4 of 4 Permanent Penetration Testing Jobs in the East of England

application landscape. Key Responsibilities: Conduct security risk diagnostics on enterprise applications to identify vulnerabilities, weaknesses, and compliance gaps. Perform comprehensive vulnerability assessments and penetration testing to evaluate application-level security posture. Develop detailed risk reports and vulnerability findings, including risk impact and likelihood, and deliver to the CISO. … internal or external reviews. Apply industry-recognized standards and frameworks such as NIST, ISO 27001, CIS Controls, in assessments and recommendations. Leverage past penetration testing, vulnerability management, and incident response experience to identify and contextualize threats effectively. Partner with and provide direct insights to CISOs and senior security ...

collaborating with engineers to embed security into development workflows rather than treating it as an afterthought. You'll be hands-on with security testing across a range of environments, running Dynamic Application Security Testing (DAST) against live applications, focusing on issues such as cross-site scripting, SQL injection … broken access control. You'll also use Interactive Application Security Testing (IAST) tools for runtime analysis, including tools such as Burp Suite, OWASP ZAP and Frida, alongside Static Application Security Testing (SAST) and software composition analysis to assess source code, binaries, and third-party dependencies. Location/ ...

regulatory, information governance, and cybersecurity frameworks including DSPT, Cyber Essentials, Cyber Essentials Plus and ISO27001. Oversee risk management, vulnerability management, audit responses, cyber assessments, penetration testing, third-party risk management, and business continuity activities. Oversee end-to-end IT service delivery, ensuring efficient 1st to 3rd line support ...

applications. Performing installs, patches, upgrades, daily maintenance and routine PC and server health checks. Monitoring systems to minimise downtime. Backups & Data Security Supporting and testing regular backups including AvePoint M365 and Hornet systems, and escalating failures early. Reviewing cyber-security alerts, ensuring device compliance, checking scans, and escalating where … assignments and troubleshooting mobiles/tablets. Additional areas you'll gain exposure to Security tools including Sophos Central, MDR/NDR and firewalls. MFA, penetration testing and phishing-awareness tools. Working on team projects and improvement initiatives. Website provider liaison, disaster recovery planning and process documentation. Delivering user ...