51 to 75 of 173 Penetration Testing Jobs in England

practices and timely remediation of vulnerabilities, aligned with criticality-based policy enforcement. Prioritise weaknesses in IT infrastructure and applications using manual and automated methods, including results from Static Application Testing (SAST) and Software Composition Analysis (SCA) tooling (in conjunction with the Service Transition team). Influence stakeholders to prioritise and drive remediation of process and technology gaps Work with … Cyber Security, Application Teams, and IT Risk to ensure controls are met and vulnerabilities are addressed across infrastructure and applications. Engage and support Cyber Security for remediation of penetration test findings. Engage with Internal and External Auditors as the SME on all matters relating to VM. Stakeholder Engagement & Culture Act as the primary Service Matter Expert and point of … AWS, Azure, Oracle), with a high-level understanding of platforms, operating systems, and technologies. Proven capability in creating and executing comprehensive threat and vulnerability management programmes, including vulnerability scanning, penetration testing, and security awareness training. Proficiency in using vulnerability scanning tools (e.g. Tenable, Qualys, Rapid7, Veracode, JFrog Xray), threat intelligence platforms, and incident response tools. Prior experience implementing More ❯

As a Senior Penetration Tester, you will focus on securing the Company's applications through best practice development lifecycle controls and perform penetration tests to assess the effectiveness of security measures. Full-time Closes 03/12/2025 The Information Security department deal with the security of closed sourced, open source and proprietary applications. The team ensure … applications are developed and implemented in a secure manner, as well as being responsible for identifying and remediating risks efficiently through penetration testing. Utilising your knowledge of Secure Development Lifecycles and code assessment, you will work with the Software Development teams to understand and mitigate application-based vulnerabilities. This role is based within the wider Information Security department, with … application security. This role is eligible for inclusion in the Company's hybrid working from home policy. Preferred Skills and Experience Excellent understanding and practical experience with manual security testing to find vulnerabilities and logical issues, in either web applications or infrastructure. Strong understanding of and demonstrable experience with automated, dynamic and static application security testing tools. Knowledge More ❯

As a Senior Penetration Tester, you will focus on securing the Company's applications through best practice development lifecycle controls and perform penetration tests to assess the effectiveness of security measures. Full-time Closes 03/12/2025 The Information Security department deal with the security of closed sourced, open source and proprietary applications. The team ensure … applications are developed and implemented in a secure manner, as well as being responsible for identifying and remediating risks efficiently through penetration testing. Utilising your knowledge of Secure Development Lifecycles and code assessment, you will work with the Software Development teams to understand and mitigate application-based vulnerabilities. This role is based within the wider Information Security department, with … application security. This role is eligible for inclusion in the Company's hybrid working from home policy. Preferred Skills and Experience Excellent understanding and practical experience with manual security testing to find vulnerabilities and logical issues, in either web applications or infrastructure. Strong understanding of and demonstrable experience with automated, dynamic and static application security testing tools. Knowledge More ❯

adherence to regulatory standards. Consistently monitor and assess cloud environments for vulnerabilities and misconfigurations utilising tools like AWS Inspector, GuardDuty, and Security Hub, complemented by regular vulnerability scanning and penetration testing. Design, implement, and automate enterprise-level security systems and controls -including IAM, SIEM, DLP, firewalls, endpoint protection, and cloud-native guardrails-to safeguard assets across both cloud and … compliance initiatives. Strong understanding of networking protocols, systems architecture , and secure key management (e.g., PCI digital keys, security access modules). Hands-on experience with offensive security techniques , including penetration testing and phishing simulations. Proficiency in programming or scripting languages (such as Python, Bash, or PowerShell) for automation or tooling. Experience with Infrastructure as Code (IaC) and its More ❯

development of cyber security strategies and roadmaps Technical proficiency in a wide range of cyber risk management services, including cyber threat, risk and control assessments, secure software development practices, penetration testing, vulnerability assessments, among others Sound knowledge of applicable laws, compliance regulations, and industry standards as it relates to privacy, security, and compliance Sound knowledge of applicable frameworks More ❯

Lead or support incident response activities: investigation, containment, eradication, recovery, and reporting. Conduct root cause analysis and implement security hardening improvements. Vulnerability & Risk Management Run regular vulnerability scans and penetration testing activities; track remediation of findings. Evaluate risks and recommend security enhancements or compensating controls. Maintain asset inventories and ensure patching and configuration baselines are followed. Security Governance More ❯

