6 of 6 Permanent Penetration Testing Jobs in the City of London

Penetration Testing Team Lead Overview A leading global investment bank is seeking a skilled Penetration Testing Team Lead to join their London-based Technology team. This is a senior-level role focused on driving penetration testing, red team operations, and cyber resilience. This is an excellent opportunity to join an investment banking powerhouse. Role … and Responsibilities Lead red team and penetration testing activities across the organisation. Plan and execute network, application, and social engineering assessments. Collaborate with SOC and vendors on purple team exercises. Identify and report on security risks, supporting remediation efforts. Manage red team tooling and test platforms. Work with tech teams to improve cyber defences and detection capabilities. Deliver … clear, executive-level reporting from technical findings. Stay ahead of evolving cyber threats and attack methods. Skills and Experience 3+ years in penetration testing or red team operations. Strong understanding of APT tactics, evasion techniques, and system architecture. Experience with red/purple team tools and automated testing platforms. Solid grasp of blue team strategies, SIEM tools More ❯

Penetration Testing Team Lead Technology Banking AVP Level Hybrid (London (Moorgate) 3 days per week) Salary & Package TBC Opportunity for a skilled Cyber Security Professional with penetration testing and red team expertise to join a global financial services organisation. This is a hands-on role where you'll simulate advanced cyber attacks, test defences, and influence … enterprise-level security strategy. Key Responsibilities Lead red team operations , penetration testing, and ethical hacking engagements Plan and deliver cyber attack simulations, vulnerability assessments, and social engineering tests Work with SOC teams on purple team exercises to enhance detection and response Produce executive reporting on cyber threats, risks, and remediation progress Collaborate with security and infrastructure teams to … strengthen overall cyber resilience Skills & Experience 3+ years in penetration testing/ethical hacking/red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights More ❯

SIEM query languages (KQL, SPL, AQL), and automation with Python/PowerShell. Deep understanding of incident response, threat detection, and frameworks (MITRE, NIST, CIS). Knowledge of vulnerability scanning, penetration testing, and network traffic analysis. Familiarity with ITIL processes (Incident, Problem, Change). Excellent stakeholder communication, with the ability to mentor and lead from a technical perspective. Desirable More ❯

AWS security controls, policies, and automation - Role-based and attribute-based access controls - Cryptographic protocols and secure key lifecycle management - Securing microservices, APIs, and DevSecOps best practices Skilled in penetration testing and hands-on coding with JavaScript, Java, or Python Strong understanding of vulnerability scanning, remediation, and vendor management Collaborative mindset with the ability to partner across engineering More ❯

Senior Security Engineer you will implement and maintain robust security systems and protocols across the company's IT infrastructure, conducting risk assessments and vulnerability scans, mitigating vulnerabilities identified in penetration testing and implementing preventative measures to protect against cyber threats with a focus on WAF, IDS, IPS, Windows Security and Palo Alto firewalls. You also manage the 3rd More ❯

environments, driving maturity and constant improvements to support the constantly changing threat landscape and define and monitor KPIs regarding detection, response and containment. You'll also manage 3rd party Penetration Testing and manage key security controls, MSSPs and tolling providers. Location/WFH: There's a hybrid work from home model with three days a week in the More ❯