26 to 50 of 116 Penetration Testing Jobs in London

Security Engineer – IAM | DORA | Pen Testing | Payments – Banking London/Glasgow | £750/day (Inside IR35) | Financial Services We're seeking a seasoned Security Engineer with a proven track record in banking environments to join a high-impact team driving resilience and security across mission-critical systems. You’ll … bring deep expertise across Identity & Access Management (IAM) , penetration testing , and 3rd party risk , with strong familiarity with DORA compliance and payments/settlement systems . What You’ll Do: Lead and execute advanced penetration testing and vulnerability assessments Own IAM strategy and operations , ensuring airtight … in fast-paced, regulated environments with a laser focus on resilience What You’ll Bring: Hands-on banking experience – essential Expertise in IAM, pen testing, third-party risk , and regulatory frameworks (DORA) In-depth knowledge of financial systems, especially payments & settlement platforms Strong communicator, highly analytical, and security-obsessed More ❯

Security Engineer – IAM | DORA | Pen Testing | Payments – Banking London/Glasgow | £750/day (Inside IR35) | Financial Services We're seeking a seasoned Security Engineer with a proven track record in banking environments to join a high-impact team driving resilience and security across mission-critical systems. You’ll … bring deep expertise across Identity & Access Management (IAM) , penetration testing , and 3rd party risk , with strong familiarity with DORA compliance and payments/settlement systems . What You’ll Do: Lead and execute advanced penetration testing and vulnerability assessments Own IAM strategy and operations , ensuring airtight … in fast-paced, regulated environments with a laser focus on resilience What You’ll Bring: Hands-on banking experience – essential Expertise in IAM, pen testing, third-party risk , and regulatory frameworks (DORA) In-depth knowledge of financial systems, especially payments & settlement platforms Strong communicator, highly analytical, and security-obsessed More ❯

to be successful: At least 2 years' industry experience in offensive security including knowledge and experience in some or all of the following: Network penetration testing and a thorough understanding of network protocols Web application penetration testing and a thorough understanding of application layer vulnerabilities Developing More ❯

Contribute to leading-edge security and resilience efforts, advancing protective strategies and propelling continuous improvement. As an Assessments & Exercises Vice President in Penetration Test, you will play a significant role in enhancing our firm's cybersecurity and resiliency posture. You will use industry-standard assessment methodologies and techniques to … proactively identify risks and vulnerabilities in our people, processes, and technology. As a key member of our team, you will perform hands-on penetration testing of some of our most critical applications, platforms, and the perimeter. You will collaborate with application developers to understand and mitigate vulnerabilities, and … looking for team members who are eager to learn, drive to excel, and have excellent technical knowledge of security concepts and proven expertise in penetration testing. Job responsibilities Design and execute testing and simulations - such as penetration tests, technical controls assessments, cyber exercises, or resiliency simulations, and More ❯

Conducting comprehensive security assessments: This involves evaluating an organization's IT infrastructure, networks, systems, and applications to identify potential weaknesses and vulnerabilities. Performing vulnerability testing and penetration testing: Using various tools and techniques (like Nessus, Burp Suite, Metasploit), you'll simulate attacks to uncover exploitable flaws. Developing More ❯

Conducting comprehensive security assessments: This involves evaluating an organization's IT infrastructure, networks, systems, and applications to identify potential weaknesses and vulnerabilities. Performing vulnerability testing and penetration testing: Using various tools and techniques (like Nessus, Burp Suite, Metasploit), you'll simulate attacks to uncover exploitable flaws. Developing More ❯

with other teams to establish and enforce network access policies, ensuring that only authorized individuals and devices have the correct access privileges. Proactive Security Testing and Vulnerability Management Conduct vulnerability assessments and penetration testing to identify and address security weaknesses in mobile network architectures. Develop and enforce More ❯

risk, and data privacy issues. The analyst serves as an expert on cybersecurity protection, detection, response, and recovery. This individual is responsible for coordinating penetration testing and managing internal and external cybersecurity analysts to detect, mitigate, and analyze threats. Works closely with other teams to develop controls such … security technologies by developing selection criteria to identify appropriate security solutions to support strategic, operational needs, and security requirements. Participate in the development and testing of the security incident response plan, act as the incident response leader. Develop security, risk, and compliance reports and alerts. Participate in the yearly … review of policies and procedures to support information security, risk, and security compliance activities. Participate in developing, testing, and implementation of disaster recovery procedures for the cybersecurity technology in place. Manage cybersecurity projects to ensure that the delivery is on-time, within budget, and adopted to meet the company More ❯

the IT team, Accreditor and affected business units. Maintain accreditation and compliance with frameworks such as Secure by Design, NIST-800-53, STRAP; Security Testing - Scope and oversee penetration testing, vulnerability scanning, and other security validation activities, to ensure effectiveness of security controls; Design and Architecture Review More ❯

and ensure compliance with IEC 62443, NIST SP 800-82, NERC CIP, ISO 27001, and NIS2 frameworks. Vulnerability & Risk Management: Perform vulnerability analysis and penetration testing, and implement risk mitigation strategies tailored for ICS/SCADA and IoT environments. IT-OT Integration: Work closely with IT, engineering, and More ❯

and regulations. Collaborate with development teams to integrate security throughout the software development lifecycle (SDLC). Conduct regular security assessments, including vulnerability scans and penetration testing, to identify and mitigate risks. Stay up-to-date with the latest security trends, vulnerabilities, and emerging threats, and provide recommendations for More ❯

and regulations. Collaborate with development teams to integrate security throughout the software development lifecycle (SDLC). Conduct regular security assessments, including vulnerability scans and penetration testing, to identify and mitigate risks. Stay up-to-date with the latest security trends, vulnerabilities, and emerging threats, and provide recommendations for More ❯

