1 to 25 of 27 Penetration Testing Jobs in the North of England

Overview Pentest People is a UK-based security consultancy specialising in providing Penetration Testing as a Service to all its clients. Our approach combines consultant-led penetration testing with ongoing vulnerability assurance through our SecurePortal, providing clients with a continuous, living threat management system throughout the contract duration. As CHECK Team Leader , you will lead and … oversee penetration testing engagements for government and critical infrastructure clients, ensuring compliance with NCSC methodologies while delivering technical and strategic value. This role requires both Infrastructure and Application CHECK certifications alongside a UK Cyber Security Council Principal Professional Title in Security Testing. You will be responsible for managing complex security assessments from initial scoping through final report delivery … leading a team of skilled penetration testers, and serving as the primary technical authority for client engagements. The position requires expertise in both infrastructure and application security domains, with the ability to transition between hands-on technical assessments and executive-level risk communication. This remote-based role includes regular on-site client work across the UK. You will work More ❯

Senior Penetration Tester Location: Fully Remote (UK-Based) Salary Range: £50,000 - £85,000 (dependent on experience) Position: Permanent, Full-Time My client is a dynamic and growing cybersecurity consultancy dedicated to providing top-tier security services to a diverse range of clients. They believe in empowering the team with the flexibility of remote work while tackling challenging and … engaging projects that make a real difference to their clients' security posture. The Role We are seeking a highly skilled and motivated Senior Penetration Tester to join our remote team. You will be responsible for leading and executing complex penetration tests against a variety of systems, networks, and applications. The ideal candidate is not just a proficient tester … but a critical thinker who can articulate risks clearly and provide pragmatic remediation advice to clients. Key Responsibilities Plan, lead, and execute sophisticated penetration tests across infrastructure, web applications, APIs, and internal networks. Conduct advanced Red Team exercises to simulate real-world adversary attacks and test organisational defences. Produce high-quality, clear, and concise reports for both technical and More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

Assess that Cybersecurity is embedded throughout the development lifecycle of Technology Assets by using Deloitte's Secure System Development Lifecyle (SSDLC) to assure paths to production. Oversee that security testing activities like vulnerability scanning, penetration testing, and code reviews are completed to identify weaknesses and potential exploits on the identified security requirements. Identify potential information security risks More ❯

Liaise with the Security Architects and wider team to provide technical requirements to ensure projects deliver secure solutions Work with the Security Business Partners to scope, arrange and support penetration testing and vulnerability testing and track remediation to a close Articulate risk in technical and non-technical terminology so that it can be interpreted by Information Technology More ❯

Liaise with the Security Architects and wider team to provide technical requirements to ensure projects deliver secure solutions Work with the Security Business Partners to scope, arrange and support penetration testing and vulnerability testing and track remediation to a close Articulate risk in technical and non-technical terminology so that it can be interpreted by Information Technology More ❯

Liaise with the Security Architects and wider team to provide technical requirements to ensure projects deliver secure solutions Work with the Security Business Partners to scope, arrange and support penetration testing and vulnerability testing and track remediation to a close Articulate risk in technical and non-technical terminology so that it can be interpreted by Information Technology More ❯

Based Vulnerabilities are Understood & Mitigated meaning that Code Reading Skills are also desirable. Skills & Experience of the AppSec Engineer role: Hands-On Experience with Security Assessment Tools & Techniques including Penetration Testing & Code Review. Use of Planned, Structured Methodologies for Conducting & Reporting on Web Application Penetration Testing. Understanding & Demonstrable Experience of Automated, Dynamic & Static Application Security Testing Tools, as well as Manual Security Testing to find Vulnerabilities & Logical Issues. Broad Understanding of SDLC & Technology Functions and how they relate to Information Security. Understanding of Industry Standard Information Security Practices. Ideally Offensive Security Certified Professional (OSCP) Certification (or similar is Desirable but Not Essential). Strong Communication Skills & High Attention to Detail. Main Responsibilities of the … considered up front and throughout the Project Lifecycle. Taking Responsibility for the Security of Tested Products within Project Context. Conducting Manual & Automated Source Code Reviews. Contributing to & Utilising Security Testing Methodologies, Creating & Updating Technical Documentation as necessary. Liaising with Software Development Department to ensure Security is considered throughout SDLC. Identifying any Security Issues within the Businesss Software and Manage More ❯

