1 to 25 of 54 Security Testing Jobs in the UK

Application Security Lead Entertainment UK Hybrid/Remote Job description This role works closely with development teams to verify our partners applications satisfy the defined security criteria, supporting the organization on the security design and conducting reviews of applications, while improving automation. Primary Responsibilities: Provide technical leadership and guidance on application security best practices, methodologies, and … technologies. The ideal candidate will serve as a trusted advisor to development teams, architects, and stakeholders across our clients organisation. Design and review security architectures for applications, ensuring the implementation of effective security controls and countermeasures. Conduct threat modelling exercises to identify potential security risks and vulnerabilities early in the development lifecycle. Conduct in-depth security assessments, code reviews, and penetration testing of applications to identify and mitigate security vulnerabilities. Utilise industry-standard tools and methodologies to assess the security posture of applications and provide actionable recommendations for remediation Essential At least three years experience in a similar senior Information Security position Customer-oriented person, with the ability to educate and More ❯

Senior Application Security Engineer Location: Hybrid working or homeworking with view to attend office occasionally Salary: £60,000 – £70,000 per annum Bonus: Discretionary bonus of up to 10% Are you passionate about securing modern applications and cloud environments? We’re looking for a Senior Application Security Engineer to join my client's growing team and play a … key role in shaping the security posture of our organisation. About the Role As a Senior Application Security Engineer, you’ll bring deep expertise in application security testing, cloud security, and secure development practices. You’ll work closely with IT, development, and project teams to embed security into every stage of the software development … lifecycle and drive a risk-based approach to vulnerability management. Key Responsibilities Lead application security initiatives across cloud-native and enterprise environments. Promote secure design principles, threat modelling, and best practices across teams. Own and evolve the technical vulnerability management programme. Implement and support security controls, particularly within Azure cloud environments. Evaluate and deploy best-in-class application More ❯

Senior Application Security Engineer Cambridgeshire Based - 1-2 days a week onsite We are looking for an experienced Senior Application Security Engineer to join our client's expanding Cyber Security team. This is an incredible opportunity to craft a world-class Application Security function , playing a critical role in embedding security within all stages of … the development lifecycle. What you'll be doing: Becoming a key contributor to the Cyber team by focusing on application security architecture and implementing a robust risk management programme. Collaborating closely with different teams to devise plans, perform threat modelling, adopt architecture best practices, drive secure development lifecycles, and manage risk remediation. Providing expertise in security best practices … and compliance while undertaking hands-on security testing. Identifying application security risks and supporting requirements for new projects and system developments. Representing the Cyber team during review sprints to ensure application security is prioritised before deployment. Partnering with architecture and development teams to review application design and code for security vulnerabilities. Establishing and promoting a threat More ❯

Application Security Specialist (DevOps) Hybrid – Cambridge, UK (1 day a week in office) We're looking for an experienced Application Security Specialist to join a growing cyber security team and play a key role in shaping a world-class application security programme. This role will give you the chance to work closely with engineering and development … teams, embedding security into the development lifecycle, driving automation, and influencing remediation plans that have real impact. What you'll be doing Guiding teams on security best practices, compliance, and secure coding. Collaborating with architects and developers to review designs and code for vulnerabilities. Embedding/improving threat modelling and secure development practices into the SDLC. Designing and … integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and reporting on application security metrics, KPIs, and emerging threats. Automating processes for vulnerability detection and integrating tools into the pipeline. Note: this position includes More ❯

implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you … identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team … in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role More ❯

Mobile Application Security Engineer Rate: £650 per day Inside IR35 Duration: 6 months Location: Bristol/Hybrid (onsite once a month) We have an exciting opportunity for a Mobile Application Security Engineer to join a leading organisation on a contract basis. You'll play a key role in strengthening the security of large-scale mobile applications, working … across both iOS and Android platforms. Partnering with engineering and cyber security teams, you'll embed and enhance mobile security throughout the development lifecycle shaping tooling strategy, driving automation and promoting a 'Secure by Design' culture. Key Responsibilities Design and implement automated mobile security testing and vulnerability scanning within the mobile SDLC. Define and deliver the … mobile app security tooling and technology strategy. Run proof of concepts for new tools and integrate them into CI/CD pipelines. Roll out, optimise and measure the effectiveness of mobile security tooling. Triage vulnerabilities, identify false positives and provide remediation and risk guidance. Build strong partnerships with engineering and security stakeholders. Implement and maintain a Mobile More ❯

