11 of 11 Contract Penetration Testing Jobs

Simulation (BAS) platforms to build and validate threat scenarios. Strong understanding of adversary tactics, techniques, and procedures (TTPs), MITRE ATT&CK framework, and threat modeling. Hands-on experience with penetration testing tools such as Metasploit Framework, Burp Suite, Kali Linux, and Pentera. Experience producing threat reports and briefings. Certifications Required or Preferred: Years of relevant experience: 8+ years … of experience in threat intelligence, cybersecurity operations, or penetration testing. Proven ability to collaborate across technical teams, including Red/Blue teams and SO Industry Experience Required or Preferred: Key Soft Skills (e.g Communication, leadership, stakeholder management): Analytical and detail-oriented with a strong sense of curiosity. Collaborative and team-focused, with a proactive approach to cross-functional engagement. … and analyze the global threat landscape to identify emerging risks, adversary tactics, and trends relevant to the organizations business and technology environment. Collaborate with Red Team, Blue Team, and Penetration Testing teams to integrate threat intelligence into testing scenarios using Breach & Attack Simulation (BAS) platforms and enhance defensive strategies. Act as a liaison between threat intelligence and More ❯

an advanced cyber defence function in London. This is a fantastic opportunity to shape threat intelligence, work alongside Red/Blue Teams, and operationalise intelligence using the latest cybersecurity, penetration testing, and Breach & Attack Simulation (BAS) platforms. Key Responsibilities: Monitor and analyse global cyber threat landscapes, identifying threats, adversary tactics, and emerging risks Collaborate with Red Team, Blue … Team, and Penetration Testing specialists to integrate intelligence into Breach & Attack Simulation (BAS) scenarios Act as a point of contact between threat intelligence, Red/Blue, and SOC teams to align threat modelling and adversary simulation Support threat hunting activities and provide tactical, contextual intelligence to stakeholders Model and assess threat actors, including motivations, capabilities, attack vectors, and … threat briefings, risk assessments, and operational recommendations Participate in incident response, providing context, attributions, and support as required Required Skills & Experience: Extensive experience in threat intelligence, cybersecurity operations, or penetration testing Proven ability to work collaboratively with Red/Blue teams and Security Operations Centres (SOC) Hands-on experience with TIPs (Threat Intelligence Platforms), SIEM tools, and threat More ❯

SP800 series, CSF). Conduct risk assessments and vulnerability management activities. Maintain robust security controls across enterprise assets, software, networks, and applications. Support incident response and recovery processes, including penetration testing and audit log management. Deliver training and awareness programs to enhance the organizations security posture. Collaborate with internal and external stakeholders to maintain compliance and manage third … analytical mindset with strong problem-solving skills. Technical Skills: Comprehensive knowledge of security controls, including: Data Protection, Account Management, and Access Control Management. Continuous Vulnerability Management and Incident Response. Penetration Testing and Security Awareness Training. Secure Configuration and Network Monitoring. More ❯

SP800 series, CSF). Conduct risk assessments and vulnerability management activities. Maintain robust security controls across enterprise assets, software, networks, and applications. Support incident response and recovery processes, including penetration testing and audit log management. Deliver training and awareness programs to enhance the organizations security posture. Collaborate with internal and external stakeholders to maintain compliance and manage third … analytical mindset with strong problem-solving skills. Technical Skills: Comprehensive knowledge of security controls, including: Data Protection, Account Management, and Access Control Management. Continuous Vulnerability Management and Incident Response. Penetration Testing and Security Awareness Training. Secure Configuration and Network Monitoring. More ❯

the role: As a Cyber Security Test Engineer, you will report to the Functional Manager - Product Security Test & Incident Management. Your primary responsibility will be preparing and executing cybersecurity testing for automotive products in compliance with UNECE R.155 and China GB 44495 regulations. Your contributions will be vital in ensuring our vehicle systems meet regulatory requirements across global markets. … Key Responsibilities: Manage Test Properties : Ensure readiness for cybersecurity testing, including flashing, coding, debugging, analysis, and issue resolution on test benches and vehicles. Develop Test Cases : Create cybersecurity test cases that align with regulatory requirements (e.g., UNECE R155, GB 44495). Execute Tests : Carry out cybersecurity test cases and generate comprehensive reports. Support Compliance Testing : Assist in cybersecurity … homologation and compliance testing activities for global regions. Coordinate Testing : Plan and oversee various levels of product security testing throughout the development lifecycle. About You: We're looking for a delivery-focused and results-driven individual with a passion for cybersecurity in the automotive sector. The ideal candidate will have hands-on experience in product security testing More ❯

