1 to 25 of 132 Penetration Testing Jobs in the UK excluding London

Overview Pentest People is a UK-based security consultancy specialising in providing Penetration Testing as a Service to all its clients. Our approach combines consultant-led penetration testing with ongoing vulnerability assurance through our SecurePortal, providing clients with a continuous, living threat management system throughout the contract duration. As CHECK Team Leader , you will lead and … oversee penetration testing engagements for government and critical infrastructure clients, ensuring compliance with NCSC methodologies while delivering technical and strategic value. This role requires both Infrastructure and Application CHECK certifications alongside a UK Cyber Security Council Principal Professional Title in Security Testing. You will be responsible for managing complex security assessments from initial scoping through final report delivery … leading a team of skilled penetration testers, and serving as the primary technical authority for client engagements. The position requires expertise in both infrastructure and application security domains, with the ability to transition between hands-on technical assessments and executive-level risk communication. This remote-based role includes regular on-site client work across the UK. You will work More ❯

Penetration Testing Team LeadTechnology BankingAVP Level Hybrid (London (Moorgate) 3 days per week)Salary & Package TBC Opportunity for a skilled Cyber Security Professional with penetration testing and red team expertise to join a global financial services organisation. This is a hands-on role where you'll simulate advanced cyber attacks, test defences, and influence enterprise-level … security strategy. Key Responsibilities Lead red team operations , penetration testing, and ethical hacking engagements Plan and deliver cyber attack simulations, vulnerability assessments, and social engineering tests Work with SOC teams on purple team exercises to enhance detection and response Produce executive reporting on cyber threats, risks, and remediation progress Collaborate with security and infrastructure teams to strengthen overall … cyber resilience Skills & Experience 3+ years in penetration testing/ethical hacking/red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights to stakeholders More ❯

Penetration Testing Team Lead Technology Banking AVP Level Hybrid (London (Moorgate) 3 days per week) Salary & Package TBC Opportunity for a skilled Cyber Security Professional with penetration testing and red team expertise to join a global financial services organisation. This is a hands-on role where you'll simulate advanced cyber attacks, test defences, and influence … enterprise-level security strategy. Key Responsibilities Lead red team operations , penetration testing, and ethical hacking engagements Plan and deliver cyber attack simulations, vulnerability assessments, and social engineering tests Work with SOC teams on purple team exercises to enhance detection and response Produce executive reporting on cyber threats, risks, and remediation progress Collaborate with security and infrastructure teams to … strengthen overall cyber resilience Skills & Experience 3+ years in penetration testing/ethical hacking/red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights More ❯

is not available. Who we are: Cyber Guarded Ltd is a long-established and independent cyber security company based in Belfast. As the premier NCSC-approved supplier for CHECK Penetration Testing in Northern Ireland, including Cyber Incident Exercising being conducted at the highest levels, along with Cyber Advisor - Cyber Essentials, we support clients across both public and private … sectors. As we continue to grow significantly, securing significant contracts across Northern Ireland, we’re strengthening our technical team to meet demand. We are seeking skilled Penetration Testers who are either already Cyber Scheme Team Member (CSTM) or CREST Registered Penetration Tester (CRT) or have the technical ability and motivation to gain the above qualifications in the near … future to achieve NCSC CHECK Penetration Testing status. What You’ll Do: Perform infrastructure, web, cloud, and OT penetration testing Produce clear, actionable reports and remediation advice Engage with clients through the full testing lifecycle Contribute to tooling, methodology, and internal R&D What We’re Looking For: Hands-on experience in professional penetration More ❯