people of all different backgrounds and identities to apply. We are committed to maintaining an inclusive, and supportive place for you do your very best work. A UK Government Security Check (SC) clearance is required for this role. If you dont hold SC clearance, we will support you to apply assuming you have lived and worked in the UK … a British Citizenship or Dual Citizenship. Due to project requirements, at least 12 months Central Government experience in the last 5 years is strongly preferred. As an Aker Lead Security Architect, you will be a recognised subject matter expert in security, risk management and compliance with demonstrable experience in highly regulated industries, specifically UK Government and/or … Defence. You will build effective working relationships with delivery team members and Aker customers and operate without supervision as a security lead across multiple projects and platforms, with extensive latitude for independent judgment to drive the required outcomes for Aker and its customers. You will: Lead client-specific security and assurance of highly complex, cloud-centric data and More ❯

Senior Security Consultant Penetration Testing (Web, API & Product Security) Location: Remote (UK) | Competitive Salary + Bonus + Training & Certs Join a CREST-accredited Cyber Security consultancy delivering high-quality penetration testing services across web, mobile, cloud and product environments for organisations in finance, healthcare, SaaS and critical infrastructure. They are looking for a Senior Penetration … Tester with strong commercial experience who is keen to advance their career into more Red Team/Offensive security engagements . Youll take a lead role in delivering assessments, improving testing approaches, and guiding junior team members, while gaining the opportunity to participate in red team activities as part of your growth. What youll do: Deliver Web Application … and API penetration tests , including complex and modern architectures. Lead assessments across infrastructure, cloud and product security , identifying and exploiting real-world risks. Produce high-quality reports and communicate findings clearly to both technical and non-technical stakeholders. Support offensive security tooling improvements and internal research initiatives. Mentor junior testers and play a key part in continuous improvement More ❯

Salford About the job Job summary The Integrated Corporate Services (ICS) is a new shared corporate service, launched in July 2023. It provides corporate services (HR, Finance, Digital, Commercial, Security and Estates) across the Department for Energy Security & Net Zero (DESNZ) and the Department for Science, Innovation & Technology (DSIT). Our team of just over 300 professionals will … of our customers. As a Senior Test Engineer, you will play a critical role in ensuring the quality, reliability, and performance of services within ICS Digital. You will lead testing initiatives, define quality standards, and collaborate closely with developers, product owners, and stakeholders to deliver robust, secure, and user-focused solutions for the Department for Energy Security & Net … improvement across our development lifecycle. Our team operates in the open, values transparency, and embraces agile ways of working. You will work with a diverse technology stack and modern testing frameworks, leveraging cloud platforms such as Azure and AWS, and supporting applications built in C#, Python, and TypeScript. This role offers the opportunity to apply and expand your expertise More ❯

My global service provider client is expanding their solutions team and is hiring a DevSecOps Director to lead secure software development, DevSecOps, and security testing. Drive high-impact initiatives, embed security across the organisation, shape secure solutions, mentor teams, and ensure resilience against evolving threats. About the job: Lead the secure software development lifecycle, security testing, and DevSecOps practices across strategic and operational levels. You will ensure security is embedded from design through deployment, oversee secure coding and testing, and drive operational maturity and resilience against evolving threats What you'll do: Define and govern secure architecture standards, aligned with NIST, OWASP, ISO 27001, and enterprise policies Lead DevSecOps integration, embedding automated security testing (SAST, DAST, SCA, container security) into CI/CD pipelines Oversee large-scale secure development programs, ensuring SLA/KPI compliance and high-quality service delivery Support pre-sales & business development, articulating security value propositions, contributing to SOWs, and advising clients on secure solutions Manage budgets, resource planning, and profitability, while identifying operational efficiencies Mentor More ❯