objectives. Drafting, maintaining and implementing information security policies and Standard Operating Procedures (SOPs). Configuring and overseeing mobile securityMDM (MAM/BYOD)to protect business continuity. Leading vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts. Authoring compelling tender responses, clearly demonstrating technical capability and strategic value. Enhancing Microsoft 365 security leveraging Purview, Conditional Access, MFA to safeguard … through closure. Strong understanding of ITIL, CAB, and structured change management. Skilled in crafting and updating security policies, SOPs, and managing tender documentation. Hands-on expertise with MDM tools, penetration testing, and policy-based firewalls. Experience designing and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional More ❯

practices to proactively enhance the organizations network security posture Ensure compliance with relevant security regulations and standards and assist in audit processes as needed Conduct regular security assessments including penetration testing and vulnerability assessments to identify and remediate potential security risks Experience: Bachelors degree in computer science Information Technology or related field 12 years of Proven experience in More ❯

practices to proactively enhance the organizations network security posture Ensure compliance with relevant security regulations and standards and assist in audit processes as needed Conduct regular security assessments including penetration testing and vulnerability assessments to identify and remediate potential security risks Experience: Bachelors degree in computer science Information Technology or related field 12 years of Proven experience in More ❯

stakeholders and external partners to ensure compliance with ISO27001, Cyber Essentials+, and other regulatory frameworks. This role also involves reporting on cyber threats and performance using Power BI, supporting penetration testing, and contributing to the development of secure IT architecture and access control policies. What you'll need to succeed Extensive experience administering the Azure platform and Microsoft More ❯

mentoring: Proven ability to lead, mentor, and develop a high-performing governance, risk, and compliance (GRC) team. Vulnerability management: Experience scoping, overseeing and interpreting the results of vulnerability scanning, penetration testing, and security audits. Please apply for more details More ❯

As a Vulnerability Management Analyst you will use Leading, Enterprise-Led Tools & take Responsibility for Reviewing the Results of Risk & Impact Assessment, Scheduling & Planning for Specialist Third-Party Vulnerability & Penetration Testing, along with Reporting. Key Responsibilities of Vulnerability Management Analyst role would include: Conducting Vulnerability Scanning with leading Tools Scheduling of Scanning across Business, ensuring Reporting Requirements are More ❯

Cyber Essentials & IASME Assured Level 1 assessments Working on Cyber Essentials Plus & IASME Assured Level 2 (Audited) audits Carrying out Internal Vulnerability Scanning (including customising reporting) Carrying out External Penetration Testing (including customising reporting) Using enterprise level tools to analyse and assess vulnerabilities Assist with the evolving product and services portfolio available to clients Assisting the sales and More ❯

knowledge of: PHP 8+, MySQL 8, Apache 2.4, Redis AI/ML tools (speech/NLP, automation, prediction engines) Cloud infrastructure (preferably AWS) Cybersecurity best practices, disaster recovery, and penetration testing Demonstrated success in modernising platforms, leading performance turnarounds, and delivering new systems Strong communication skills for cross-functional collaboration and business alignment Success Will Be Measured By … and automation efficiency gains Noticeable improvement in platform speed, uptime, and stability Zero breaches or vulnerabilities post-security audits Seamless integration of tools into unified systems Successful implementation and testing of a disaster recovery plan Positive user feedback on platform improvements Interested? Please Click Apply Now! CTO Lead a Full-Stack Transformation More ❯

knowledge of: PHP 8+, MySQL 8, Apache 2.4, Redis AI/ML tools (speech/NLP, automation, prediction engines) Cloud infrastructure (preferably AWS) Cybersecurity best practices, disaster recovery, and penetration testing Demonstrated success in modernising platforms, leading performance turnarounds, and delivering new systems Strong communication skills for cross-functional collaboration and business alignment Success Will Be Measured By … and automation efficiency gains Noticeable improvement in platform speed, uptime, and stability Zero breaches or vulnerabilities post-security audits Seamless integration of tools into unified systems Successful implementation and testing of a disaster recovery plan Positive user feedback on platform improvements Interested? Please Click Apply Now! Head of IT Lead a Full-Stack Transformation More ❯

Deep knowledge of: PHP 8+, MySQL 8, Apache 2.4, Redis AI/ML tools (speech/NLP, automation, prediction engines) Cloud infrastructure (AWS preferred) Cybersecurity best practices, disaster recovery, penetration testing Demonstrated success in modernising platforms, optimising performance, and delivering new systems Strong communication skills for cross-functional collaboration and business alignment Real estate/estate agency sector … and automation efficiency gains Noticeable improvements in platform speed, uptime, and stability Zero breaches or vulnerabilities post-security audits Seamless integration of tools into unified systems Successful implementation and testing of disaster recovery plan Positive user feedback on platform improvements Interested? Click Apply Now to lead the transformation. Head of Information Technology - Manchester - £80K + Bonus More ❯