1 to 25 of 41 Permanent Security Testing Jobs in the UK excluding London

Application Security Lead Entertainment UK Hybrid/Remote Job description This role works closely with development teams to verify our partners applications satisfy the defined security criteria, supporting the organization on the security design and conducting reviews of applications, while improving automation. Primary Responsibilities: Provide technical leadership and guidance on application security best practices, methodologies, and … technologies. The ideal candidate will serve as a trusted advisor to development teams, architects, and stakeholders across our clients organisation. Design and review security architectures for applications, ensuring the implementation of effective security controls and countermeasures. Conduct threat modelling exercises to identify potential security risks and vulnerabilities early in the development lifecycle. Conduct in-depth security assessments, code reviews, and penetration testing of applications to identify and mitigate security vulnerabilities. Utilise industry-standard tools and methodologies to assess the security posture of applications and provide actionable recommendations for remediation Essential At least three years experience in a similar senior Information Security position Customer-oriented person, with the ability to educate and More ❯

Senior Application Security Engineer Location: Hybrid working or homeworking with view to attend office occasionally Salary: £60,000 – £70,000 per annum Bonus: Discretionary bonus of up to 10% Are you passionate about securing modern applications and cloud environments? We’re looking for a Senior Application Security Engineer to join my client's growing team and play a … key role in shaping the security posture of our organisation. About the Role As a Senior Application Security Engineer, you’ll bring deep expertise in application security testing, cloud security, and secure development practices. You’ll work closely with IT, development, and project teams to embed security into every stage of the software development … lifecycle and drive a risk-based approach to vulnerability management. Key Responsibilities Lead application security initiatives across cloud-native and enterprise environments. Promote secure design principles, threat modelling, and best practices across teams. Own and evolve the technical vulnerability management programme. Implement and support security controls, particularly within Azure cloud environments. Evaluate and deploy best-in-class application More ❯

Senior Application Security Engineer Cambridgeshire Based - 1-2 days a week onsite We are looking for an experienced Senior Application Security Engineer to join our client's expanding Cyber Security team. This is an incredible opportunity to craft a world-class Application Security function , playing a critical role in embedding security within all stages of … the development lifecycle. What you'll be doing: Becoming a key contributor to the Cyber team by focusing on application security architecture and implementing a robust risk management programme. Collaborating closely with different teams to devise plans, perform threat modelling, adopt architecture best practices, drive secure development lifecycles, and manage risk remediation. Providing expertise in security best practices … and compliance while undertaking hands-on security testing. Identifying application security risks and supporting requirements for new projects and system developments. Representing the Cyber team during review sprints to ensure application security is prioritised before deployment. Partnering with architecture and development teams to review application design and code for security vulnerabilities. Establishing and promoting a threat More ❯

Application Security Specialist (DevOps) Hybrid – Cambridge, UK (1 day a week in office) We're looking for an experienced Application Security Specialist to join a growing cyber security team and play a key role in shaping a world-class application security programme. This role will give you the chance to work closely with engineering and development … teams, embedding security into the development lifecycle, driving automation, and influencing remediation plans that have real impact. What you'll be doing Guiding teams on security best practices, compliance, and secure coding. Collaborating with architects and developers to review designs and code for vulnerabilities. Embedding/improving threat modelling and secure development practices into the SDLC. Designing and … integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and reporting on application security metrics, KPIs, and emerging threats. Automating processes for vulnerability detection and integrating tools into the pipeline. Note: this position includes More ❯

Senior Security Consultant Penetration Testing (Web, API & Product Security) Location: Remote (UK) | Competitive Salary + Bonus + Training & Certs Join a CREST-accredited Cyber Security consultancy delivering high-quality penetration testing services across web, mobile, cloud and product environments for organisations in finance, healthcare, SaaS and critical infrastructure. They are looking for a Senior Penetration … Tester with strong commercial experience who is keen to advance their career into more Red Team/Offensive security engagements . Youll take a lead role in delivering assessments, improving testing approaches, and guiding junior team members, while gaining the opportunity to participate in red team activities as part of your growth. What youll do: Deliver Web Application … and API penetration tests , including complex and modern architectures. Lead assessments across infrastructure, cloud and product security , identifying and exploiting real-world risks. Produce high-quality reports and communicate findings clearly to both technical and non-technical stakeholders. Support offensive security tooling improvements and internal research initiatives. Mentor junior testers and play a key part in continuous improvement More ❯