We're seeking a Quality Engineer with hands-on experience in C#, Visual Studio, and the Microsoft tech stack. If you have experience testing both frontend and backend systems and enjoy driving automation and quality in a fast-paced, collaborative environment, wed love to hear from you! We are Preservica, and our active digital preservation solutions are at the … Gherkin syntax and ReqNRoll. Participate in Agile ceremonies, story reviews, and provide early feedback on testability and quality. Expand test coverage across regression and feature test suites. Perform exploratory testing during feature development. Conduct code reviews for test scripts and contribute to internal tooling. Support performance testing using Azure Load Testing, JMeter, or Locust.. Contribute to backend …/API testing and support security testing initiatives. What We Offer We are an open progressive employer that values our staff as the heart of our business. As well as a competitive salary and benefits package, we offer tangible career development opportunities and dedicated training time to support professional growth. Our benefits package includes Life Insurance, Private More ❯

gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. Join Our Team as a Cyber Security Test Engineer! Are you passionate about automotive technology and cybersecurity? Do you want to play a pivotal role in ensuring the safety and security of cutting-edge vehicle … systems? If so, we have an exciting opportunity for you! Bentley Motors, the leader in the prestigious automotive industry, is seeking a Cyber Security Test Engineer to join their dynamic team on a fixed-term contract for 4 months. This role offers a hybrid working model based out of our Crewe campus. If you're ready to make a … difference, read on! Role: Cyber Security Test Engineer Duration: 4 Months (extension options) Location: Crewe (2 days in the office) Rate: £40.46 per hour (outside IR35) About the role: As a Cyber Security Test Engineer, you will report to the Functional Manager - Product Security Test & Incident Management. Your primary responsibility will be preparing and executing cybersecurity testing More ❯

Job Description - Principal Engineer - Cyber Security () Principal Engineer - Cyber Security - Job Title: Principal Engineer - Cyber Security Location: Frimley, Bristol, Weymouth, Portsmouth, Coventry. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Up to £61,500 depending on skills and experience What you'll … be doing: Define and implement risk-based cybersecurity requirements for systems and subsystems, providing technical expertise and guidance across all aspects of cyber security and resilience Conduct in-depth cybersecurity analysis , including development of threat taxonomies, security architectures, security baselines, and risk mitigation strategies Develop and execute cybersecurity test plans and schedules, carrying out both informal and … formal security testing activities Support engineering lifecycle reviews and design assurance processes to ensure security is embedded throughout system development Produce and maintain key security artefacts, including risk registers, security assurance cases, plans, and schedules, while contributing security input to broader engineering documentation Your skills and experiences: Degree in a relevant STEM subject or More ❯

Network Security Engineer Network Security/Penetration Testing/CREST/CSTL/API Testing/Config Reviews/Infrastructure/Outside IR35/West London We’re seeking an experienced Network Security Engineer to support a major multi-phase security testing project. You’ll conduct penetration tests, configuration reviews, and infrastructure assessments … contributing to a high-profile programme of work extending into next year. Required Strong background in network and infrastructure security. Experience performing penetration testing, configuration reviews, and API testing. Knowledge of “classic” CHECK-style testing methodologies. CREST, CSTL or CTL certification (Team Member or Team Leader level). Ability to deliver high-quality reports and communicate technical findings … clearly. Hands-on experience across infrastructure, networking, and external testing. Desirable Experience working within CHECK or other accredited testing schemes. Strong understanding of secure network architecture and hardening practices. Previous consultancy or project-based testing experience. Contract Details Outside IR35 West London (on-site presence required for majority of testing) 0-hours contract – project-based work, phase More ❯

Network Security Engineer Network Security/Penetration Testing/CREST/CSTL/API Testing/Config Reviews/Infrastructure/Outside IR35/West London We’re seeking an experienced Network Security Engineer to support a major multi-phase security testing project. You’ll conduct penetration tests, configuration reviews, and infrastructure assessments … contributing to a high-profile programme of work extending into next year. Required Strong background in network and infrastructure security. Experience performing penetration testing, configuration reviews, and API testing. Knowledge of “classic” CHECK-style testing methodologies. CREST, CSTL or CTL certification (Team Member or Team Leader level). Ability to deliver high-quality reports and communicate technical findings … clearly. Hands-on experience across infrastructure, networking, and external testing. Desirable Experience working within CHECK or other accredited testing schemes. Strong understanding of secure network architecture and hardening practices. Previous consultancy or project-based testing experience. Contract Details Outside IR35 West London (on-site presence required for majority of testing) 0-hours contract – project-based work, phase More ❯

