1 to 25 of 74 Permanent Security Testing Jobs in the UK

DevSecOps Engineer Engineering, Software Development, DevOps, DevSecOps, Security Hybrid working - 1 day London, 4 day's work from home @mecscomms is recruiting for a DevSecOps Engineer, on behalf a major telecommunications service provider. The role is crucial in the operational efficiency & security of software development & deployment processes, through … configure, deploy & roll out Splunk software across the platforms & infrastructure managed by the Engineering & Run & Operate teams. The DevSecOps Engineer will also oversee logging & Security Information & Event Management (SIEM) aspects of infrastructure, collaborating with application development teams to resolve issues & enhance security measures within the CI/CD … If you have a background encompassing any of the following; Multi cloud environments, AWS, Azure, managing Splunk, defining data streams, indices, ingests & dashboards, adding security tooling to CI/CD pipelines, SAST, code security, SonarCloud, AWS Security Hub, Source code, Github, Github Actions, IaC tooling, Automation, AWS more »

London hybrid - £80,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Specialist with a strong background in security architecture, cloud security, application security, and DevSecOps to join our client as they look to expand their cyber security engineering function. … This opportunity will allow you to step into an established, but growing security engineering function, lead and own various engineering initiatives, and work with some of the UK’s very best cyber security professionals! Main responsibilities: Design and implement security architecture for systems and applications. Develop and … maintain security policies, procedures, and standards. Implement and manage security controls and monitoring tools to detect and respond to security incidents. Work closely with development and operations teams to integrate security into the CI/CD pipeline and automate security testing and compliance checks. more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis, ensuring applications are built securely. The Information Security team deal with the security of closed-sourced, open-source … and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from a security … Use of planned, structured methodologies for conducting and reporting on web application penetration testing. Understanding and demonstrable experience of automated, dynamic and static application security testing tools, as well as manual security testing to find vulnerabilities and logical issues. Examination of packets using Wireshark and other more »

Who we are looking for A Senior Information Security Specialist to focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed sourced, open … source and in house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will work closely with the Software Development team to confirm that application based vulnerabilities are understood and mitigated. This is done from a security … planned, structured methodologies for conducting and reporting on Web Application Penetration Testing. Excellent understanding of and demonstrable experience with automated, dynamic and static application security testing tools, as well as manual security testing to find vulnerabilities and logical issues. Offensive Security Certified Professional (OSCP) certification more »

Penetration Tester to add to their heavily experienced team of specialists. You will be given the opportunity to deliver on a wide variety of testing engagements with business across multiple industries. You will perform and support the main activities of my client's security testing services. You … will individually provide and perform security testing, analysis, documentation, findings and remediation support to clients. You will also play a key role in supporting the wider testing team to ensure delivery of assigned tasks. *Remote Working BUT Client Site Travel Required* *£45,000 - £60,000 + benefits … DOE* Penetration Tester – Responsibilities: Delivery of high quality penetration testing, application security testing and red-team engagements Working on client site occasionally to deliver Internal Infrastructure, Wifi and Physical Testing engagements Assisting in proposal writing and scoping Customer management and debriefing Supporting the wider team in more »

consistency of service Makes decisions which impact on the success of assigned projects i.e. results, deadlines and budge Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What you ll need Experience of … working in a team of DevOps or DevSecOps practitioners DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc.) An understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/SAFe) An understanding of DevOps Management (JIRA, Confluence) Awareness of CI/CD tooling such as Jenkins … GitLab or similar Experience of Hashicorp Terraform Experience of Hashicorp Vault Awareness of SAST Security Testing - GitLab, Checkmarx, Veracode Awareness of DAST Security Testing - GitLab, Veracode Awareness of SCA Security Testing - Checkmarx, GitLab, Veracode Awareness of IAST Security Testing - Checkmarx Awareness of more »

consistency of service Makes decisions which impact on the success of assigned projects i.e. results, deadlines and budge Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What you’ll need Experience of … working in a team of DevOps or DevSecOps practitioners DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc.) An understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/SAFe) An understanding of DevOps Management (JIRA, Confluence) Awareness of CI/CD tooling such as Jenkins … GitLab or similar Experience of Hashicorp Terraform Experience of Hashicorp Vault Awareness of SAST Security Testing - GitLab, Checkmarx, Veracode Awareness of DAST Security Testing - GitLab, Veracode Awareness of SCA Security Testing - Checkmarx, GitLab, Veracode Awareness of IAST Security Testing - Checkmarx Awareness of more »

