advice and collaborate closely with More ❯

networked, and application environments. Support secure deployment practices in Microsoft technologies (e.g., Azure, M365, Active Directory), and provide direct assistance in resolving technical design and configuration challenges. Assist with testing and validating cyber security controls during implementation. Track, prioritise, and drive remediation of technical security risks Maintain a visible and well-structured log of identified security issues, ensuring that … validated and documented. Act as the designated operational lead for BC/DR cyber input Provide authoritative security input into GLD's Business Continuity and Disaster Recovery planning and testing processes, ensuring cyber considerations-such as backup integrity, ransomware preparedness, and secure failover mechanisms-are incorporated into organisational resilience plans. Support simulations and post-incident reviews to strengthen future … to-date, and aligned with legal, regulatory, and architectural requirements. Lead periodic reviews in response to emerging threats, changes in business operations, or evolving technologies. Coordinate, commission, and interpret penetration testing and vulnerability assessments Oversee the planning and execution of penetration tests and vulnerability scans across GLD's digital estate. Work with external providers and internal teams More ❯

Debian variants). Designing, planning, and rolling out software and upgrades. Troubleshooting issues and implementing fixes across the infrastructure. The role includes working with the security team and external penetration testing teams to ensure a very high security standard across the infrastructure. Benefits Competitive Salary Generous pension provision Performance and business development bonuses 25 days holiday per year More ❯

point of contact for Clients, Internal and External via email, teams and telephone. Scheduling, coordinating and prioritising engagements. Collaborating with teams and other members to allocate engagements to the Penetration testing team, Security specialistsand Cyber Essentials/Plus assessors Paying attention to detail andensuring all aspects of the project are completed to a high standard. Keeping andmaintaining digital More ❯