126 to 150 of 173 Penetration Testing Jobs in England

Internal Penetration Tester - Hybrid in London - Inside IR35 - 6 months We are seeking an experienced Internal Pentester to join an international client secure their networks. This critical role, based in London (2-3 days per week), requires deep expertise in conducting manual and automated security assessments across networks, applications, cloud platforms, and infrastructure. You will identify and exploit vulnerabilities … simulate real-world attacks, and deliver actionable remediation guidance to strengthen defenses. Key Responsibilities: Plan and execute penetration tests - perform manual and automated testing across applications, APIs, internal/external networks, cloud environments, and Active Directory. Identify, exploit, and validate vulnerabilities - uncover security flaws such as insecure authentication, authorization bypasses, misconfigurations, and privilege escalation paths. Simulate real-world … steps What You Will Ideally Bring: Application security knowledge - strong grasp of OWASP Top 10 and API security issues.Contract Details: Hands-on pentesting experience - 3-7+ years in penetration testing, red teaming, or offensive security across networks, cloud, AD, and web apps. Offensive security tooling - expertise with Nmap, Nessus, Masscan, Burp Suite, Metasploit, Cobalt Strike, Mimikatz, SQLmap More ❯

Internal Penetration Tester - Hybrid in London - Inside IR35 - 6 months We are seeking an experienced Internal Pentester to join an international client secure their networks. This critical role, based in London (2-3 days per week), requires deep expertise in conducting manual and automated security assessments across networks, applications, cloud platforms, and infrastructure. You will identify and exploit vulnerabilities … simulate real-world attacks, and deliver actionable remediation guidance to strengthen defenses. Key Responsibilities: Plan and execute penetration tests - perform manual and automated testing across applications, APIs, internal/external networks, cloud environments, and Active Directory. Identify, exploit, and validate vulnerabilities - uncover security flaws such as insecure authentication, authorization bypasses, misconfigurations, and privilege escalation paths. Simulate real-world … steps What You Will Ideally Bring: Application security knowledge - strong grasp of OWASP Top 10 and API security issues.Contract Details: Hands-on pentesting experience - 3-7+ years in penetration testing, red teaming, or offensive security across networks, cloud, AD, and web apps. Offensive security tooling - expertise with Nmap, Nessus, Masscan, Burp Suite, Metasploit, Cobalt Strike, Mimikatz, SQLmap More ❯

processes. Help proactively assess security risk through product deep dives, threat modeling, and design, architecture and implementation reviews. Review and improve existing security processes related to product assessments, pen testing, and bug bounty findings. Develop product security controls and supervising strategies to grow our threat detection capabilities. Seek opportunities for security tooling and automation. What You'll Bring 5+ … of common vulnerabilities and emerging threats. Experience with authentication and authorization standards, including OAuth and SAML, and their weaknesses. Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits. Experience with Cloud Computing providers like AWS, GCP, Azure. Problem solving skills to resolve problems effectively and creatively while maintaining a high More ❯

re Looking For Proven experience managing enterprise ISMS and leading ISO 27001 audits Deep understanding of cyber threats, cloud security (Azure, M365), and compliance frameworks Skilled in vulnerability management, penetration testing, and supplier assurance Strong communicator with the ability to translate technical risk into business impact Experience with tools like ISMS Online, Qualys VMDR, and Cofense phishing simulation More ❯

actors, and exploit techniques Mentor junior team members and contribute to tooling, methodology, and lab development Required Skills & Experience 3+ years' experience in red teaming, offensive security, or advanced penetration testing Strong knowledge of attacker frameworks (e.g., MITRE ATT&CK, NIST adversary simulation guidelines) Highly proficient with red team tools and techniques (e.g., Cobalt Strike, Mimikatz, Sliver, BloodHound More ❯

both technical teams and senior stakeholders. Desirable Skills 3CX VoIP solutions Email security and filtering (Mimecast, Barracuda) SonicWALL appliances Azure Site Recovery SQL Server, Power BI, and Data Visualisation Penetration testing or vulnerability scanning experience Project management appreciation Qualifications Required: Microsoft Certified: Azure Administrator Associate (AZ-104) Microsoft Certified: Azure Solutions Architect Expert (AZ-305) Preferred: Azure Network More ❯