Senior Security Consultant(P2PE Application and SSF Assessor) Integrity360 Integrity360 are the largest cyber security specialists in Ireland and the fastest growing in the UK. Learn more about how we can help your organisation grow securely. View company page Location: Remote UK or EU, must have full working … rights for UK or EU About Us Integrity360 is one of Europe s leading cyber security specialists operating from office locations spread out across Europe, providing a comprehensive range of professional, support and managed cyber security services for our 300+ clients. With four top-class Security Operation … Centers, we offer a complete end-to-end security services covering our clients security from every angle. Our services include Managed Security, Cyber Security Testing, Incident Response , Security Integration, PCI Compliance and Cyber Risk & Assurance services. What sets Integrity360 apart is our excellent team more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including … static code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including … static code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry more »

Role Overview: As a Penetration Tester, you'll be part of an elite team of security experts dedicated to identifying and mitigating security vulnerabilities in web applications, infrastructure, cloud, API, wireless, and mobile applications. You will act as a trusted advisor, conducting comprehensive security assessments of clients … most critical assets. In addition to security testing, you will support the team to ensure on-time, on-budget delivery of assigned tasks, quality of deliverables, and overall customer satisfaction. This role requires mid-level expertise in multiple domains of security testing, with a versatile yet … We Offer: Competitive salary. Opportunities for professional growth and development. Collaborative, dynamic, and positively charged work environment. Remote work options. Access to cutting-edge security tools and technologies. Recognition and rewards for outstanding performance. Responsibilities: Perform regular penetration tests on web applications, infrastructure, cloud, API, wireless, and mobile applications. more »

JOB OVERVIEW: We are seeking a skilled and passionate security engineer to own the effort of hardware security testing and assessment centrally across hardware products in our company. The role is within our multifaceted Product Security team. You will have the opportunity to drive improvements in … security of our hardware systems, and processes, and build security culture. RESPONSIBILITIES: Develop comprehensive security assessment methodology for systems, SoC. Perform security assessment of compute sub-system and SoC security. Evaluate effectiveness of security mechanisms and countermeasures. Perform security reviews of hardware implementation at … RTL level. Develop and implement security testing on hardware (soft IP, silicon, FPGA). Provide security guidance to engineering teams. Keep up-to-date with industry best practices and emerging threats, vulnerabilities, and security technologies relevant to SOC devices REQUIRED SKILLS AND EXPERIENCE : Demonstrated knowledge on more »

with and facilitating colleagues and engineers to design, build and maintain the platform, following agile software development principles Ensuring the highest levels of platform security and compliance are adhered to Providing feedback and action activities to mature and improve operations and processes within the team and more broadly across … factor authentication, user lifecycle management, hands on CI/CD approaches and technologies Experience with Ping Identity/ForgeRock (product platform experience, system integration, , security features, extensions) Skills that will help you in the role: Experience in DevSecOps, secure coding best practices, defensive programming, security testing, data … security, network security, cloud security, security compliance and regulations Infrastructure as Code, Ansible, Terraform and Containerisation, Docker, Kubernetes Experience with AWS and Azure cloud component and services integration (RDS/Azure DB, S3/Azure Blob) Knowledge of authentication and Biometric system design, implementation and standards more »

