1 to 25 of 58 Permanent Security Testing Jobs in London

London, United Kingdom Posted on 24/02/2025 Job Description: Security Testing Engineer Location: Remote with occasional travel as required Employment Type: Permanent About the Role Scrumconnect Consulting is looking for a Security Testing Engineer to ensure the security, resilience, and compliance of … GOV.UK digital services . This role involves identifying vulnerabilities, mitigating security risks, and ensuring adherence to government security policies and DDAT frameworks . You will work closely with developers, security architects, and business stakeholders to embed security testing into Agile development workflows and DevSecOps pipelines. … As a Security Testing Engineer , you will conduct static and dynamic security assessments, penetration testing, and vulnerability analysis , ensuring that applications meet the highest security standards. Key Responsibilities 1. Security Test Planning & Execution Develop, implement, and execute comprehensive security test plans for GOV.UK More ❯

Security Testing Consultant (Pen Tester) Location: London SE1 Salary: £45,000 - £60,000 depending on relevant experience Hours: Full-time, Monday to Friday Work Location: Office-based during probation, then hybrid (3 days office/2 days WFH) Full time/Permanent Remarkable Jobs are recruiting on behalf … of a dynamic and growing cybersecurity organisation. We are seeking a Security Testing Consultant (Pen Tester) to join their expert team in London SE1. This is a fantastic opportunity for an experienced professional to take on a varied, high-impact role conducting in-depth security assessments across … multiple platforms. Security Testing Consultant (Pen Tester) Role: As a Security Testing Consultant (Pen Tester) , you will play a vital role in identifying and mitigating vulnerabilities in client systems including applications, infrastructure, cloud platforms, APIs, and mobile technologies. You'll be part of a collaborative team More ❯

vulnerability assessments across a diverse portfolio of applications. This is a hands-on, technical role where you'll actively identify, exploit, and help remediate security weaknesses in web, mobile, and cloud-based applications. You'll be at the forefront of defending against cyber threats by implementing cutting-edge security tools, collaborating with development teams to integrate security into the SDLC, and playing a critical role in protecting the organisation's digital assets. The successful candidate will play a hands-on role in testing the security of applications, networks, and systems, while ensuring that security standards are integrated into the development process. Key Responsibilities: Penetration Testing & Vulnerability Assessment: Conduct and oversee regular penetration tests and vulnerability assessments on applications, networks, systems, and infrastructures. Identify, exploit, and document vulnerabilities, including demonstrating the business impact of potential exploits. Analyse and prioritise vulnerabilities based on risk More ❯

Engineering - Tech Risk Advisory - Associate - London Job Description WHO WE ARE Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure … and design secure products and services, embedding implementation reviews as part of the SDLC and CI/CD pipeline via code analysis and penetration testing, and guiding technology innovation in terms of security and control across Goldman Sachs. The team plays a critical role in designing and assessing … this role, you will join the global Secure SDLC (S-SDLC) team within Technology Risk - the team is responsible for the identification of software security flaws, along with providing security assurance advice and guidance to the engineers to help them manage application risks. You will interact with all More ❯

and commercial applications. We are trusted by our customers to protect their mission-critical information in the face of advanced persistent threats. Our offensive security engineers emulate these real-world threats and provide critical signal on attack vectors to help improve our security posture. This role will be … hands-on and requires a deep understanding of micro-service architecture, multi-tenancy vulnerabilities, cloud security, and web application security. In this role you'll dive deep into the security of our products and more: Conduct security assessments. You'll learn how our products work at the … then try to break them. This includes everything in our current and future product and service portfolio from Apollo to Foundry. You'll document security findings and work with AppSec and product engineers to develop mitigations. Build offensive testing tooling and automation. Scale offensive security testing More ❯

Security Engineer II, Industry Products - Fixed Job ID: AWS EMEA SARL (UK Branch) As part of the AWS Solutions organization, we have a vision to provide business applications, leveraging Amazon's unique experience and expertise, that are used by millions of companies worldwide to manage day-to-day operations. … to bring great ideas to life in ways that aren't possible in traditional IT environments. With AWS you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them. AWS Security is on the cutting edge of security for … hardware, all operating at massive scale. Similarly, our highly collaborative team is committed to each team member's growth as our business grows. AWS Security is looking for a Security Engineer to design security controls and help validate that our services, applications, and emerging technologies are designed More ❯