Lead or support incident response activities: investigation, containment, eradication, recovery, and reporting. Conduct root cause analysis and implement security hardening improvements. Vulnerability & Risk Management Run regular vulnerability scans and penetration testing activities; track remediation of findings. Evaluate risks and recommend security enhancements or compensating controls. Maintain asset inventories and ensure patching and configuration baselines are followed. Security Governance More ❯

Lead or support incident response activities: investigation, containment, eradication, recovery, and reporting. Conduct root cause analysis and implement security hardening improvements. Vulnerability & Risk Management Run regular vulnerability scans and penetration testing activities; track remediation of findings. Evaluate risks and recommend security enhancements or compensating controls. Maintain asset inventories and ensure patching and configuration baselines are followed. Security Governance More ❯

Defender for Cloud, GuardDuty, CloudTrail, or CloudWatch. System administration on Unix, Linux, or Windows Network forensics, logging, and event management Defensive network infrastructure (operations or engineering) Vulnerability assessment and penetration testing concepts Malware analysis concepts, techniques, and reverse engineering In-depth knowledge of network and host security technologies and products (such as firewalls, network IDS, scanners) and improve More ❯

from our Crewe campus . In this role, you will report to the Functional Manager - Product Security Test & Incident Management and will be responsible for preparing and executing cybersecurity testing for automotive products in compliance with UNECE R . 155 and China GB 44495 regulations. This role plays a critical part in ensuring our vehicle systems are secure and … meet regulatory requirements across global markets. Responsibilities include: Manage and maintain test properties to ensure readiness for cybersecurity testing, including flashing, coding, debugging, analysis, and issue resolution on both test benches and vehicles. Develop cybersecurity test cases aligned with regulatory requirements (e.g., UNECE R155, GB 44495). Execute cybersecurity test cases and generate comprehensive test reports. Support cybersecurity homologation … and compliance testing activities for global regions. Coordinate and plan various levels of product security testing throughout the development lifecycle. About the Person The successful candidate will be a delivery-focused and results-driven cybersecurity test engineer , ideally with hands-on experience in product security testing within the automotive industry . They should possess strong technical skills More ❯

or looking to move into another area of Cyber Security. Our industry-renowned and awarded training program will teach you to perform web application security assessment, network and infrastructure testing, applied research, consultancy skills, and more. You will propel your career and be on the fast track to becoming a full fledge Penetration Tester (aka Security Consultant). … from client communication to report writing You’ll work through real-world scenarios using tools like Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through the programme, you’ll deliver a … gaining CRT or CSTM, you will apply to NCSC for CHECK Team Member accreditation. Transition into client-facing delivery work with confidence and credibility Build a strong foundation in penetration testing and consultancy, ready to specialise or broaden into other areas of cyber security. A successful Associate Has a good level of English command, both written and spoken More ❯

or looking to move into another area of Cyber Security. Our industry-renowned and awarded training program will teach you to perform web application security assessment, network and infrastructure testing, applied research, consultancy skills, and more. You will propel your career and be on the fast track to becoming a full fledge Penetration Tester (aka Security Consultant). … from client communication to report writing You’ll work through real-world scenarios using tools like Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through the programme, you’ll deliver a … gaining CRT or CSTM, you will apply to NCSC for CHECK Team Member accreditation. Transition into client-facing delivery work with confidence and credibility Build a strong foundation in penetration testing and consultancy, ready to specialise or broaden into other areas of cyber security. A successful Associate Has a good level of English command, both written and spoken More ❯

secure, innovative solutions across industries. We foster collaboration, inclusion, and continuous growth, with networks supporting diversity, equity, and belonging. What You'll do: Lead and manage threat intelligence-led penetration tests across applications, infrastructure, cloud (AWS/Azure/O365), APIs, and OT Develop advanced test plans, identify critical assets, and deliver detailed, actionable reports for technical and business … team capabilities Contribute to research on emerging threats and attack techniques to strengthen proactive security What You'll Bring: CREST CRT (or higher) certification - essential 5+ years' experience in penetration testing with strong understanding of adversarial tactics and threat intelligence Expertise across network, cryptography, vulnerabilities, and attack vectors Strong communication and reporting skills Experience with Breach Attack Simulation More ❯

customers across enterprise, public sector and fast growing scale ups. Its Security Practice protects clients through a powerful mix of Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a world class Security Advisory function. As a Senior SOC Analyst, you will take a leading role in identifying, investigating and responding More ❯