My global service provider client is expanding their solutions team and is hiring a DevSecOps Director to lead secure software development, DevSecOps, and security testing. Drive high-impact initiatives, embed security across the organisation, shape secure solutions, mentor teams, and ensure resilience against evolving threats. About the job: Lead the secure software development lifecycle, security testing, and DevSecOps practices across strategic and operational levels. You will ensure security is embedded from design through deployment, oversee secure coding and testing, and drive operational maturity and resilience against evolving threats What you'll do: Define and govern secure architecture standards, aligned with NIST, OWASP, ISO 27001, and enterprise policies Lead DevSecOps integration, embedding automated security testing (SAST, DAST, SCA, container security) into CI/CD pipelines Oversee large-scale secure development programs, ensuring SLA/KPI compliance and high-quality service delivery Support pre-sales & business development, articulating security value propositions, contributing to SOWs, and advising clients on secure solutions Manage budgets, resource planning, and profitability, while identifying operational efficiencies Mentor More ❯

We're seeking a Quality Engineer with hands-on experience in C#, Visual Studio, and the Microsoft tech stack. If you have experience testing both frontend and backend systems and enjoy driving automation and quality in a fast-paced, collaborative environment, wed love to hear from you! We are Preservica, and our active digital preservation solutions are at the … Gherkin syntax and ReqNRoll. Participate in Agile ceremonies, story reviews, and provide early feedback on testability and quality. Expand test coverage across regression and feature test suites. Perform exploratory testing during feature development. Conduct code reviews for test scripts and contribute to internal tooling. Support performance testing using Azure Load Testing, JMeter, or Locust.. Contribute to backend …/API testing and support security testing initiatives. What We Offer We are an open progressive employer that values our staff as the heart of our business. As well as a competitive salary and benefits package, we offer tangible career development opportunities and dedicated training time to support professional growth. Our benefits package includes Life Insurance, Private More ❯

Network Security Engineer Network Security/Penetration Testing/CREST/CSTL/API Testing/Config Reviews/Infrastructure/Outside IR35/West London We’re seeking an experienced Network Security Engineer to support a major multi-phase security testing project. You’ll conduct penetration tests, configuration reviews, and infrastructure assessments … contributing to a high-profile programme of work extending into next year. Required Strong background in network and infrastructure security. Experience performing penetration testing, configuration reviews, and API testing. Knowledge of “classic” CHECK-style testing methodologies. CREST, CSTL or CTL certification (Team Member or Team Leader level). Ability to deliver high-quality reports and communicate technical findings … clearly. Hands-on experience across infrastructure, networking, and external testing. Desirable Experience working within CHECK or other accredited testing schemes. Strong understanding of secure network architecture and hardening practices. Previous consultancy or project-based testing experience. Contract Details Outside IR35 West London (on-site presence required for majority of testing) 0-hours contract – project-based work, phase More ❯

Network Security Engineer Network Security/Penetration Testing/CREST/CSTL/API Testing/Config Reviews/Infrastructure/Outside IR35/West London We’re seeking an experienced Network Security Engineer to support a major multi-phase security testing project. You’ll conduct penetration tests, configuration reviews, and infrastructure assessments … contributing to a high-profile programme of work extending into next year. Required Strong background in network and infrastructure security. Experience performing penetration testing, configuration reviews, and API testing. Knowledge of “classic” CHECK-style testing methodologies. CREST, CSTL or CTL certification (Team Member or Team Leader level). Ability to deliver high-quality reports and communicate technical findings … clearly. Hands-on experience across infrastructure, networking, and external testing. Desirable Experience working within CHECK or other accredited testing schemes. Strong understanding of secure network architecture and hardening practices. Previous consultancy or project-based testing experience. Contract Details Outside IR35 West London (on-site presence required for majority of testing) 0-hours contract – project-based work, phase More ❯

team. Working in an Agile/Kanban environment, you will collaborate closely with developers and product owners, write and review automated test cases, and help drive best practices in testing and quality assurance. You'll also play a role in evaluating and implementing tools such as Playwright as the team transitions from Selenium. This is a hybrid role, primarily … or Selenium Write clear, maintainable test scripts Collaborate in Agile ceremonies, providing early feedback on testability and quality concerns Expand and maintain regression and feature test suites Conduct exploratory testing during feature development Review test automation code and contribute to internal test tools and utilities Support performance testing efforts using tools such as Azure Load Testing, JMeter … or Locust Contribute to backend/API testing and assist with security testing initiatives Skills and experience required: 2+ years of experience in software testing with a focus on test automation Proficiency in C# and automation tools like Selenium or Playwright Experience working within Agile/Kanban teams and a strong understanding of shift-left testing More ❯