/CMMI Certification or alignment with recognised industry standards Compliance with applicable regulations & legislation Building and implementing governance & risk management processes Design implementation and testing of security tooling BC/DR & Incident response capability building and testing Production of threat intelligence reports and research Supply Chain Risk Management … base requirement to demonstrate understanding of and find ways to integrate activity with BlueVoyant colleagues across the globe, specifically Digital Forensics, Incident Response and Penetration Testing specialists as well as wider BlueVoyant service offerings when appropriate, to produce threat-aware products, services and outputs that are impactful, efficient More ❯

a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS More ❯

and supporting Entra (Azure AD), Azure IaaS/PaaS Management of backup/recovery solutions Experience with operating system hardening, vulnerability assessments, security audits, penetration testing, intrusion prevention systems and other security control systems for example PAM, SIEM etc. Experience with endpoint security, content filtering, vulnerability scanning and More ❯

to proactively mitigate risks Perform proactive threat hunting, research, and analysis, delivering actionable intelligence to IT and security teams Perform security assessments, audits, and penetration testing using industry-standard methodologies and tools. Deliver security awareness training and phishing simulations to internal stakeholders. Ensure compliance with company policies and More ❯

to proactively mitigate risks Perform proactive threat hunting, research, and analysis, delivering actionable intelligence to IT and security teams Perform security assessments, audits, and penetration testing using industry-standard methodologies and tools. Deliver security awareness training and phishing simulations to internal stakeholders. Ensure compliance with company policies and More ❯

and supporting Entra (Azure AD), Azure IaaS/PaaS Management of backup/recovery solutions Experience with operating system hardening, vulnerability assessments, security audits, penetration testing, intrusion prevention systems and other security control systems for example PAM, SIEM etc. Experience with endpoint security, content filtering, vulnerability scanning and More ❯

cases of technical security products, such as firewalls, anti-virus, web proxies, SIEM, IDS/IPS, DLP, and EDR. Familiarity with vulnerability scanning and penetration testing tools and techniques. Qualifications: A university degree in one of the following fields is preferred (but not required): Cyber/Information Security More ❯

Oversee and maintain security equipment including firewalls, intrusion prevention systems (IPS), web application firewalls (WAF), and antivirus systems. Perform periodic security drills and regular penetration testing to ensure the integrity of security systems. Harden security controls across Windows and Linux environments and ensure regular patching and firmware upgrades. … encryption practices during usage, storage, transfer, and disposal. Conduct security evaluations on network and firewall policies and manage application security in both development and testing phases (SAST, DAST). Liaise with internal audit teams and international cybersecurity operations centres to implement security policies and controls. Provide cybersecurity training to More ❯

Oversee and maintain security equipment including firewalls, intrusion prevention systems (IPS), web application firewalls (WAF), and antivirus systems. Perform periodic security drills and regular penetration testing to ensure the integrity of security systems. Harden security controls across Windows and Linux environments and ensure regular patching and firmware upgrades. … encryption practices during usage, storage, transfer, and disposal. Conduct security evaluations on network and firewall policies and manage application security in both development and testing phases (SAST, DAST). Liaise with internal audit teams and international cybersecurity operations centres to implement security policies and controls. Provide cybersecurity training to More ❯

Cyber Vulnerability Management Analyst Fixed Term Contract (Maternity Cover) 18 months Must have experience working on Tenable.IO, analysed vulnerabilities form penetration testing reports, work with vendors to remediate vulnerabilities, has patch management experience, has patched/worked on windows, Linux and Azure cloud systems, analyse and remediate SOC … term goals. The role of Cyber Vulnerability Management Analyst is to deal with all remediation work in relation to identified vulnerabilities inclusive of patch testing and implementation within SLA. The job holder will work very closely with all third-party vendors involved in the remediation process. The job holder More ❯

Cyber Vulnerability Management Analyst Fixed Term Contract (Maternity Cover) 18 months Must have experience working on Tenable.IO, analysed vulnerabilities form penetration testing reports, work with vendors to remediate vulnerabilities, has patch management experience, has patched/worked on windows, Linux and Azure cloud systems, analyse and remediate SOC … term goals. The role of Cyber Vulnerability Management Analyst is to deal with all remediation work in relation to identified vulnerabilities inclusive of patch testing and implementation within SLA. The job holder will work very closely with all third-party vendors involved in the remediation process. The job holder More ❯

Cyber Vulnerability Management Analyst Fixed Term Contract (Maternity Cover) 18 months Must have experience working on Tenable.IO, analysed vulnerabilities form penetration testing reports, work with vendors to remediate vulnerabilities, has patch management experience, has patched/worked on windows, Linux and Azure cloud systems, analyse and remediate SOC … term goals. The role of Cyber Vulnerability Management Analyst is to deal with all remediation work in relation to identified vulnerabilities inclusive of patch testing and implementation within SLA. The job holder will work very closely with all third-party vendors involved in the remediation process. The job holder More ❯

incidents, including forensics when necessary. Security Services: Drive the delivery of services including Threat & Vulnerability Management, Privileged Access Management, IAM, DLP, Network Security, and Penetration Testing. Project Leadership: Lead IT/Cybersecurity improvement projects as an SME. Risk & Compliance: Evaluate IT changes for security risks, ensuring compliance with security More ❯