Manager - Cyber Security (Assurance & Advisory)We are searching for an experienced Manager - Cyber Security (Assurance & Advisory)OverviewAre you passionate about emerging technology, cyber, change, and riskmanagement? We are.There’s never been a more exciting time to be a technology risk professional. Ourworld is ever more complex, interconnected, and … manufacturing,automotive, gaming, healthcare, social housing, education and defence.Overall job purposeNo career pathway in your current role? You won’t stand still in ourCyber Security team which is a part of our wider Technology & Cyber RiskAssurance team. You’ll work with our team of specialists and be a valued … You will have anopportunity to continue to develop market leading skills across our differentcapabilities and advance your professional development by undertakingcertifications such as Offensive Security CertifiedProfessional (OSCP); CompTIA PenTest+; CHECK, CREST; Certified InformationSystems Auditor (CISA); CompTIA Security+; Certified Ethical Hacker (CEH); Azure;AWS; Microsoft 365; Certified Information Systems Security more »

What we're looking for Experience of working in a team of DevOps or DevSecOps practitioners DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc) Container native technologies and ecosystem experience e.g. Openshift and Kubernetes An understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/… JIRA, Confluence) Awareness of CI/CD tooling such as Jenkins, GitLab or similar. Knowledge of Hashicorp Terraform and Hashicorp Vault Awareness of SAST Security Testing - GitLab, Checkmarx, Veracode Awareness of DAST Security Testing - GitLab, Veracode Awareness of SCA/IAST Security Testing - Checkmarx … GitLab, Veracode Awareness of Vulnerability Management - PA Prisma Awareness of QA Testing - Selenium Certifications in Gitlab, Terraform and Vault would be preferable more »

Senior Cloud Security Engineer: An exciting Leading Financial services client in the City of London is now looking to recruit a Senior Cloud Security Engineer on a permanent basis. If you thrive in a fast-paced, cloud-native environment and are passionate about securing cloud platforms, we want … to hear from you! In this role, you will: - Design, implement, and maintain secure cloud architectures on Azure, ensuring robust security controls including IAM, network security, data protection, and security monitoring. - Implement and manage cloud security tools and services like Azure Security Center, SIEM solutions … Splunk, ELK, Azure Sentinel), and conduct regular security assessments and penetration testing. - Develop and enforce cloud security policies, procedures, such as NIST, ISO 27001, and SOC 2. - Automate security workflows using Terraform, Azure DevOps CI/CD, and containerization with Kubernetes. Key Technical Requirements: - Extensive experience with more »

SPONSORSHIP OFFERED), occasional travel to client site Job type: Permanent Full-Time Salary: Negotiable About Us Integrity360 is one of Europe’s leading cyber security specialists operating from office locations spread out across Europe, providing a comprehensive range of professional, support and managed cyber security services for our … 300+ clients. With four top-class Security Operation Centers, we offer a complete end-to-end security services covering our clients’ security from every angle. Our services include Managed Security, Cyber Security Testing, Incident Response, Security Integration, PCI Compliance and Cyber Risk & Assurance … on and trust us to go above and beyond to ensure their needs are met. Listed multiple times on Gartner Market Guides for Managed Security Services. Job Role/Responsibilities The purpose of the role is to be a dedicated Level 3 Principal Analyst within Integrity360, delivering robust, scalable more »

Job Title: Mobile/Web Application Security Test Engineer Location: Hemel Hempstead/Hybrid Job Type : Permanent, Full-Time, Mon-Fri BSI have a fantastic career opportunity for an individual looking to undertake a rewarding career within the cyber security regulatory industry. Our testing teams are responsible … for testing a wide range of products to ensure they meet stringent security standards and certification requirements. In this role you will have the opportunity to test a wide range of products from our global clients, including big tech. Working within the regulatory landscape you will also have … the opportunity to keep abreast of the latest regulatory requirements, develop your expertise, and research new testing techniques to further expand our testing capabilities. As our Application Security Test Engineer, you be responsible for testing client mobile and web software applications in accordance to OWASP (ASVS more »

Information Security Consultant | up to £60,000 | Leeds Pearson Carter are currently working with a company who are covering the full spectrum of consultancy, project delivery and post-project operations. This company are global leaders with 120 offices spanning 50 countries worldwide Get in touch if you’re looking … for your next opportunity! Responsibilities: Assist with security incident management and response activities General day-to-day support on managing and responding to security alerts from systems and end users Perform daily, weekly, and monthly security checks, reconciliation and compliance checks and investigate exceptions Completing client security requirement questionnaires and support the bidding process Identify and raise awareness of security risks Develop and enhance security policies, processes, procedures, and technical controls to strengthen security capabilities and resilience to cyber threats Take a proactive role in identifying security risks, mitigations, and opportunities to more »

