18 of 18 Permanent Penetration Testing Jobs in Gloucestershire

Role: Penetration Tester Type: Permanent Location: Cheltenham/Remote Clearance: SC/DV Are you an offensive security specialist who is excited about delivering the best service possible? Keen to work in a business where you stand to work alongside some very talented testers? CND are working with a … boutique Cyber Security consultancy who are focused on the Penetration Testing market. What makes them stand out? They are not interested in flashy marketing and would never be caught trying to pass off a Nessus scan as a Penetration Test. The business has been built on delivering … excellent testing and reports as well as ensuring that clients see the real benefits of their testing outputs. The company have an office in Cheltenham however you are welcome to work where is best for you. Key Responsibilities: • Work to deliver CHECK penetration testing services • Lean More ❯

measures. Work within Secureframe to maintain compliance records, ensuring a structured and organised approach to security audits. Ownership of the external security audits and penetration testing cycles, addressing findings and assisting in remediation. Assist in identifying and tracking security vulnerabilities across the platform, working with engineering teams to … help embed security considerations early in the development process. Assist in securing infrastructure and cloud environments, ensuring security best practices are followed. Help analyse penetration testing reports and support the implementation of fixes and improvements. Learn and apply security principles in IAM, least privilege access controls, and role … ISO 27001, SOC 2, or other security compliance frameworks. Familiarity with compliance automation tools such as Secureframe, Drata, or Vanta. Experience working with pen testing and bug bounties a plus. Basic understanding of security tools such as SIEM, IDS/IPS, and vulnerability management solutions. Experience or knowledge of More ❯

Job Description Role: Penetration Tester Type: Permanent Location: Cheltenham/Remote Clearance: SC/DV Are you an offensive security specialist who is excited about delivering the best service possible? Keen to work in a business where you stand to work alongside some very talented testers? CND are working … with a boutique Cyber Security consultancy who are focused on the Penetration Testing market. What makes them stand out? They are not interested in flashy marketing and would never be caught trying to pass off a Nessus scan as a Penetration Test. The business has been built … on delivering excellent testing and reports as well as ensuring that clients see the real benefits of their testing outputs. The company have an office in Cheltenham however you are welcome to work where is best for you. Key Responsibilities: • Work to deliver CHECK penetration testing More ❯

/604, Def Stan 05-series). Lead the creation and maintenance of security documentation (RMADS, Security Assurance Documents, Security Management Plans). Testing & Assurance Design and execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling …/5/31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138/139). Hands-on experience with security testing tools and techniques (SAST, DAST, penetration testing). Eligible for UK SC clearance; right to work in the UK. Why Join? You'll More ❯

HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. Knowledge of secure development practices, penetration testing, and vulnerability assessments. Ability to communicate security risks and strategies to technical and non-technical stakeholders. Experience in incident response and remediation. More ❯

/53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents, Security Management Plans). Conduct penetration testing, vulnerability assessments, and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001/2, ISO27005 … NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan 05-138/139). Proficiency in security testing tools, technologies, and techniques. Ability to analyze and mitigate security vulnerabilities effectively. Strong problem-solving, decision-making, and communication skills. Qualifications & Requirements: Degree in Cybersecurity, Computer More ❯

/53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents, Security Management Plans). Conduct penetration testing, vulnerability assessments, and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001/2, ISO27005 … NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan 05-138/139). Proficiency in security testing tools, technologies, and techniques. Ability to analyze and mitigate security vulnerabilities effectively. Strong problem-solving, decision-making, and communication skills. Qualifications & Requirements: Degree in Cybersecurity, Computer More ❯

where you stand to work alongside some very talented testers? CND are working with a boutique Cyber Security consultancy who are focused on the Penetration Testing market. What makes them stand out? They are not interested in flashy marketing and would never be caught trying to pass off … a Nessus scan as a Penetration Test. The business has been built on delivering excellent testing and reports as well as ensuring that clients see the real benefits of their testing outputs. The company have an office in Cheltenham however you are welcome to work where is … input as needed. Deliver quality reports to customers. Stay up to date with industry trends and new attack methods. Take a broad approach to testing, working on INF, APP, Mobile, AD, or Cloud tests. Currently holds a CHECK equivalency certification. Eligibility to hold or currently hold clearance. Experience working More ❯