is not available. Who we are: Cyber Guarded Ltd is a long-established and independent cyber security company based in Belfast. As the premier NCSC-approved supplier for CHECK Penetration Testing in Northern Ireland, including Cyber Incident Exercising being conducted at the highest levels, along with Cyber Advisor - Cyber Essentials, we support clients across both public and private … sectors. As we continue to grow significantly, securing significant contracts across Northern Ireland, we’re strengthening our technical team to meet demand. We are seeking skilled Penetration Testers who are either already Cyber Scheme Team Member (CSTM) or CREST Registered Penetration Tester (CRT) or have the technical ability and motivation to gain the above qualifications in the near … future to achieve NCSC CHECK Penetration Testing status. What You’ll Do: Perform infrastructure, web, cloud, and OT penetration testing Produce clear, actionable reports and remediation advice Engage with clients through the full testing lifecycle Contribute to tooling, methodology, and internal R&D What We’re Looking For: Hands-on experience in professional penetration More ❯

is not available. Who we are: Cyber Guarded Ltd is a long-established and independent cyber security company based in Belfast. As the premier NCSC-approved supplier for CHECK Penetration Testing in Northern Ireland, including Cyber Incident Exercising being conducted at the highest levels, along with Cyber Advisor - Cyber Essentials, we support clients across both public and private … sectors. As we continue to grow significantly, securing significant contracts across Northern Ireland, we’re strengthening our technical team to meet demand. We are seeking skilled Penetration Testers who are either already Cyber Scheme Team Member (CSTM) or CREST Registered Penetration Tester (CRT) or have the technical ability and motivation to gain the above qualifications in the near … future to achieve NCSC CHECK Penetration Testing status. What You’ll Do: Perform infrastructure, web, cloud, and OT penetration testing Produce clear, actionable reports and remediation advice Engage with clients through the full testing lifecycle Contribute to tooling, methodology, and internal R&D What We’re Looking For: Hands-on experience in professional penetration More ❯

Senior Penetration Tester Location: Fully Remote (UK-Based) Salary Range: £50,000 - £75,000 (dependent on experience) Position: Permanent, Full-Time My client is a dynamic and growing cybersecurity consultancy dedicated to providing top-tier security services to a diverse range of clients. They believe in empowering the team with the flexibility of remote work while tackling challenging and … engaging projects that make a real difference to their clients' security posture. The Role We are seeking a highly skilled and motivated Senior Penetration Tester to join our remote team. You will be responsible for leading and executing complex penetration tests against a variety of systems, networks, and applications. The ideal candidate is not just a proficient tester … but a critical thinker who can articulate risks clearly and provide pragmatic remediation advice to clients. Key Responsibilities Plan, lead, and execute sophisticated penetration tests across infrastructure, web applications, APIs, and internal networks. Conduct advanced Red Team exercises to simulate real-world adversary attacks and test organisational defences. Produce high-quality, clear, and concise reports for both technical and More ❯

Senior Penetration Tester Location: Fully Remote (UK-Based) Salary Range: £50,000 - £85,000 (dependent on experience) Position: Permanent, Full-Time My client is a dynamic and growing cybersecurity consultancy dedicated to providing top-tier security services to a diverse range of clients. They believe in empowering the team with the flexibility of remote work while tackling challenging and … engaging projects that make a real difference to their clients' security posture. The Role We are seeking a highly skilled and motivated Senior Penetration Tester to join our remote team. You will be responsible for leading and executing complex penetration tests against a variety of systems, networks, and applications. The ideal candidate is not just a proficient tester … but a critical thinker who can articulate risks clearly and provide pragmatic remediation advice to clients. Key Responsibilities Plan, lead, and execute sophisticated penetration tests across infrastructure, web applications, APIs, and internal networks. Conduct advanced Red Team exercises to simulate real-world adversary attacks and test organisational defences. Produce high-quality, clear, and concise reports for both technical and More ❯

are looking for a technically exceptional and visionary Senior Manager to lead our Offensive Security function. This role is both strategic and hands-on, responsible for delivering high-impact penetration testing, attack surface management, and a mature bug bounty program. The ideal candidate will be a transformation leader with deep technical expertise in offensive security and a passion … Security will serve as both a strategic leader and hands-on technical expert, driving the evolution of our offensive security capabilities. This role is accountable for delivering high-impact penetration testing, managing our attack surface, and overseeing a global bug bounty program. With a strong focus on identifying control gaps and advancing purple team maturity, the ideal candidate … a transformation mindset, and a proven ability to lead and inspire high-performing teams in a dynamic, threat-informed environment. RESPONSIBILITIES Technical Leadership & Execution - Personally lead and execute advanced penetration tests, red/purple team exercises, and adversary emulation campaigns across cloud, application, and infrastructure layers. - Identify and exploit vulnerabilities to simulate real-world attack scenarios, validate detection and More ❯