Risk Develop and maintain the technical compliance framework and documentation for the company’s platform, keeping this updated as changes are made to their security approach. Implement and monitor technical controls and measures to ensure compliance with internal and external policies, regulations, and requirements, and address any gaps or … issues. Create and suggest useful measurements to aid in improving Information security processes and procedures. Compliance Management: Collaborate with external consultants to plan and deliver industry-standard security accreditations such as ISO 27001& 9001, Cyber Essentials Plus, SOC2, IRAP and ensure these are renewed successfully on an annual … basis. Collaborate with internal and external technical security teams to schedule security testing, review output from security testing, and schedule remediation of any detected vulnerabilities. Liaise with external vendors to manage security and regulatory requirements. Sales & Customer Success Collaboration: Create and catalogue the responses more »

Penetration Tester/Security Analyst – 12-month Contract – Outside IR35. Global financial services organisation seeks to hire an experienced Penetration Tester/Security Analyst to work as part of a global team responsible for Web Application Penetration testing from end-to-end. The Penetration Tester/Security Analyst will provide consultancy to support and improve their Vulnerability Management and Application Security Testing program. The Penetration Tester/Security Analyst will be responsible for: Perform Web Application Penetration Testing. Penetration testing for business-critical infrastructure and web applications. Bespoke Thick Penetration Testing. Implementing … and maintenance of tooling for Web Application Testing. Analyse, investigate and develop security testing engagements. Work closely with senior stakeholders and internal development teams. The Penetration Tester/Security Analyst will: A degree in a related STEM-based subject. Proven commercial Penetration Testing experience. Experience working more »

Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life cycle. … Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally & externally … developed software Embedding security within DevOps (eg CI/CD pipelines), developing security requirements On-demand Security assessment of various components like Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web application security assessments like SAST, DAST more »

Who we are looking for An Information Security Specialist – Red Team who will focus on the technical side of IT security, specifically testing the security of applications and infrastructure. You will work on the security of closed sourced, open source and in house written applications … and ensure that systems and services are built with privacy and security by design. Whilst you will work with teams across the Business, specifically Software Development and Infrastructure, to confirm that vulnerabilities and security misconfigurations are understood and mitigated, the role is not a vulnerability management role. You … experience Broad understanding of technology functions and how they relate to Information Security. Knowledge of planned, structured methodologies for conducting and reporting when conducting security assessments. Supporting the current application security team by testing in-house developed applications running on test environments. Advanced working knowledge of penetration more »

Who we are looking for An Information Security Specialist – Red Team who will focus on the technical side of IT security, specifically testing the security of applications and infrastructure. You will work on the security of closed sourced, open source and in house written applications … and ensure that systems and services are built with privacy and security by design. Whilst you will work with teams across the Business, specifically Software Development and Infrastructure, to confirm that vulnerabilities and security misconfigurations are understood and mitigated, the role is not a vulnerability management role. You … experience Broad understanding of technology functions and how they relate to Information Security. Knowledge of planned, structured methodologies for conducting and reporting when conducting security assessments. Supporting the current application security team by testing in-house developed applications running on test environments. Advanced working knowledge of penetration more »

Cyber Security Assessor Permanent opportunity Based in Stoke-on-Trent Hybrid Role £34,000 - £48,000 per annum * Please note this role requires security clearance The Opportunity The client is looking for someone from the cyber world to come and join our elite team of digital crime fighting … themselves against cyber attacks and vulnerabilities. The ideal defender will be an existing Cyber Essentials Plus Accreditation Specialist with tools and vision to detect security black holes, and the ability to teach the ways of The Force to legions of small business owners. Responsibilities Include: · Scope and perform penetration … testing and vulnerability research of complex proprietary software and hardware for client services. · Identify and assess vulnerabilities in systems and applications. This includes utilising manual and automated testing methods to find and exploit code flaws, misconfiguration, and insecure software. · Write clear and concise penetration testing reports detailing more »