Kingston Upon Thames, Surrey, United Kingdom Hybrid / WFH Options
Unilever
Exploit Development & Vulnerability Research : Ability to identify and exploit zero-day and known vulnerabilities, and develop custom proof-of-concept exploits. Tool Proficiency : Offensive tools: Cobalt Strike, Metasploit, BurpSuite, Nmap, BloodHound, Covenant, Sliver Scripting: Python, PowerShell, Bash Automation: CI/CD integration for security testing, custom tooling for red team automation Detection Engineering Collaboration : Ability … in offensive security and team leadership. - Deep hands-on experience with red/purple teaming, adversary emulation, and vulnerability exploitation. - Proficiency with tools such as Cobalt Strike, Metasploit, BurpSuite, BloodHound, and custom scripting. - Strong understanding of MITRE ATT&CK, cyber kill chain, and threat-informed defense. - Experience integrating offensive security into CI/CD pipelines More ❯
research papers and articles. Skills/Must have: Strong knowledge of OWASP methodologies and offensive testing across black/grey/white-box approaches. Proficiency in tools like BurpSuite, Kali, Nmap, Nessus, Qualys, Metasploit. Familiarity with cloud platform security testing (AWS, Azure, GCP). Understanding of mobile security (Android & iOS), networking protocols, and the OSI More ❯
Java, JavaScript, Go, or C#). Experience with cloud-native security (AWS, Azure, GCP) and securing containerized environments (Docker, Kubernetes). Proficiency in security testing tools such as BurpSuite, Endor, Semgrep, etc. Strong background in network security, including firewalls, IDS/IPS, VPNs, and secure network design. Hands-on experience with CI/CD security More ❯
building or maturing security culture initiatives, including awareness programs, gamified training, or executive engagement. Experience with security testing tools and frameworks (e.g., MITRE ATT&CK, Cobalt Strike, Metasploit, BurpSuite, or similar). About the job The UK Security Operations (SecOps) team in Google Public Sector delivers, operates and secures private cloud services. We aim to More ❯
Strong programming skills for exploit development and security automation. Expertise in web application and API security, including cloud-native architectures. Technical Expertise Proficient with penetration testing tools (e.g., BurpSuite, OWASP ZAP, custom scripts). Skilled in SAST, DAST, and SCA tools. Strong understanding of application-layer attack techniques and exploitation. Experience with supply chain security More ❯
Nessus Palo Alto Firewalls, InTune, Entra ID, Active Directory Desirable: Imperva WAF, Menlo Security, Cisco Secure Access/Umbrella, KnowBe4, AppCheck Ivanti or Automox patching Kali Linux, Metasploit, NMAP, BurpSuite Candidate Profile Professional certifications such as CISM, MS SC100/200/900, OSCP are advantageous Background in financial services, SOC environments, or penetration testing preferred Strong interpersonal and communication More ❯
Nessus Palo Alto Firewalls, InTune, Entra ID, Active Directory Desirable: Imperva WAF, Menlo Security, Cisco Secure Access/Umbrella, KnowBe4, AppCheck Ivanti or Automox patching Kali Linux, Metasploit, NMAP, BurpSuite Candidate Profile Professional certifications such as CISM, MS SC100/200/900, OSCP are advantageous Background in financial services, SOC environments, or penetration testing preferred Strong interpersonal and communication More ❯
Central London, London, United Kingdom Hybrid / WFH Options
Marlin Selection
Gateway Menlo CASB Cisco Secure Access Cisco Umbrella Cisco ASA KnowBe4 Digicert Certificates and Microsoft Certificate Services Ivanti or Automox patching AppCheck or Tenable WAS Kali Linux (NMAP, Metasploit, BurpSuite, John etc) Desired Education: CISM, MS SC100, 200 and 900, OSCP or other penetration testing qualifications. Industry: Financial services, SOC, Pentesting is desirable Personal Skills: Excellent inter-personal, written and More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
4Square Recruitment Ltd
procedures ISO 27001 are robustly adhered to. Essential Skills & Experience 3 + years’ experience working as a Penetration Tester OSCP Certified Proficiency in penetration testing tools such as BurpSuite, Nessus etc. Good interpersonal skills. Problem solver. Experience of technical report writing. Has the ability to deal with technical queries from clients and provide the appropriate More ❯
with database testing and SQL query language. Experience testing AWS services like Lambda, API Gateway, DynamoDB, and S3. Understanding of security testing concepts and tools (e.g., OWASP ZAP, BurpSuite). Knowledge of usability testing and user experience (UX) principles. Start-up experience Attributes: Effective collaboration skills, able to work with cross-functional teams and stakeholders. More ❯
continuous delivery (CI/CD) pipelines. Solid expertise in performance & chaos engineering (e.g., Neoload, JMeter, LoadRunner, Gremlin, Chaos Monkey or equivalent) and security testing tools (e.g., OcWASP ZAP, BurpSuite). Experience integrating performance and security testing into DevSeOps workflows to ensure optimal system performance and security compliance. Experience in embedding QA practices into Agile development More ❯
issues, recommending recommendations and implementing fixes for security vulnerabilities (CVE's and OWASP Top 25 issues) Significant PLUS : Strong understanding of certificates, encryption and Security Tools such as Metasploit, BurpSuite, Nessus, ZAP, Qualys, Blackduck etc. Experience working in an AGILE environment and working with a geographically distributed team Roadmap for Success First 90 Days: Onboard and integrate into the team More ❯
City Of Westminster, London, United Kingdom Hybrid / WFH Options
Ex-Mill Recruitment Ltd
and mitigation strategies You Should Have: • Years in cybersecurity with a focus on Android • Strong understanding of Android architecture, AOSP, and app sandboxing • Experience with tools like Frida, BurpSuite, jadx, MobSF, and Android Debug Bridge (ADB) • Knowledge of malware analysis and mobile threat defense • Familiarity with OWASP Mobile Top 10 • (Bonus) Experience with securing custom More ❯
auditing infrastructure components and configurations on virtualization platforms, Windows, and Linux. Working experience with network infrastructure components such as IPS, SIEM, WAFS, load balancers, proxies, and firewall management systems. Burpsuite and DevSecOps Solid understanding of incident management and forensics for security-related issues. Excellent documentation and communication skills, with the ability to communicate effectively with technical colleagues. Qualifications and Training More ❯
