18 of 18 Penetration Testing Jobs in the South West

Penetration Testing Team Lead Technology Banking AVP Level Hybrid (London (Moorgate) 3 days per week) Salary & Package TBC Opportunity for a skilled Cyber Security Professional with penetration testing and red team expertise to join a global financial services organisation. This is a hands-on role where you'll simulate advanced cyber attacks, test defences, and influence … enterprise-level security strategy. Key Responsibilities Lead red team operations , penetration testing, and ethical hacking engagements Plan and deliver cyber attack simulations, vulnerability assessments, and social engineering tests Work with SOC teams on purple team exercises to enhance detection and response Produce executive reporting on cyber threats, risks, and remediation progress Collaborate with security and infrastructure teams to … strengthen overall cyber resilience Skills & Experience 3+ years in penetration testing/ethical hacking/red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights More ❯

modelling, and secure coding practices across agile and DevOps teams, ensuring alignment with regulatory requirements (FCA, GDPR, etc). Oversee the secure development lifecycle, from requirements and design to testing, deployment, and ongoing operation, ensuring risk mitigation at every stage. Lead, mentor, and develop a team of application and product security professionals, fostering a culture of continuous improvement and … accelerate digital transformation. Develop and maintain application security architecture, reference models, and automation in line with cloud-first and hybrid environments (AWS, Azure, etc). Commission and manage security testing (SAST, DAST, pen testing, Interactive testing, Mobile testing, bug bounties), triage vulnerabilities, and drive remediation efforts with development teams. Report to executive leadership and the board … across the wider business. Engage with external partners, vendors, and industry groups to benchmark best practice and represent the firm's interests. Lead the offensive security function looking after penetration testing, red/purple team exercises and bug bounty programme. About you Extensive leadership experience in application and/or product security, ideally within the wealth management, financial More ❯

modelling, and secure coding practices across agile and DevOps teams, ensuring alignment with regulatory requirements (FCA, GDPR, etc). Oversee the secure development lifecycle, from requirements and design to testing, deployment, and ongoing operation, ensuring risk mitigation at every stage. Lead, mentor, and develop a team of application and product security professionals, fostering a culture of continuous improvement and … accelerate digital transformation. Develop and maintain application security architecture, reference models, and automation in line with cloud-first and hybrid environments (AWS, Azure, etc). Commission and manage security testing (SAST, DAST, pen testing, Interactive testing, Mobile testing, bug bounties), triage vulnerabilities, and drive remediation efforts with development teams. Report to executive leadership and the board … across the wider business. Engage with external partners, vendors, and industry groups to benchmark best practice and represent the firm's interests. Lead the offensive security function looking after penetration testing, red/purple team exercises and bug bounty programme. About you Extensive leadership experience in application and/or product security, ideally within the wealth management, financial More ❯

ATT&CK Framework Desirable Certifications, Qualifications Experience: Computer Security Security Blue Team 1 or higher CompTIA Cyber Security Analyst SC-200 Microsoft Security Operations Analyst One of: CREST Registered Penetration Tester, CREST Certified Infrastructure Tester, Cyber Scheme Team Member (CSTM), Cyber Scheme Team Leader (CSTL), EC-Council Certified Security Analyst (ECSA): Penetration Testing practical, EC-Council Certified … Penetration Testing Professional (CPENT), Offensive Security Certified Professional (OSCP) Company benefits include: Discretionary 10% bonus Discretionary 2k annual training fund per employee Very competitive pension scheme Virtual GP Annual Eye Test More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. Knowledge of secure development practices, penetration testing, and vulnerability assessments. Ability to communicate security risks and strategies to technical and non-technical stakeholders. Experience in incident response and remediation. Strong analytical and problem-solving More ❯

and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. Knowledge of secure development practices, penetration testing, and vulnerability assessments. Ability to communicate security risks and strategies to technical and non-technical stakeholders. Experience in incident response and remediation. Strong analytical and problem-solving More ❯

and the Data Protection Act 2018 Collaborate with security partners and stakeholders to maintain a robust security posture Continuously monitor security systems, investigate alerts, and take appropriate actions Support penetration testing and remediation processes to address vulnerabilities Deliver cyber awareness training and phishing tests, supporting staff with best practice Who They’re Looking for: Proven experience in information More ❯

mentoring: Proven ability to lead, mentor, and develop a high-performing governance, risk, and compliance (GRC) team. Vulnerability management: Experience scoping, overseeing and interpreting the results of vulnerability scanning, penetration testing, and security audits. Please apply for more details More ❯

mentoring: Proven ability to lead, mentor, and develop a high-performing governance, risk, and compliance (GRC) team. Vulnerability management: Experience scoping, overseeing and interpreting the results of vulnerability scanning, penetration testing, and security audits. Please apply for more details More ❯

limited to: Maintaining an Information Security Management Systems, effectively identify and manage IT risk and conduct risk assessments and inform mitigation strategies Supporting the Systems Engineering team to execute penetration testing, remediation processes and security checks and develop security tools, processes and technologies, keeping future certifications for security standards in mind such as Cyber Essentials or ISO27001 Creating More ❯

provided across the programme to ensure that the new technology is secure by design Support the teams to interpret security requirements of the project Conduct threat modelling and pen testing to identify threats and establish controls Support wider teams with security advice and guidance in both a verbal and written format Lead delivery of hands-on security engineering solutions … Crest/CHECK Strong understanding of shift left Proven experience with of working with development teams on security related topics Either hands on secure software development or applications security testing Likely come from a pen testing, SRE, or Software Development Background We invite individuals from underrepresented groups to apply for any of our roles and are committed to More ❯