team. Working in an Agile/Kanban environment, you will collaborate closely with developers and product owners, write and review automated test cases, and help drive best practices in testing and quality assurance. You'll also play a role in evaluating and implementing tools such as Playwright as the team transitions from Selenium. This is a hybrid role, primarily … or Selenium Write clear, maintainable test scripts Collaborate in Agile ceremonies, providing early feedback on testability and quality concerns Expand and maintain regression and feature test suites Conduct exploratory testing during feature development Review test automation code and contribute to internal test tools and utilities Support performance testing efforts using tools such as Azure Load Testing, JMeter … or Locust Contribute to backend/API testing and assist with security testing initiatives Skills and experience required: 2+ years of experience in software testing with a focus on test automation Proficiency in C# and automation tools like Selenium or Playwright Experience working within Agile/Kanban teams and a strong understanding of shift-left testing More ❯

team. Working in an Agile/Kanban environment, you will collaborate closely with developers and product owners, write and review automated test cases, and help drive best practices in testing and quality assurance. You'll also play a role in evaluating and implementing tools such as Playwright as the team transitions from Selenium. This is a hybrid role, primarily … test scripts using Gherkin syntax and ReqNRoll Collaborate in Agile ceremonies, providing early feedback on testability and quality concerns Expand and maintain regression and feature test suites Conduct exploratory testing during feature development Review test automation code and contribute to internal test tools and utilities Support performance testing efforts using tools such as Azure Load Testing, JMeter … or Locust Contribute to backend/API testing and assist with security testing initiatives Skills and experience required: 2+ years of experience in software testing with a focus on test automation Proficiency in C# and automation tools like Selenium or Playwright Experience working within Agile/Kanban teams and a strong understanding of shift-left testing More ❯

team. Working in an Agile/Kanban environment, you will collaborate closely with developers and product owners, write and review automated test cases, and help drive best practices in testing and quality assurance. You'll also play a role in evaluating and implementing tools such as Playwright as the team transitions from Selenium. This is a hybrid role, primarily … test scripts using Gherkin syntax and ReqNRoll Collaborate in Agile ceremonies, providing early feedback on testability and quality concerns Expand and maintain regression and feature test suites Conduct exploratory testing during feature development Review test automation code and contribute to internal test tools and utilities Support performance testing efforts using tools such as Azure Load Testing, JMeter … or Locust Contribute to backend/API testing and assist with security testing initiatives Skills and experience required: 2+ years of experience in software testing with a focus on test automation Proficiency in C# and automation tools like Selenium or Playwright Experience working within Agile/Kanban teams and a strong understanding of shift-left testing More ❯

Job Title: Senior Application Security EngineerSalary: £70,000Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape the future of secure digital transformation across a wide range … part of a business that values expertise, agility, and doing the right thing - where everyone has the opportunity to make a genuine impact. About the Role The Senior Application Security Engineer will play a key role in protecting the organisation's infrastructure, cloud platforms, and applications. Working within a highly technical and collaborative cyber team - supported by a …/7 external SOC - you'll research, test, and implement next-generation security solutions to safeguard data and systems. This role offers the chance to lead on application and cloud security initiatives, influence secure design standards, and mentor colleagues in best practices. Key Responsibilities Lead application and cloud security initiatives, ensuring systems and software are secure by More ❯

Job Title: Senior Application Security Engineer Salary: £70,000 Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape the future of secure digital transformation across a … part of a business that values expertise, agility, and doing the right thing - where everyone has the opportunity to make a genuine impact. About the Role The Senior Application Security Engineer will play a key role in protecting the organisation's infrastructure, cloud platforms, and applications. Working within a highly technical and collaborative cyber team - supported by a …/7 external SOC - you'll research, test, and implement next-generation security solutions to safeguard data and systems. This role offers the chance to lead on application and cloud security initiatives, influence secure design standards, and mentor colleagues in best practices. Key Responsibilities Lead application and cloud security initiatives, ensuring systems and software are secure by More ❯

Contract Opportunity: Cyber Security Test Engineer - Automotive | Hybrid Cyber Security Test Engineer on a contract basis to support the testing and validation of cybersecurity features in cutting-edge automotive products. This role is pivotal in ensuring compliance with global regulations including UNECE R.155 and China GB 44495, helping our client deliver secure and compliant vehicles to markets … worldwide. You’ll report to the Functional Manager - Product Security Test & Incident Management, and work across test benches and vehicles to execute cybersecurity testing, support homologation, and contribute to the development lifecycle of secure automotive systems. Whats on Offer: Attractive hourly rate (outside IR35) Current end date 31/01/2026 - possibility of extensions (Project is until … week Hybrid - 2 days on site per week (flexible on days) Possible international travel, driving licence essential Key Responsibilities: Prepare and maintain test environments (benches and vehicles) for cybersecurity testing Develop and execute test cases aligned with UNECE R.155, GB 44495, and other standards Produce detailed test reports and support global compliance testing Coordinate product security testing More ❯