team. Working in an Agile/Kanban environment, you will collaborate closely with developers and product owners, write and review automated test cases, and help drive best practices in testing and quality assurance. You'll also play a role in evaluating and implementing tools such as Playwright as the team transitions from Selenium. This is a hybrid role, primarily … or Selenium Write clear, maintainable test scripts Collaborate in Agile ceremonies, providing early feedback on testability and quality concerns Expand and maintain regression and feature test suites Conduct exploratory testing during feature development Review test automation code and contribute to internal test tools and utilities Support performance testing efforts using tools such as Azure Load Testing, JMeter … or Locust Contribute to backend/API testing and assist with security testing initiatives Skills and experience required: 2+ years of experience in software testing with a focus on test automation Proficiency in C# and automation tools like Selenium or Playwright Experience working within Agile/Kanban teams and a strong understanding of shift-left testing More ❯

team. Working in an Agile/Kanban environment, you will collaborate closely with developers and product owners, write and review automated test cases, and help drive best practices in testing and quality assurance. You'll also play a role in evaluating and implementing tools such as Playwright as the team transitions from Selenium. This is a hybrid role, primarily … test scripts using Gherkin syntax and ReqNRoll Collaborate in Agile ceremonies, providing early feedback on testability and quality concerns Expand and maintain regression and feature test suites Conduct exploratory testing during feature development Review test automation code and contribute to internal test tools and utilities Support performance testing efforts using tools such as Azure Load Testing, JMeter … or Locust Contribute to backend/API testing and assist with security testing initiatives Skills and experience required: 2+ years of experience in software testing with a focus on test automation Proficiency in C# and automation tools like Selenium or Playwright Experience working within Agile/Kanban teams and a strong understanding of shift-left testing More ❯

Job Title: Senior Application Security EngineerSalary: £70,000Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape the future of secure digital transformation across a wide range … part of a business that values expertise, agility, and doing the right thing - where everyone has the opportunity to make a genuine impact. About the Role The Senior Application Security Engineer will play a key role in protecting the organisation's infrastructure, cloud platforms, and applications. Working within a highly technical and collaborative cyber team - supported by a …/7 external SOC - you'll research, test, and implement next-generation security solutions to safeguard data and systems. This role offers the chance to lead on application and cloud security initiatives, influence secure design standards, and mentor colleagues in best practices. Key Responsibilities Lead application and cloud security initiatives, ensuring systems and software are secure by More ❯

Job Title: Senior Application Security Engineer Salary: £70,000 Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape the future of secure digital transformation across a … part of a business that values expertise, agility, and doing the right thing - where everyone has the opportunity to make a genuine impact. About the Role The Senior Application Security Engineer will play a key role in protecting the organisation's infrastructure, cloud platforms, and applications. Working within a highly technical and collaborative cyber team - supported by a …/7 external SOC - you'll research, test, and implement next-generation security solutions to safeguard data and systems. This role offers the chance to lead on application and cloud security initiatives, influence secure design standards, and mentor colleagues in best practices. Key Responsibilities Lead application and cloud security initiatives, ensuring systems and software are secure by More ❯

Job Title: Senior Application Security Engineer Salary: £70,000 Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape the future of secure digital transformation across a … part of a business that values expertise, agility, and doing the right thing - where everyone has the opportunity to make a genuine impact. About the Role The Senior Application Security Engineer will play a key role in protecting the organisation's infrastructure, cloud platforms, and applications. Working within a highly technical and collaborative cyber team - supported by a …/7 external SOC - you'll research, test, and implement next-generation security solutions to safeguard data and systems. This role offers the chance to lead on application and cloud security initiatives, influence secure design standards, and mentor colleagues in best practices. Key Responsibilities Lead application and cloud security initiatives, ensuring systems and software are secure by More ❯

