1 to 25 of 52 Permanent Penetration Testing Jobs in the UK excluding London

Lead Security Engineer Lead Security Engineer role at a well-regarded digital transformation consultancy Specialism in penetration testing, web application security, and cloud security engineering Hybrid working model; Belfast or Northern Ireland base Competitive salary commensurate with seniority; details shared on application Technical leadership role with real influence … Role This is a Lead Security Engineer position with hands-on technical scope and genuine team leadership responsibility. You will lead security engineering and penetration testing efforts across the consultancy's platforms and services, setting direction on testing methodology, engagement scoping, tooling selection, and output quality. Working ...

Penetration Tester Location: Cheltenham (Hybrid Working Available) An established cyber security consultancy is seeking a Penetration Tester to join its growing technical team based in Cheltenham. Working with clients across a variety of sectors, you will deliver offensive security assessments, identify vulnerabilities, and provide practical recommendations to improve … technologies, ongoing professional development, and the opportunity to work alongside experienced cyber security specialists. Key Responsibilities Conduct infrastructure, web application, and vulnerability assessments. Perform penetration testing activities across client environments. Deliver clear, accurate, and professional technical reports. Support client engagements from initial scoping through to delivery. Identify ...

Penetration Tester | CHECK Team Member | £50-55k We're working with a growing UK cyber security consultancy delivering penetration testing services to government and public sector organisations. They're looking for a CHECK Team Member to join the team, delivering high-quality security assessments across … variety of client environments. This is a great opportunity for an experienced penetration tester with active SC clearance and CHECK status who wants to work on a broad range of challenging engagements within the public sector and Defence space. Package: £50-55k + expenses + overnight bonus + ...

Territory: UK & US Salary: £35,000 – £45,000 base + commission About Rootshell Security Rootshell Security helps organisations move beyond traditional, point-in-time penetration testing and static reports into a continuous security programme that evolves alongside modern environments and threats. We combine expert-led penetration testing with technology to deliver ongoing visibility, testing, and improvement — helping our customers stay secure as their attack surface changes. The Role We’re looking for a motivated and commercially driven Sales Development Representative (SDR) to help accelerate Rootshell’s outbound growth across the UK and US markets. This ...

Penetration Tester Our client is a fast-growing cybersecurity services company helping SMEs achieve ISO 27001, GDPR compliance, and Cyber Essentials Plus. As they enter an exciting expansion phase, they're looking for a Penetration Tester to play a key role in their growth. The Role … lead penetration testing across web applications, networks, APIs, cloud environments, and mobile applications, as well as red team assessments and social engineering engagements. Working directly with clients, you'll assess risks, deliver tailored security solutions, produce clear and actionable reports, and mentor junior team members. Experience Proven hands ...

Penetration Tester Our client is a fast-growing cybersecurity services company helping SMEs achieve ISO 27001, GDPR compliance, and Cyber Essentials Plus. As they enter an exciting expansion phase, they're looking for a Penetration Tester to play a key role in their growth. The Role … lead penetration testing across web applications, networks, APIs, cloud environments, and mobile applications, as well as red team assessments and social engineering engagements. Working directly with clients, you'll assess risks, deliver tailored security solutions, produce clear and actionable reports, and mentor junior team members. Experience Proven hands ...

services. Vulnerability Management (Primary Focus) Lead and improve the organisation's vulnerability management programme across a hybrid IT environment, including infrastructure and applications. Oversee penetration testing activities, including scoping, prioritisation, stakeholder engagement, and remediation tracking. Assess and prioritise vulnerabilities using a risk-based, threat-informed approach aligned with … threat intelligence and threat-hunting activities. Technical Experience Strong experience in vulnerability management, threat intelligence, and security operations within complex enterprise environments. Experience managing penetration testing programmes. Understanding of secure development practices and security testing within the software development lifecycle (SDLC). Broad technical knowledge of hybrid ...

internal technology teams, managed service providers and third-party security partners. Key Responsibilities Manage vulnerability management and remediation activities across applications and infrastructure Coordinate penetration testing, remediation and assurance activities with third parties Support ongoing PCI DSS compliance, including assessments, evidence and control testing Configure and operate … Cloud platforms) Solid awareness of current cyber threats, risks and mitigation techniques Desirable: Experience supporting PCI or other regulatory compliance frameworks Exposure to managing penetration testing programmes end-to-end Ethical hacking or information security certifications (e.g. CISSP, CCSP, Microsoft Security) Experience with Microsoft Azure, Office 365, Endpoint ...

internal technology teams, managed service providers and third-party security partners. Key Responsibilities Manage vulnerability management and remediation activities across applications and infrastructure Coordinate penetration testing, remediation and assurance activities with third parties Support ongoing PCI DSS compliance, including assessments, evidence and control testing Configure and operate … Cloud platforms) Solid awareness of current cyber threats, risks and mitigation techniques Desirable: Experience supporting PCI or other regulatory compliance frameworks Exposure to managing penetration testing programmes end-to-end Ethical hacking or information security certifications (e.g. CISSP, CCSP, Microsoft Security) Experience with Microsoft Azure, Office 365, Endpoint ...

company eg. Laptop, hard drives etc.* Develop and grow the remediation service line focused on helping clients implement real, effective security improvements following penetration testing and consultancy engagements* Collaborate closely with penetration testing and consultancy teams to translate findings into effective, actionable remediation plans.Please note ...