Contract Opportunity: Cyber Security Test Engineer - Automotive | Hybrid Cyber Security Test Engineer on a contract basis to support the testing and validation of cybersecurity features in cutting-edge automotive products. This role is pivotal in ensuring compliance with global regulations including UNECE R.155 and China GB 44495, helping our client deliver secure and compliant vehicles to markets … worldwide. You’ll report to the Functional Manager - Product Security Test & Incident Management, and work across test benches and vehicles to execute cybersecurity testing, support homologation, and contribute to the development lifecycle of secure automotive systems. Whats on Offer: Attractive hourly rate (outside IR35) Current end date 31/01/2026 - possibility of extensions (Project is until … week Hybrid - 2 days on site per week (flexible on days) Possible international travel, driving licence essential Key Responsibilities: Prepare and maintain test environments (benches and vehicles) for cybersecurity testing Develop and execute test cases aligned with UNECE R.155, GB 44495, and other standards Produce detailed test reports and support global compliance testing Coordinate product security testing More ❯

Contract Opportunity: Cyber Security Test Engineer - Automotive | Hybrid Cyber Security Test Engineer on a contract basis to support the testing and validation of cybersecurity features in cutting-edge automotive products. This role is pivotal in ensuring compliance with global regulations including UNECE R.155 and China GB 44495, helping our client deliver secure and compliant vehicles to markets … worldwide. You’ll report to the Functional Manager - Product Security Test & Incident Management, and work across test benches and vehicles to execute cybersecurity testing, support homologation, and contribute to the development lifecycle of secure automotive systems. Whats on Offer: Attractive hourly rate (outside IR35) Current end date 31/01/2026 - possibility of extensions (Project is until … week Hybrid - 2 days on site per week (flexible on days) Possible international travel, driving licence essential Key Responsibilities: Prepare and maintain test environments (benches and vehicles) for cybersecurity testing Develop and execute test cases aligned with UNECE R.155, GB 44495, and other standards Produce detailed test reports and support global compliance testing Coordinate product security testing More ❯

The Ellison Institute of Technology (EIT) tackles humanity's greatest challenges by turning science and technology into impactful global solutions. Focused on areas like health, food security, sustainable agriculture, climate change, clean energy, and robotics in an era of artificial intelligence. EIT blends groundbreaking research with practical applications to deliver lasting results. A cornerstone of EIT mission is its … pipelines and platform features, and support bioinformaticians in building and deploying their workflows. You'll be responsible for maintaining infrastructure, designing secure automation pipelines, managing cloud environments, and ensuring security and compliance. You'll collaborate with cross-functional teams, data engineers, backend, and full-stack developers, to build robust, automated deployment pipelines across our environments. Key Responsibilities Design, implement … Infrastructure (OCI). Develop and manage Infrastructure as Code (IaC) with tools like Terraform to enable secure, repeatable deployments. Implement and manage CI/CD pipelines, focusing on automated security testing, deployment, and monitoring. Ensure all aspects of the data platform OCI infrastructure, data ingest pipelines, tool deployments, access controls, and monitoring are developed, tested, and deployed using More ❯

/week) Salary: £35,500 + Bonus Start Your Cybersecurity Career Securing the Future of IoT We're looking for a Junior Product Cybersecurity Analyst to join our IoT Security team at BSI . In this hands-on role, you'll assess the security of connected products from firmware to communication interfaces ensuring they meet the highest standards … for global compliance and resilience.This is a fantastic opportunity to apply your skills in hardware security , embedded systems , and penetration testing , while learning from industry experts and working on real-world cybersecurity challenges that matter. Sponsorship is not available for this position . Suitable candidate will be required to hold permanent rights to work and remain in the … UK. What You'll Do Conduct security testing on IoT product samples, ensuring compliance with key industry standards. Support senior analysts with in-depth technical testing, debugging, and threat evaluation. Collaborate with certification and compliance teams to resolve security issues found during evaluation. Contribute to the development and automation of testing methodologies to keep pace More ❯