required software. Maintaining project documentation throughout the software development lifestyle. Working with the team to implement industry best practice code, ensure vulnerabilities are patched and ensure good QA. Responsibilities Penetration testing, functional testing, regression testing and further testing based on DDM's internal testing policies. Project manages his/her own tasks using internal … software, overseen by CTO. Daily meetings to allocate tasks and benchmark progress with individual reporting available through internal software. Listening to feedback meetings, requirements meetings and testing sessions to determine technical requirements. Assessing non-functional requirement data sources and converting into useful feedback. Working with the team to collect logs, feedback, customer support etc and determine any support/ More ❯

modelling, and secure coding practices across agile and DevOps teams, ensuring alignment with regulatory requirements (FCA, GDPR, etc). Oversee the secure development lifecycle, from requirements and design to testing, deployment, and ongoing operation, ensuring risk mitigation at every stage. Lead, mentor, and develop a team of application and product security professionals, fostering a culture of continuous improvement and … accelerate digital transformation. Develop and maintain application security architecture, reference models, and automation in line with cloud-first and hybrid environments (AWS, Azure, etc). Commission and manage security testing (SAST, DAST, pen testing, Interactive testing, Mobile testing, bug bounties), triage vulnerabilities, and drive remediation efforts with development teams. Report to executive leadership and the board … across the wider business. Engage with external partners, vendors, and industry groups to benchmark best practice and represent the firm's interests. Lead the offensive security function looking after penetration testing, red/purple team exercises and bug bounty programme. About you Extensive leadership experience in application and/or product security, ideally within the wealth management, financial More ❯

modelling, and secure coding practices across agile and DevOps teams, ensuring alignment with regulatory requirements (FCA, GDPR, etc). Oversee the secure development lifecycle, from requirements and design to testing, deployment, and ongoing operation, ensuring risk mitigation at every stage. Lead, mentor, and develop a team of application and product security professionals, fostering a culture of continuous improvement and … accelerate digital transformation. Develop and maintain application security architecture, reference models, and automation in line with cloud-first and hybrid environments (AWS, Azure, etc). Commission and manage security testing (SAST, DAST, pen testing, Interactive testing, Mobile testing, bug bounties), triage vulnerabilities, and drive remediation efforts with development teams. Report to executive leadership and the board … across the wider business. Engage with external partners, vendors, and industry groups to benchmark best practice and represent the firm's interests. Lead the offensive security function looking after penetration testing, red/purple team exercises and bug bounty programme. About you Extensive leadership experience in application and/or product security, ideally within the wealth management, financial More ❯

ATT&CK Framework Desirable Certifications, Qualifications Experience: Computer Security Security Blue Team 1 or higher CompTIA Cyber Security Analyst SC-200 Microsoft Security Operations Analyst One of: CREST Registered Penetration Tester, CREST Certified Infrastructure Tester, Cyber Scheme Team Member (CSTM), Cyber Scheme Team Leader (CSTL), EC-Council Certified Security Analyst (ECSA): Penetration Testing practical, EC-Council Certified … Penetration Testing Professional (CPENT), Offensive Security Certified Professional (OSCP) Company benefits include: Discretionary 10% bonus Discretionary 2k annual training fund per employee Very competitive pension scheme Virtual GP Annual Eye Test More ❯

Azure Sentinel/Microsoft Defender/Endpoint Security/PowerShell/Python/Bash/Azure DevOps/Infrastructure as Code/CI/CD/Network Security/Penetration Testing/Vulnerability Management/ISO27001/Information Assurance/Computer Science/Cyber Security/Information Security/Security Compliance More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