26 to 50 of 86 Penetration Testing Jobs in England

contributing to the development and refinement of incident response plans and playbooks. You will support vulnerability management activities, including vulnerability assessments, annual audits, and penetration testing. This includes preparing and presenting incident, threat, and compliance reporting to stakeholders at all levels, including compiling a monthly SIRO report. Continuous improvement ...

change, systems upgrades, incident response, and technology risk management. Govern system access controls, IT policies, and disaster recovery processes. Oversee cybersecurity strategy, controls, testing (including penetration testing), and ongoing monitoring. Ensure compliance with FCA/PRA cyber requirements, NCSC guidance, and GDPR. Own the incident response plan ...

Role: Penetration Tester Location: Leeds (Hybrid + Site Visits) Salary: £40,000 - £45,000 DOE Type: Permanent, Full-Time Summary: We are looking for a skilled and motivated Penetration Tester to join a growing security team in Leeds. The main purpose of this role is to deliver high … base. This role operates on a hybrid basis in Leeds, with occasional site visits required. Key Responsibilities: Carry out web application, API, and infrastructure penetration tests, taking ownership of engagements from scoping through to final report delivery. Support purple team activities including phishing simulations and malicious insider style assessments. ...

Strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. Additional Skills: Experience with Vulnerability Assessment (VA) tools, Penetration Testing, and Web Application Testing is a significant bonus. Desired Qualifications: Mandatory: Splunk Certified Cybersecurity Defense Engineer. CrowdStrike: Ideally 2 or more ...

Strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. Additional Skills: Experience with Vulnerability Assessment (VA) tools, Penetration Testing, and Web Application Testing is a significant bonus. Desired Qualifications: Mandatory: Splunk Certified Cybersecurity Defense Engineer. CrowdStrike: Ideally 2 or more ...

risk assessments to maintain a strong security framework Monitor and maintain security controls, producing remediation strategies where necessary Conduct vulnerability assessments and support penetration testing activities Collaborate with internal IT, cloud, and global teams to maintain secure infrastructure Work alongside security operations teams to address threats and operational ...

experience, including strong SPL capability Solid understanding of networking, cloud security (AWS/Azure), and the MITRE ATT&CK framework Experience with vulnerability management, penetration testing, or web application testing is advantageous ...

understanding of: Network security & protocols Cloud security (AWS/Azure) MITRE ATT&CK framework Desirable Experience Vulnerability Assessment tools (2+ years preferred) Exposure to Penetration Testing/Web Application Testing Experience developing security policies and standards Certifications (Highly Desirable) CrowdStrike Certifications (CCFA/CCFR/CCSE – ideally ...

Enterprise Security (ES) Solid understanding of: Network protocols Cloud security (AWS/Azure) MITRE ATT&CK framework Additional desirable experience: Vulnerability Assessment tools Penetration Testing/Web Application Testing exposure Security policy and standards development Certifications (Desirable) Cyber Security: CompTIA Security+, Network+, CySA+, GSEC CISSP, GCIH, GCIA ...

another area of Cyber Security. Our industry-renowned and awarded training program will teach you to perform web application security assessment, network and infrastructure testing, applied research, consultancy skills, and more. You will propel your career and be on the fast track to becoming a full fledge Penetration … writing You’ll work through real-world scenarios using tools like Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through ...

wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP ...

desirable) Technical Skills Security architecture and cloud security (AWS) SIEM, EDR and SOC tools ISO 27001/ISO 42001 implementation Vulnerability management and penetration testing oversight Data protection, encryption and privacy controls Third-party risk management tools and processes Leadership & Competencies Inspiring leader who develops teams and delegates ...

assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation, and problem-solving capability Knowledge ...

automate our Azure Sentinel capabilities. Incident Response: Investigate real-world threats (malware, phishing, cloud misconfigurations) and ensure rapid remediation. Vulnerability Management: Conduct regular assessments, penetration testing, and risk analysis. Compliance & GRC: Maintain SOC 2 Type II accreditation and lead ISO 27001 readiness. Administer compliance platforms like Drata. DevSecOps ...

sensitive financial infrastructure o ISO 27001, SOC 2, DORA, or equivalent - hands-on implementation, not just audit participation o Red team, adversarial simulation, or penetration testing programme design - experience on both sides of the exercise To find out more about Huxley, please visit (url removed) Huxley, a trading ...

large enterprise and public sector environments. Our security function supports clients through capabilities such as Managed Detection and Response (MDR), threat hunting, vulnerability management, penetration testing, and incident response, alongside advisory-led consulting engagements. The organization is experiencing strong growth and continues to invest in its people, platforms ...

sensitive financial infrastructure o ISO 27001, SOC 2, DORA, or equivalent - hands-on implementation, not just audit participation o Red team, adversarial simulation, or penetration testing programme design - experience on both sides of the exercise What We're Looking For You are a builder first and a security ...

between technical security and the wider business, translating requirements clearly Drive improvements across: SOC/SIEM capability (currently OpenText) Incident response and vulnerability management Penetration testing and security assurance Cloud security across Microsoft and Google environments Support key transformation programmes, particularly across data (data lake, analytics, data science ...

support to implementation and integration activities, working closely with software, systems, and integration teams Support and review security verification, validation, and test activities, including penetration testing, vulnerability analysis, and remediation activities Lead and facilitate threat modelling and TARA workshops with engineering teams and Tier 1 suppliers ...

Microsoft 365 security tools (Defender, Purview, Sentinel, Entra ID) Support ISO 27001 compliance and broader security frameworks Assist with third-party risk assessments and penetration testing Contribute to security policies, controls, and incident response Promote security awareness across the business Experience: 5+ years in cybersecurity or security operations ...

Enterprise Security (ES) Solid understanding of networking, cloud security (AWS/Azure), and MITRE ATT&CK Experience in vulnerability assessment (desirable) Exposure to penetration testing and web application security (desirable) Qualifications Cyber security certifications (e.g. Security+, CySA+, CISSP, GCIH, CCSP) CrowdStrike certifications (e.g. CCFA, CCFR, CCSE) - preferred Splunk ...

standards (e.g. ISO 27001/27002, NCSC guidance, Cyber Essentials, NIS/CAF) Experience in application security, including threat modelling, security reviews, and penetration testing Familiarity with enterprise architecture frameworks such as TOGAF (or equivalent) Relevant certifications (e.g. Azure Security Engineer/Architect) highly desirable Desirable Exposure ...

such as 007/SPF, NCSC Cloud Security Principles, NCSC Principles for Using Software as a Service (SaaS) securely, Cyber Essentials, and the CHECK penetration testing scheme Broad familiarity with UK Government physical and personnel security such as NPSA and UKSV Risk assessment using recognised standards such ...

Skills · Experience with OT IDS technologies (e.g. Claroty, Nozomi, Dragos). · Knowledge of secure ICS engineering lifecycle and OT asset management. · Experience leading OT penetration testing or red‐team style engagements. · Understanding of IoT/IIoT integrations and cloud‐connected OT systems. · Consulting & Leadership Skills · Ability to translate ...

Advanced Splunk (SPL + Enterprise Security) expertise Solid understanding of networks, cloud (AWS/Azure), and MITRE ATT&CK Bonus: Vulnerability Assessment and Pen Testing experience MUST HAVE LOCAL GOVERNMENT EXPERIENCE Certifications (desirable): Splunk Certified Cybersecurity Defense Engineer (highly preferred) CrowdStrike certifications (CCFA, CCFR, CCSE) CISSP, GCIH, or similar ...