Teams VMware Server and Storage Hardware Microsoft Windows Operating Systems (Server 2012 to 2022 & Windows 7 to 11) Linux Operating Systems On-Premise Active Directory Networking - Cisco/Fortigate Penetration Testing & Vulnerability Management Applications Cloud based Web Proxy Anti-virus/Anti-malware tooling Disk/Data Encryption About You The right candidate for this role will behave More ❯

from containment to recovery. You’ll document incidents thoroughly, follow established playbooks, and help improve them over time. Automation will be key to streamlining investigations and enriching threat intelligence. Testing and Validation You’ll take part in cyber crisis simulations, penetration testing, and table-top exercises to ensure our defences are robust and response plans are effective. More ❯

from containment to recovery. You’ll document incidents thoroughly, follow established playbooks, and help improve them over time. Automation will be key to streamlining investigations and enriching threat intelligence. Testing and Validation You’ll take part in cyber crisis simulations, penetration testing, and table-top exercises to ensure our defences are robust and response plans are effective. More ❯

practices and timely remediation of vulnerabilities, aligned with criticality-based policy enforcement. Prioritise weaknesses in IT infrastructure and applications using manual and automated methods, including results from Static Application Testing (SAST) and Software Composition Analysis (SCA) tooling (in conjunction with the Service Transition team). Influence stakeholders to prioritise and drive remediation of process and technology gaps Work with … Cyber Security, Application Teams, and IT Risk to ensure controls are met and vulnerabilities are addressed across infrastructure and applications. Engage and support Cyber Security for remediation of penetration test findings. Engage with Internal and External Auditors as the SME on all matters relating to VM. Stakeholder Engagement & Culture Act as the primary Service Matter Expert and point of … AWS, Azure, Oracle), with a high-level understanding of platforms, operating systems, and technologies. Proven capability in creating and executing comprehensive threat and vulnerability management programmes, including vulnerability scanning, penetration testing, and security awareness training. Proficiency in using vulnerability scanning tools (e.g. Tenable, Qualys, Rapid7, Veracode, JFrog Xray), threat intelligence platforms, and incident response tools. Prior experience implementing More ❯

Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks and systems for threats; lead incident response efforts Perform root cause analysis and maintain incident response protocols Recommend enhancements to improve More ❯

services to customers across enterprise, public sector and fast growing scale ups. Its Security Practice protects clients through capabilities including Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a consulting led Security Advisory practice. As a Senior Security Engineer, you will be responsible for designing, implementing and maintaining the tools More ❯

Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks and systems for threats; lead incident response efforts Perform root cause analysis and maintain incident response protocols Recommend enhancements to improve More ❯

tools Operational (40%) Manage security environments across Azure and AWS infrastructure Coordinate security incident response and vulnerability remediation Oversee security monitoring, alerting, and detection capabilities Manage vulnerability assessment and penetration testing programs Maintain identity and access management controls Compliance & Assurance (30%) Maintain ISO27001 certification and manage audit cycles Ensure PCI/DSS compliance for payment processing systems Manage More ❯

tools Operational (40%) Manage security environments across Azure and AWS infrastructure Coordinate security incident response and vulnerability remediation Oversee security monitoring, alerting, and detection capabilities Manage vulnerability assessment and penetration testing programs Maintain identity and access management controls Compliance & Assurance (30%) Maintain ISO27001 certification and manage audit cycles Ensure PCI/DSS compliance for payment processing systems Manage More ❯

forefront of emerging threats, vulnerabilities, and offensive security methodologies to inform team strategy and tooling Collaborate with SOC team and selected vendor to plan and execute annual purple team testing Lead and manage a team of security professionals and vendor resources to conduct regular risk assessments to identify and exploit vulnerabilities, mis-configurations within EMEA internal & external infrastructure. Implement … improve defensive strategies and security measures to prevent real-world attacks. Create executive report from technical assessment report Support Information Security incidents where requested. Manage grey and black box testing solution including identified threats and vulnerabilities Availability for out-of-hours support when necessary Skills and Experience: Must have combined 10+ years of experience with information technology and recent … experience in information security with an offensive security discipline Proven track record of leading Red Team engagements or advanced penetration testing engagements in complex enterprise environments Deep familiarity with C2 frameworks (e.g., Cobalt Strike, Mythic, Sliver), evasion techniques, and post-exploitation tooling Advanced proficiency in scripting or programming languages (e.g., Python, PowerShell, Bash, C/C++) Expert-level More ❯

best practices. Strong analytical and prioritization skills with a pragmatic, risk-based approach to decision-making. Leadership experience Nice to have: If you have come from a development/penetration testing background this would be advantageous for my client. Pen testing experience Certifications (CEH)/OSCP This role is on a hybrid basis with 2 - 3 days More ❯