incident detection and response capabilities Develop and maintain cybersecurity playbooks and incident response procedures Coordinate with third-party security providers during security incidents and testing activities Security Governance & Risk Management Support cybersecurity risk management and compliance initiatives Contribute to security architecture reviews and secure system design discussions Assess third … party and supply chain cybersecurity risks Support vulnerability management, penetration testing and security review activities Develop and report on security metrics and KPIs to demonstrate programme effectiveness Stay informed of relevant legal, regulatory and industry cybersecurity requirements Security Improvement & Collaboration Contribute to security awareness training and internal security ...

business‐aligned security initiatives end‐to‐end. Provide expert security guidance across concurrent IT, engineering, and business projects. Oversee security assessments including vulnerability management, penetration testing, and third‐party risk. Translate security findings into prioritized, actionable remediation plans with clear ownership. Provide security input into solution architecture ...

based on threat intelligence. Stay up to date on the latest cybersecurity trends and regulatory requirements. System and Network Security: Perform vulnerability assessments and penetration testing on systems and networks. Implement and maintain security tools, such as firewalls, endpoint protection, and email security systems. Collaborate with customer ...

/UK standards. Strong incident response, analytical, and problem-solving skills. Knowledge of AI/ML risks and AI governance. Experience with phishing campaigns, penetration testing, and remediation. Excellent communication skills across technical and senior stakeholder groups. Organised, proactive, and committed to continuous learning. Apply now to find ...

Power Platform technologies Develop automations using Power Automate and PowerApps Partner with cybersecurity teams to build AI-enabled tools supporting areas such as penetration testing and security operations Work with internal departments to identify business challenges and implement AI solutions Deliver user training and adoption programmes to ensure ...

Clearance) Self-motivated, decisive, and comfortable operating with a high degree of autonomy Desired but not essential: Experience across multiple disciplines such as GRC, penetration testing, SOC, cloud security, or OT security Familiarity with frameworks including NIST, ISO 27001, CAF, or Cyber Essentials Experience working with government, defence ...

platform-wide security architectures and strategies. Drive secure SDLC practices including threat modelling, misuse cases, and risk analysis. Oversee security operations including vulnerability scanning, penetration testing, and assessments. Manage and optimise security tooling (Firewalls, VPNs, IDS/IPS, EDR). Lead incident response activities, ensuring swift mitigation ...

Security Monitoring Oversee cyber security measures including vulnerability management, access control, security monitoring and incident detection. Ensure regular vulnerability assessments, security reviews and penetration testing are conducted. Incident Management Establish and maintain procedures for managing information security incidents. Coordinate investigation, response and reporting of cyber security incidents. Operational ...

London or Bristol office two days per week. About the role You will own security across the software development lifecycle, embedding automated security testing into CI/CD pipelines and enabling development teams to ship secure code quickly. This role works closely with UK and France engineering teams. … experienced Application Security Engineer, your working day will include but not be limited to: DevSecOps & Pipeline Security Implement and maintain security testing in GitLab CI pipelines Configure and tune SAST, DAST, dependency scanning, and secrets detection Build automated security gates that balance rigour with delivery velocity Enable self-serve ...

Nottingham who are looking for an experienced Cyber Security Consultant to come in on an initial 3-month contract. This is not an automation testing role, and it’s not a pure penetration testing assignment either. They need someone who can come in, take a step back … security perspective Assessing the current approach to vulnerability management Reviewing how existing security tooling is being used Looking at the overall approach to testing from a security point of view Identifying vulnerabilities, gaps, risks and areas of exposure Speaking with technical and non-technical stakeholders Producing clear findings ...

practices, and alignment to ISO27001 and NIST Contribute to security documentation (policies, SOPs, playbooks) and continuous improvement of controls Support BAU operations, projects, and penetration testing activities as required Key Requirements of the Cyber Security Engineer: Experience in a Cyber Security Engineer, SecOps, or similar hands-on security ...

Group IT Security Risk Register. Lead cyber security risk assessments and remediation planning activities. Manage incident response, cyber investigations, and escalation procedures. Oversee annual penetration testing programmes and security audits. Support compliance initiatives including Cyber Essentials, Cyber Essentials Plus, ISO 27001, and similar frameworks. Produce security reporting ...

management Strong understanding of security frameworks and standards hands-on experience with tools such as (Rapid7, Qualys, Nessus, Wiz, Defender) Experience or exposure to penetration testing Strong analytical, problem-solving and communication skills Proactive, detail-oriented and collaborative mindset Desirable Experience with scripting (Python, PowerShell) Knowledge of cloud ...

reviews and feedback from external audits. Help drive security and compliance awareness across the business. Involvement in Operational Security Services such as SOC, SIEM, Penetration Testing & Vulnerability scanning Review, interpret and act upon information provided by E365 security toolsets. Required skills: Hold valid security clearance or be eligible ...

offensive cyber operations Deep knowledge of Windows security internals and evasion techniques Experience exploiting vulnerabilities across infrastructure and applications Understanding of cloud security testing across AWS, Azure or GCP Familiarity with offensive tooling such as Cobalt Strike Experience bypassing modern security controls (EDR, IDS, firewalls) Knowledge of covert communications … submit (subject to required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Red Team, Offensive Security, Cyber Security, Penetration Testing, Windows Security, Cobalt Strike, Cloud Security, AWS, Azure ...