Role/Job Title: DevSecOps Pentester Work Location: London (2 - 3days) The Role Conducts security assessments and penetration tests across CI/CD pipelines, cloud infrastructure, and application environments. Integrates automated security tools and practices within DevOps workflows to ensure continuous security validation. Identifies and exploits vulnerabilities in code, containers, APIs, and infrastructure-as-code before they … reach production. Collaborates with development, security, and operations teams to implement remediation and improve security posture. Stays current with threat landscapes, tools, and methodologies to proactively defend against evolving cyber risks in general and more specific to an airline industry, transportation sector. Your Responsibilities Integrate security practices and tools into the DevOps pipeline to ensure security is a continuous process. Perform IaC Automation and ServiceNow integrations to automate AWS Service catalogues. Contribute to security tooling, checklists, and automation efforts. Identify potential security threats and vulnerabilities during the design phase identify flaws in CI/CD, IaC, and cloud/containerized environments. Perform manual and automated security testing on web apps, APIs More ❯

This contract can be Outside IR35 Hybrid working - 2-3 days pw on site Job Title: Cyber Security Test Engineer About the Role We are seeking a Cyber Security Test Engineer to join our team on a full-time basis, working in a hybrid model from our Crewe campus . In this role, you will report to the … Functional Manager - Product Security Test & Incident Management and will be responsible for preparing and executing cybersecurity testing for automotive products in compliance with UNECE R . 155 and China GB 44495 regulations. This role plays a critical part in ensuring our vehicle systems are secure and meet regulatory requirements across global markets. Responsibilities include: Manage and maintain test … properties to ensure readiness for cybersecurity testing, including flashing, coding, debugging, analysis, and issue resolution on both test benches and vehicles. Develop cybersecurity test cases aligned with regulatory requirements (e.g., UNECE R155, GB 44495). Execute cybersecurity test cases and generate comprehensive test reports. Support cybersecurity homologation and compliance testing activities for global regions. Coordinate and plan various More ❯

and software management, anchored in a continuous innovation culture What you’ll be doing: As a DevOps Engineer at Ripjar you will be responsible for ensuring the reliability and security of the infrastructure that underpins our development and operational services. You will play an active role in supporting and continuously improving our core infrastructure offering, providing a solid foundation … and applications hosted on Linux-based systems Design, deploy and maintain IP networks. Create robust automated solutions to allow development teams to self-serve routine infrastructure requests. Improve code security by integrating security testing tools into build and deployment pipelines. Implement effective monitoring of the reliability and security of applications and infrastructure services. Requirements: The successful … administering IP networking in a corporate environment. Experience of automating tasks using languages and tools such as Bash, Python, JavaScript, and GitHub Actions Knowledge of how to effectively use security testing and monitoring tooling, e.g. SAST and SIEM products. Candidates with the following background will be of particular interest: Experience contributing to incident response across a complex microservice More ❯

Head of Security Operations Department: IT Operations Employment Type: Permanent - Full Time Location: GB - London Reporting To: Kirsty Kelly Description As Head of Security Operations, you will be responsible for leading the day-to-day operational cybersecurity functions for the Group. You will ensure robust, efficient and globally coordinated security operations that protect the organisation's people … systems, and data. This includes direct ownership of security controls, security testing, vendor management, vulnerability and threat management, and incident response. You will work daily with the Group CISO to support consistent, high-assurance security practices across all regions, in-line with regional regulation and to support the management of cyber incidents. It is essential the … individual who will fill this role has prior management experience, has supported building security teams previously and has knowledge around their responsibility at this level to report incidents and security concerns within regulatory timelines and standards. About the role Within this role, you will have been supporting the Group CISO by managing the security team and programmes More ❯

Contract Opportunity: Cyber Security Test Engineer - Automotive | Hybrid Cyber Security Test Engineer on a contract basis to support the testing and validation of cybersecurity features in cutting-edge automotive products. This role is pivotal in ensuring compliance with global regulations including UNECE R.155 and China GB 44495, helping our client deliver secure and compliant vehicles to markets … worldwide. You’ll report to the Functional Manager - Product Security Test & Incident Management, and work across test benches and vehicles to execute cybersecurity testing, support homologation, and contribute to the development lifecycle of secure automotive systems. Whats on Offer: Attractive hourly rate (outside IR35) Current end date 31/01/2026 - possibility of extensions (Project is until … week Hybrid - 2 days on site per week (flexible on days) Possible international travel, driving licence essential Key Responsibilities: Prepare and maintain test environments (benches and vehicles) for cybersecurity testing Develop and execute test cases aligned with UNECE R.155, GB 44495, and other standards Produce detailed test reports and support global compliance testing Coordinate product security testing More ❯