In this role you will undertake: Network Security - Understanding of firewall configuration, intrusion detection/prevention systems (IDS/IPS), and secure network protocols. Penetration Testing & Vulnerability Assessment - Skills in identifying, simulating, and remediating vulnerabilities through tools (e.g., Nessus, Metasploit) and manual testing. Incident Response & Forensic Analysis - Ability … you to the next stage if you showcase the right aptitude for success. Complete online assessments and a first-stage interview - These assessments are testing your aptitude for learning. Show us your potential and then your personality in a telephone interview. Final competency-based interview - Demonstrate your collaborative skills More ❯

Hardware Microsoft Windows Operating Systems (Server 2012 to 2022 & Windows 7 to 11) Linux Operating Systems On-Premise Active Directory Networking - Cisco/Fortigate Penetration Testing & Vulnerability Management Applications Cloud based Web Proxy Anti-virus/Anti-malware tooling Disk/Data Encryption About You The right candidate More ❯

Hardware Microsoft Windows Operating Systems (Server 2012 to 2022 & Windows 7 to 11) Linux Operating Systems On-Premise Active Directory Networking - Cisco/Fortigate Penetration Testing & Vulnerability Management Applications Cloud based Web Proxy Anti-virus/Anti-malware tooling Disk/Data Encryption About You The right candidate More ❯

and help customers implement incident response plans, which outline steps to take in case of a security breach. Perform security assessments for customers, including penetration testing, to identify weaknesses in systems and networks and propose mitigation plans where required. Recommend, design and implement security tools and technologies such More ❯

party security providers. Prepare reports on security incidents and recommend improvements. Develop threat intelligence relevant to the business. Conduct threat hunting, vulnerability analysis, and penetration testing to identify risks. Continually assess security systems, suggesting appropriate tools and countermeasures. Prepare and maintain security and incident response documentation. Collaborate with More ❯

and able to produce a security documentation including; Security Architecture Documents, RMADS and SyOPs Advising on suitable methods of assessing cyber security e.g. Pen Testing Providing assurance on effective cyber security implementation Developing incident response plans to security breaches, and provide crisis management support to help respond to incidents More ❯

cyber, insider, physical and hybrid actors, using counterintelligence and HUMINT principles where relevant Evaluate security risk across full-spectrum domains, integrating inputs from technical testing, behavioural analysis, and environmental factors Develop and present comprehensive risk assessment reports, including clear recommendations for mitigation and investment Apply frameworks such as NIST … re experienced in one or more of: counterintelligence, human intelligence and security, physical security assessments, operational technology, supply chain security, military platforms assessments, or penetration testing, OSINT, Insider Risk, Security Culture and Behaviour Change. You're a confident communicator, able to build trusted relationships and influence senior stakeholders More ❯

and the ability to clearly identify key issues. Desirable: CISSP, CISM or other equivalent foundational security qualifications or experience. CEH, OSCP, GIAC or other penetration testing security qualifications or experience. SABSA, SANS or other technical architecture qualifications. SAFE, Scrum, or other Agile methodology experience. Data Protection, Risk, Legal More ❯

new domains Provide domain knowledge for technical analysis, experimental development and subsequent engineering Researchers undertaking vulnerability & technical research are expected to: Know which pen-testing and reverse engineering tools and methodologies are appropriate to a given problem Have experience of advanced vulnerability assessment techniques such as fuzzing and code More ❯

or Microsoft Azure) In-depth knowledge of modern security concepts, common attack vectors, malware, security analytics and threat intelligence. A good understanding of security testing and vulnerability management is important (including pen testing/ITHC, CVSS/CVE) Experience working with security standards such as ISO More ❯