from our Crewe campus . In this role, you will report to the Functional Manager - Product Security Test & Incident Management and will be responsible for preparing and executing cybersecurity testing for automotive products in compliance with UNECE R . 155 and China GB 44495 regulations. This role plays a critical part in ensuring our vehicle systems are secure and … meet regulatory requirements across global markets. Responsibilities include: Manage and maintain test properties to ensure readiness for cybersecurity testing, including flashing, coding, debugging, analysis, and issue resolution on both test benches and vehicles. Develop cybersecurity test cases aligned with regulatory requirements (e.g., UNECE R155, GB 44495). Execute cybersecurity test cases and generate comprehensive test reports. Support cybersecurity homologation … and compliance testing activities for global regions. Coordinate and plan various levels of product security testing throughout the development lifecycle. About the Person The successful candidate will be a delivery-focused and results-driven cybersecurity test engineer , ideally with hands-on experience in product security testing within the automotive industry . They should possess strong technical skills More ❯

implementation of Information Security Policies, Standards, processes and guidance. . The security of Digital infrastructure by proactively analysing security threats/challenges/risks to the environment, including conducting penetration testing and compliance reviews monitoring of Information Security and information management to ensure compliance including reviewing and monitoring system and network logs for malicious activity or unacceptable use. More ❯

other security tools, but experience with other cyber tools would also suffice. Participating in the change management process to ensure proposed changes are reviewed for security risk. Contributing to penetration testing planning, coordination and tracking of remediation. Maintaining risk logs and status dashboards for security findings and control effectiveness. Supporting reviews of cloud and on-premises systems to More ❯

team Our team isaccountable for security within the mobile channel. Weprovide a suite of mobile security components,that provides an all-round security posture in mobile appsincluding associated services (penetration testing, obfuscation, consultancy etc.). Our mission is tobuild a scalable, adaptable, and proactive approach to securing customers mobile apps, enabling mobile engineers across the bank to operate More ❯

approach, scope, dependencies, timelines, and risk management. Define detailed cutover plans covering technical, functional, and business activities. Ensure alignment with the key program milestones (PB1, PB2, SIT, FVT, PCT, Penetration Testing, Regression, Dress Rehearsal, and Go-Live). The skills required in order to be successful in the position: Proven experience as a Cutover/Implementation Manager on … large-scale ERP/HCM programs, ideally Oracle HCM Cloud with Oracle EBS coexistence Strong understanding of HR and Payroll business processes, payroll parallel testing Hands-on experience overseeing data migration, integrations (OIC), and environment management in Oracle projects. Demonstrated ability to manage complex dependencies between Cloud and on-premise systems. Knowledge of release and environment management disciplines in More ❯

Role/Job Title: DevSecOps Pentester Work Location: London (2 - 3days) The Role Conducts security assessments and penetration tests across CI/CD pipelines, cloud infrastructure, and application environments. Integrates automated security tools and practices within DevOps workflows to ensure continuous security validation. Identifies and exploits vulnerabilities in code, containers, APIs, and infrastructure-as-code before they reach production. … automation efforts. Identify potential security threats and vulnerabilities during the design phase identify flaws in CI/CD, IaC, and cloud/containerized environments. Perform manual and automated security testing on web apps, APIs, pipelines. Participate in agile ceremonies (sprint planning, threat modeling, grooming). Create detailed reports, providing actionable advice to clients on how to address the identified … automating security checks within the CI/CD pipeline using tools like Jenkins, GitLab, and Ansible is vital. Knowledge of secure coding practices and common developer pitfalls. Scripting for testing/automation (Python, Bash, Go). Experience with cloud-native architectures (Docker, Kubernetes, IaC). Knowledge of securing cloud platforms (AWS, Azure, GCP) and understanding cloud security best practices. More ❯