/Flexible) Salary: Up to £80,000 + Bonus + Benefits Employment Type: Permanent Overview We are seeking an experienced Senior Penetration Tester with a strong background in infrastructure security testing to join a growing offensive security team. The ideal candidate will have deep technical expertise, the ability to lead and independently deliver complex engagements, and a … passion for uncovering and exploiting vulnerabilities across enterprise environments. You will play a key role in strengthening the organisation's security posture by conducting infrastructure-focused assessments, mentoring junior testers, and influencing remediation strategies. Key Responsibilities Deliver internal and external network and infrastructure penetration tests , including on-premises and cloud-hosted environments Perform testing of Windows & Linux infrastructure … Active Directory, network services, and security appliances Conduct vulnerability exploitation , privilege escalation, and lateral movement to demonstrate full attack paths Lead small engagement teams and oversee delivery quality, documentation, and client communication Produce high-quality, concise, and risk-aligned reports with actionable remediation guidance Support scoping calls, stakeholder workshops, and post-engagement debriefs Contribute to tooling, methodology enhancement, and More ❯

Embedded Systems) Chinese/English bilingual Location: Edinburgh, Scotland (Office-Based) Experience Level: Entry to Mid-Level (1-3 years)Are you ready to shape the future of mobile security? Or innovative, award winning tech client is looking for a Software Engineer with a passion for embedded systems and mobile security.This is an exciting opportunity to work on cutting … edge technology, researching how mobile apps interact with operating systems to enhance security solutions. If you're fluent in Chinese and English and love tackling complex security challenges, this role is for you! What You'll Be Doing: Security-Driven Development - Enhance and extend mobile app security solutions using system-level insights. Mobile OS Research - Dive … into Android, iOS, and HarmonyOS Next to analyse system behaviours. Reverse Engineering & Security Testing - Utilise white hat techniques, including penetration testing and reverse engineering, to identify and address threats. Collaboration & Innovation - Work closely with the team in an office-based setting, contributing to design reviews and security improvements. What You Bring: Bilingual Skills: Fluent in Chinese More ❯

Embedded Systems) Chinese/English bilingual Location: Edinburgh, Scotland (Office-Based) Experience Level: Entry to Mid-Level (1-3 years) Are you ready to shape the future of mobile security? Or innovative, award winning tech client is looking for a Software Engineer with a passion for embedded systems and mobile security. This is an exciting opportunity to work on … cutting-edge technology, researching how mobile apps interact with operating systems to enhance security solutions. If you're fluent in Chinese and English and love tackling complex security challenges, this role is for you! What You'll Be Doing: Security-Driven Development - Enhance and extend mobile app security solutions using system-level insights. Mobile OS Research … Dive into Android, iOS, and HarmonyOS Next to analyse system behaviours. Reverse Engineering & Security Testing - Utilise white hat techniques, including penetration testing and reverse engineering, to identify and address threats. Collaboration & Innovation - Work closely with the team in an office-based setting, contributing to design reviews and security improvements. What You Bring: Bilingual Skills: Fluent in More ❯

Join us at Barclays as an Application Security Engineering Lead, where you'll design and deliver tools that help developers build secure software from the start. Your work will enhance security across the bank, protecting critical systems and sensitive information. To be successful as an Application Security Engineering Lead , you should have experience with: Advanced knowledge of … application security testing methodologies (SAST, DAST, IAST, SCA). Experience with cloud security architectures, DevSecOps integration and pipelines. Advanced knowledge of security principles and guardrails. Coding proficiency in at least 1 major language. Some Other Highly Valued Skills May Include Proven ability to build and scale application security programs from the ground up. Cross-functional … collaboration skills with development, operations, and product teams Vendor management and security tool evaluation expertise. You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role is based in Knutsford/ More ❯

DevSecOps Engineer Permanent | UK (Hybrid - a few times per month) | Up to £84k We're partnering with a respected, forward-thinking professional services firm that's serious about embedding security into every corner of its digital transformation journey. This is a pivotal hire within their growing tech function - they're after a DevSecOps Engineer (or Lead Software Security … that genuinely backs its people. They've built a collaborative, agile culture where innovation is encouraged and development is a priority. If you're someone who thrives on moving security left, guiding engineering teams with clarity, and making a real impact - this is your kind of role. What you'll be doing: You'll lead the charge in shifting … the culture towards DevSecOps across multiple product teams, embedding security from the ground up. That means defining and rolling out a product security strategy that aligns with business goals, working closely with developers to automate and streamline security testing, and supporting pen test activity with smart, secure remediation. You'll be the go-to expert on More ❯