Develop and maintain security policies, standards, and controls, tailored for cross jurisdictional compliance (e.g. GDPR, DORA, local tax/financial regulations). Lead periodic risk and security assessments (e.g. penetration testing, threat modeling, audit readiness) for all product modules (registration, returns, payment, analytics). Oversee third-party/vendor risk management, especially for integrations with government tax systems More ❯

set standards and build documentation for teams to guide them. You will work closely with both the Cyber and Information Security directorate, and bespoke software teams, helping to organise penetration testing and other security critical tests of applications. What You Need Cyber and Information Security Knowledge: Understanding of cyber and information security principles and how they underpin all More ❯

dependencies. Proven hands-on experience in security architecture — not just advisory. You’ve designed, implemented, and delivered secure systems yourself (this is essential) Background in security engineering, SecOps, pen testing, or other hands-on technical roles. Excellent communication skills to engage both technical and non-technical audiences. Adaptability to work across varied industries and technologies. Experience in regulated or More ❯

dependencies. Proven hands-on experience in security architecture — not just advisory. You’ve designed, implemented, and delivered secure systems yourself (this is essential) Background in security engineering, SecOps, pen testing, or other hands-on technical roles. Excellent communication skills to engage both technical and non-technical audiences. Adaptability to work across varied industries and technologies. Experience in regulated or More ❯

dependencies. Proven hands-on experience in security architecture — not just advisory. You’ve designed, implemented, and delivered secure systems yourself (this is essential) Background in security engineering, SecOps, pen testing, or other hands-on technical roles. Excellent communication skills to engage both technical and non-technical audiences. Adaptability to work across varied industries and technologies. Experience in regulated or More ❯

experience around Security, Data, Cloud, Service and Solution. You will be seeing designs through from start to finish incorporating everything from technology to solution, assurance, governance, and security (pen testing) - Not from a hands-on perspective but from a design perspective. You will need to be client facing and be able to make complex designs seem simple to customers. More ❯

regulations (e.g. NCSC, ISO, NIST, PCI, GDPR). Contribute to secure software and infrastructure development, applying modern tools and practices. Work with Continuous Security, CI/CD, and automated testing approaches. Apply expertise in network security (OSI, TCP/IP), web application security (OWASP), and cryptography (PKI, TLS). Mentor, coach, and support the development of junior staff. Communicate … both technical and non-technical audiences. Essential Skills & Experience Proven track record in secure cloud solution design and delivery. Strong knowledge of application or infrastructure architecture. Hands-on experience testing software and infrastructure security. Familiarity with modern security engineering approaches and agile delivery methods. Excellent stakeholder engagement and communication skills. Demonstrated ability to mentor and develop colleagues. Desirable Skills … Experience with identity management and authentication/authorisation. Knowledge of governance, risk, compliance, operational security, and supply chain security. Penetration testing certifications (e.g. OSCP, CREST, TIGER). Experience leading security engineers and teams. Why Join Competitive salary £100,000 – £120,000 + 10% bonus. Remote-first role with flexibility across the UK. Work on mission-critical systems that More ❯

years in Cyber Security roles Defence Experience: A solid background in working on defence-related projects. Risk Assessment and Architecture: Proven experience in creating risk assessment and architecture documentation. Penetration Testing Processes: A comprehensive understanding of pen testing procedures, including reporting, triaging, and devising remediation plans. MOD Knowledge: Familiarity with Ministry of Defence (MOD) protocols - JSP453 . More ❯

the current Enterprise Architect to understand and document: The council s ICT Strategy and technical architecture. Existing security architecture, including compliance with PSN, PCI-DSS, LGA Cyber Security, and penetration testing protocols. Key platforms and technologies in use, including Microsoft Azure, M365, Active Directory, Intune, endpoint management, and any bespoke systems. Governance structures, design principles, and procurement processes. More ❯

the current Enterprise Architect to understand and document: The council’s ICT Strategy and technical architecture. Existing security architecture, including compliance with PSN, PCI-DSS, LGA Cyber Security, and penetration testing protocols. Key platforms and technologies in use, including Microsoft Azure, M365, Active Directory, Intune, endpoint management, and any bespoke systems. Governance structures, design principles, and procurement processes. More ❯