Business Development Manager - Digital Risk & Advisory for BSI Digital Trust across the UK and Ireland to spearhead the growth of our digital risk and security testing services. This role is designed for a hunter sales professional, who thrives in identifying, pursuing, and closing new business opportunities, with a … focus on security testing and digital risk advisory services. Once a sale is closed, the new business will be handed over to a Business Development Manager (BDM) to manage client relations. The ideal candidate will be proactive, strategic, and have a deep understanding of the cybersecurity landscape. You … play a critical role in expanding our client base, positioning BSI as a trusted partner for organisations seeking to manage digital risks and enhance security in both the UK and Ireland. Key Responsibilities & Accountabilities New Business Development : Drive the sales strategy and actively hunt for new business opportunities across More ❯

Security Engineer - Hardware, Firmware, Virtualization, Secure Hardware And Foundational Technologies Team Job ID: Amazon Development Centre (London) Limited At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all … of Amazon's products and services. Help us protect not only the Amazon Security (AmSec) cloud computing environment but all of our customers as well! Since 2006, our great team at AmSec has been enabling our customers to bring great ideas to life in ways that aren't possible … in traditional IT environments. With AmSec you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them. Amazon Security is working on security issues for a wide variety of platforms and technologies including cloud services, Internet of Things (IoT More ❯

Job Purpose The Data Security Manager will partner with multiple divisions and technical managers to enhance security aspects of the data security program. Extensive oversight and control of CLS information assets, mitigating the risks of data loss at CLS in all aspects of day-to-day business. … The individual will be accountable for the Data Security Program, setting strategic direction and driving operational excellence while leveraging resources distributed across several functional teams. The Data Security Manager will be responsible for analyzing potential weaknesses and identifying a roadmap to improve the security of information assets … must have excellent verbal, written, analytical and interpersonal communication skills. Essential Functions/Major Duties and Responsibilities Strategic Provide strategic direction specific to data security management. Build and maintain a robust data security program while aligning closely with CLS's mission. Improve and manage the data security More ❯

a real impact on shaping a better, more sustainable future. We are very excited to be building a small and efficient Cyber and Information Security team at Octopus Energy Group. We're hiring for both Mid-Level and Senior Security Engineers . We are looking for ambitious, knowledgeable … and experienced Security Engineers to join our team, to grow with the rest of the company, and ensure we continue to do so in a secure and safe way. You will be a key partner in defining what Security is at Octopus Energy Group. We will be shaping … and undertaking transformational organisational change. You'll play a crucial role in helping to secure our software development processes, securing our platform services, integrating security practices, and shaping a culture of security. This is a creative, and collaborative position that is a full-time member of a Cloud-First More ❯

Ventures, as well as the founders of Zoopla, Funding Circle, Comply Advantage, Tessian, Fenergo and Fidel. The Role: You will be responsible for information security at Thirdfort, leveraging your expertise to help us live our Build on Trust company value. By improving the coverage and efficiency of our security controls, you will help reduce our security risk whilst also allowing us to give best in class answers to clients, regulators and auditors about our security practices. You will report directly to the Head of Engineering. You will oversee critical security infrastructure and operations, automate security workflows, and work closely with technical and business stakeholders to ensure effective, efficient and appropriate security controls are in place across all parts of the business. This is a great opportunity to across all aspects of security, and help shape how security is done at Thirdfort. More ❯

treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive security automation and best practices across … our cloud infrastructure and IT operations. Job Overview As a DevSecOps Engineer , you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations . Working at the intersection of operations, security, and development , you will collaborate closely with internal teams to safeguard … critical business operations by design and default. You will be responsible for security automation, CI/CD pipeline enhancements , and cloud security management , ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development security. Work More ❯

