5 of 5 Penetration Testing Jobs in the East of England

native services and public APIs that underpin enterprise-scale AI systems. You’ll work in a fast-paced Scrum team alongside developers, architects, and data scientists to build automated testing frameworks, AI evaluation tools, and validation strategies. If you thrive on experimentation, problem-solving, and building robust systems that scale, this is the opportunity for you. Key Responsibilities Test … hooks in collaboration with engineering teams. Ensure compliance with AI regulations and standards such as NIST AI RMF and the EU AI Act . Conduct threat modelling and security testing for APIs and AI services. Provide early feedback to improve design and reduce defects. Mentor junior engineers and contribute to a culture of innovation and continuous improvement. Skills & Experience … 12+ years in software testing and validation for cloud-native applications using Microsoft and .NET . Expertise in automated testing frameworks such as Selenium , Postman , JMeter , or custom-built solutions. Hands-on experience with Azure DevOps , CI/CD pipelines , and containerized environments ( Docker , Kubernetes ). Strong knowledge of API testing , performance profiling, and security practices including More ❯

9am - 5pm Benefits: Mentorship: Direct support from senior security consultants Funded training and certifications (e.g., CompTIA, CREST, Cyber Essentials assessor status) Exposure to varied projects, from compliance audits to penetration testing Paid industry events and conferences to build knowledge and network Training & development opportunities Regular, companywide events and activities Future prospects: 90% of QA apprentices secure permanent employment More ❯

coding. Collaborating with architects and developers to review designs and code for vulnerabilities. Embedding/improving threat modelling and secure development practices into the SDLC. Designing and integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and … in an on-call rotation. What we’re looking for 3+ years in software engineering plus 2+ years in application security. Strong knowledge of OWASP, application vulnerabilities, and security testing techniques. Experience with secure web application development and Agile/DevOps methodologies. Familiarity with pen testing, bug bounty, or hacker community collaboration. Strong communication skills – able to influence More ❯

coding. Collaborating with architects and developers to review designs and code for vulnerabilities. Embedding/improving threat modelling and secure development practices into the SDLC. Designing and integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and … in an on-call rotation. What we're looking for 3+ years in software engineering plus 2+ years in application security. Strong knowledge of OWASP, application vulnerabilities, and security testing techniques. Experience with secure web application development and Agile/DevOps methodologies. Familiarity with pen testing, bug bounty, or hacker community collaboration. Strong communication skills – able to influence More ❯

hybrid role : Location: Cambridge, UK with travel to the office once per week. What you'll be doing: Provide guidance on security best practices and compliance and undertake security testing Identify Application security risks and requirements for new projects and system developments Represent cyber in review sprints on application security prior to live implementation Collaborate with the architecture and … threat modelling capability and evangelise secure coding in the development lifecycle Provide technical specialist advice to ensure that security standards are understood and can be complied with Develop security testing plans and integrate into the software development lifecycle (S-SDLC) Perform and oversee security testing and manage remediation of identified vulnerabilities Take part in the security incident response … we're looking for: At least 3 years of experience in software engineering. At least 2 years of experience in application security. In-depth knowledge of application security vulnerabilities, testing techniques, and the OWASP framework. Team player able to build relationships across the organization. In-depth understanding of secure web application development. Experience in web application and Agile development More ❯