VLANS, TCP/IP ect. Azure Qualifications (e.g. AZ-104, AZ-305, AZ-700, AZ-500, AZ-140). Desirable: Experience with filtering tools, Data (PowerBI, SQL), SonicWALL, Pen testing, VoIP and site recovery. Duties of the Azure Solutions Architect: Design and architect modern IT infrastructure solutions, focusing on Azure and Microsoft 365 technologies. Lead and end to end More ❯

VLANS, TCP/IP ect. Azure Qualifications (e.g. AZ-104, AZ-305, AZ-700, AZ-500, AZ-140). Desirable: Experience with filtering tools, Data (PowerBI, SQL), SonicWALL, Pen testing, VoIP and site recovery. Duties of the Azure Solutions Architect: Design and architect modern IT infrastructure solutions, focusing on Azure and Microsoft 365 technologies. Lead and end to end More ❯

systems security. · Guide clients in establishing cybersecurity policies, standards, and procedures. · Manage cybersecurity training & awareness services for clients from design to implementation. · Understanding of security analysis, security events, and penetration testing. Soft Skills: · Strong interpersonal and communication skills; experience with cross-cultural communications. · Calmness and clarity of thought under pressure and ability to maintain positive attitude. · Agile and flexible More ❯

and internationally as well as an opportunity to work in a lab-based environment. There will also be further opportunities to develop practical cyber security skills such as "pen testing", "capability and vulnerability analysis" in the new cyber lab. Other things that this role can provide is an opportunity to engage with stakeholders, engineering teams and sub-contractors to More ❯

and internationally as well as an opportunity to work in a lab-based environment. There will also be further opportunities to develop practical cyber security skills such as "pen testing", "capability and vulnerability analysis" in the new cyber lab. Other things that this role can provide is an opportunity to engage with stakeholders, engineering teams and sub-contractors to More ❯

Penetration Tester | £40K–£60K + Bonus + Hybrid/remote We’re hiring a Penetration Tester to join one of the UK’s most respected, CREST-accredited cyber security consultancies. You’ll work across public and private sector projects, helping clients identify vulnerabilities, strengthen defences, and build resilience against real-world attacks. This role offers autonomy, variety, and … technical depth — all within a collaborative team that genuinely values knowledge sharing, personal growth, and work-life balance. What You’ll Do Conduct penetration tests across web apps, APIs, networks, cloud, and mobile platforms. Participate in Red Team and social engineering engagements. Deliver clear, actionable reports and guide clients through remediation. Contribute to scoping calls, proposals, and client presentations. … Mentor junior testers and help shape the consultancy’s internal security capability. What You’ll Bring 2–5 years’ experience in ethical hacking or penetration testing. Strong understanding of OWASP, web, and infrastructure testing. Experience with Burp Suite, Nmap, Nessus, Qualys, Metasploit, Kali Linux. Familiarity with cloud security (AWS, Azure, or GCP). Confident communicator with client-facing experience. More ❯

clearance We are searching for colleagues to join our expanding consultancy team. Our new colleagues will work as an integral part of our team to primarily deliver high quality penetration testing, red teaming and otherbespokesecurity consultancy click apply for full job details More ❯

A good background in Security Operations\ Incident Response in a managerial or lead role Strong technical knowledge Demonstrable stakeholder management experience A technical background in infrastructure, security engineering or penetration testing preferred Please send your CV for immediate consideration. More ❯

A good background in Security Operations\ Incident Response in a managerial or lead role Strong technical knowledge Demonstrable stakeholder management experience A technical background in infrastructure, security engineering or penetration testing preferred Please send your CV for immediate consideration. More ❯