Senior Security Engineer - Application Security London, UK Senior Security Engineer - Application Security Samsara's Mission Improve the safety, efficiency, and sustainability of the operations that power the global economy. Samsara (NYSE: IOT) is the pioneer of the Connected Operations Cloud, which is a platform that enables … the autonomy and support to make an impact as we build for the long term. About the role: We're looking for a Senior Security Engineer with deep expertise in application security to contribute to efforts across Samsara's product and corporate environments. You will be responsible for … code analysis, threat modeling, and bug bounty operations. As a senior contributor, you will partner with engineering and product teams to identify and mitigate security risks early in the development lifecycle and drive secure-by-default practices across our tech stack. This is a highly visible role that will More ❯

Description The Offensive Security Manager is responsible for the provision of penetration & red team testing services to the business, including leading teams, creating processes, and management of technologies & 3rd parties that make up the service. The role reports to the Director of Offensive Security. The position does not … as organizational, leadership, relationship and supplier management skills are the key focuses of the role but will need to have a good understanding of security vulnerabilities and testing methodology to be able to understand the subject matter of the service and manage quality. The role will work closely … alongside the rest of the Cyber Team (e.g. Vulnerability Management), the wider Information & Cyber Security function (e.g. Project Assurance) and leaders in operational IT teams to ensure accurate detection, and the prioritized, timely and appropriate resolution of security vulnerabilities. We are looking for a collaborative team player, with More ❯

us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an … opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support … the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. More ❯

Security Systems Engineer - DevSecOps - Remote - Amazing role - to £70,0000 + Bens Once in a life time opportunity to join a scaling up tech company who are disrupting the digital security sector. My customer are an incredibly innovative scaling up tech company who are looking to recruit a … Security Systems Engineer with experience of DevSecOps, AWS, and terraform who is looking for a new challenge. Excellent salary - Up to 70k + pension + health + share scheme + flexible working + 25 days holidays. Complete remote role with quarterly meet-ups and customer site visits. Position Overview … We are seeking a security systems engineer who combines strategic oversight with strong hands-on capabilities. This role is pivotal in shaping the overarching technical security posture of our organisation while actively integrating security into our development and operational workflows. The ideal candidate will bridge the gap More ❯

business and world affairs. We deliver our information through a range of formats, from newspapers and magazines to conferences and electronic services. The Information Security team operates the Information Security Program and is responsible for the standard of information security across the Group. We define and implement … our security strategy and mitigation activities across our brands. We work with business units to ensure that the confidentiality, integrity and availability risks that they are exposed to are clearly understood and appropriately managed. The Cyber Security Analyst is a member of the Information Security team and … helps us maintain the security of our cloud infrastructure. As an Analyst, you will be responsible for monitoring, analysing, and identifying potential security threats to our cloud-based systems. You will work closely with other IT teams to ensure the confidentiality, integrity, and availability of our cloud-based More ❯

Confluence). Awareness of CI/CD tooling such as Jenkins, GitLab or similar. Knowledge of Hashicorp Terraform and Hashicorp Vault. Awareness of SAST Security Testing - GitLab, Checkmarx, Veracode. Awareness of DAST Security Testing - GitLab, Veracode. Awareness of SCA/IAST Security Testing - Checkmarx … GitLab, Veracode. Awareness of Vulnerability Management - PA Prisma. Awareness of QA Testing - Selenium. Certifications in Gitlab, Terraform and Vault would be preferable. About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology More ❯

Penetration Testing Team Lead - AVP Penetration Testing Team Lead - AVP Apply locations London time type Full time posted on Posted 3 Days Ago job requisition id -WD Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one … being inspired is expected and making a meaningful impact is rewarded. Main Purpose of the Role: To ensure effective management and control of information security, IT and information risk for MUSI by ensuring all appropriate Security, IT and common-sense controls are in place, that these controls are … being followed and that this is evidenced across the whole business and IT department. The role will involve liaising with the other information security functions within the MUS international business and MUFG group to ensure a consistent approach to all controls, standards and policies is adopted across the organisation. More ❯

our Non-Functional Test and assurance efforts, confirming our products and services meet the highest quality standards. The role ensures that the non-functional testing delivered by our Service Providers is optimised to certify that our systems meet performance, reliability and scalability requirements, protecting the service we provide to … and tools. Our Technology Assurance Function is part of Smart DCC's Technology Office (CTO) and currently comprises of four teams which are: Enterprise Testing Business Analysis This role resides within the Test Assurance team but will be required to work across internal functions and with external stakeholders to … set the approach, frameworks and standards under which all non-functional testing will be operated. In addition, the candidate will be required to assure the delivery of our Service Providers non-functional testing in alignment with our non-functional testing strategy. What will you be doing? Defining More ❯

Role Purpose: This is an exciting opportunity to join a dynamic security solutions team in which you will be responsible for the management and delivery of client security programs. As part of a passionate delivery team, you should have a strong passion for IT security and a … of running Vulnerability Exposure Management programs is essential. Summary: This is an opportunity to work in a fun and challenging environment, using market-leading security testing tools and platforms to provide security testing services to our large client base. You will play a key role in … delivering and managing client security programs all year round, as well as building relationships with clients and ensuring that our services are meeting their needs. You will also be given every opportunity to help shape the direction of the department as well as assist with the development of new More ❯

We are seeking an experienced AWS DevSecOps Engineer to join our engineering team. The ideal candidate will be responsible for integrating security into the DevOps pipeline, automating security processes, and ensuring compliance while leveraging AWS cloud technologies. This role requires a solid understanding of AWS services, CI/… CD pipelines, and security best practices in a cloud-first environment. Key Responsibilities : Integrate security controls and monitoring within AWS, automating security at every stage of the DevOps lifecycle. Design secure, automated infrastructure using Terraform, CloudFormation, and enforce AWS security best practices (IAM, access control, encryption … . Work with DevOps teams to integrate security testing tools (e.g., OWASP ZAP, Snyk) into CI/CD pipelines (Jenkins, GitLab). Ensure compliance with regulations (GDPR, PCI-DSS, HIPAA) through logging, auditing, and monitoring. Assist in security incidents, conduct root cause analysis, and implement preventative security More ❯

using open source software and cloud platforms. We predominantly work with central government agencies and adhere to the Government Digital Service standard. We take security seriously, and are certified to ISO 27001 and Cyber Essentials Plus, demonstrating our commitment to robust information security practices. To support our continued … growth, we are seeking an experienced Information Security Manager. In this role, you will be responsible for ensuring our ongoing compliance with ISO27001 and Cyber Essentials Plus, including the management of quarterly external audits and the facilitation of Integrated Management System (IMS) meetings. You will also oversee our adherence … and external risk management workshops, supporting both our own compliance and that of our clients. You will provide expert analysis and advisory services on security compliance standards for the applications and cloud solutions we develop and support. Compliance and Security Management: Develop, implement, and maintain comprehensive compliance programs More ❯

Senior Consultant If you have experience in penetration testing and are seeking to enhance your skills to become a subject matter expert, consider exploring what we have to offer! This is a hybrid role with the flexibility to work both virtually and from our London office. Aon is in … our colleagues and clients succeed. What the day will look like As a Senior Consultant, you can expect to get involved in: Application penetration testing and application source code review. Cloud platform penetration testing. Vulnerability and penetration assessments on internal and external infrastructure. Applying and developing appropriate exploits to … gain access and expand access to remote systems. Documenting technical issues identified during security assessments. Mentoring more junior colleagues and supporting managers whenever necessary. Perform peer review and quality checks on work product from other colleagues. Instructor-led and self-guided training activities, including you working towards attaining company More ❯

and ultimately build an open, accessible and fair financial future, one piece of software at a time. We are looking for a Senior Application Security Engineer to join our Security team as we tackle some of the most interesting problems in the crypto space, like how do we … securely scale a distributed financial platform that touches millions of people a day. At Security is a mindset and a set of engineering approaches to better protect stakeholders, users and systems by building our creative engineering solutions to hard, sometimes previously unseen problems. The Security team is responsible … for the big picture of how systems are designed for Security, and we use a breadth of tools and approaches to solve a broad spectrum of problems. Practices aimed at achieving proactive identification of potential threat actors combined with in-depth investigation of security issues into iterative improvement More ❯