76 to 100 of 167 Penetration Testing Jobs in London

Senior Penetration Tester – Must be eligible to obtain security clearance We are looking for a Senior Penetration Tester/Ethical Hacker to work freelance for a company who delivers high-quality security solutions for an array of different clients from varied industries. Due to an unprecedented increase in workload, we are looking for a reliable Penetration Tester … to work on overflow projects, delivering infrastructure penetration testing, including broader vulnerability assessments and security audits as needed. You will also produce clear, professional reports and deliver testing debriefs. This opportunity would suit someone who is already in a permanent position, looking for freelance work in addition to their main role, or someone who is happy with … nature of work and client base, all applicants but be able to obtain SC clearance. Day rate: £400 - £500 per day, London – remote/hybrid Requirements Proven experience in Penetration Testing/Ethical Hacking Strong knowledge of network and cloud infrastructure security. Up-to-date on the latest cybersecurity threats and technologies. Strong knowledge in pen testing More ❯

Job Title: Penetration Tester Role: An exciting opportunity for a mid-level Penetration Tester to join a dynamic and collaborative security consultancy based in London. This role is ideal for a proactive individual with a hacker’s mindset and broad security testing experience across applications, networks, cloud platforms, and more. You'll be a key player in … delivering high-quality penetration tests while also supporting client advisory, team development, and process improvement. What’s in it for you? Autonomy and ownership in conducting diverse penetration testing engagements. Ongoing professional development with access to industry events and training. A positively charged work environment with flexibility for hybrid working post-probation. Responsibilities: Conduct web, mobile, API … infrastructure, cloud, and wireless penetration testing. Create detailed technical reports and deliver test findings directly to clients. Provide remediation advice and post-assessment consultancy. Contribute to internal testing methodologies and Red Team/social engineering activities. Mentor junior team members and support collaborative delivery of projects. Occasionally support the creation of marketing materials such as research papers and More ❯

Join our dynamic Offensive Security Team! As we expand, we are looking for a Pentester/Red Teamer who is enthusiastic about undertaking a range of security assessments, including penetration testing, red team exercises, vulnerability scanning, and physical access evaluations for our clients. Key Responsibilities: Client Engagement Management: Lead client projects, ensuring clear communication, timely delivery, and exceeding … expectations. Act as the primary liaison, providing updates and guidance. Security Assessment Execution: Conduct detailed security assessments, including penetration testing and vulnerability analysis. Systematically identify and document vulnerabilities across network, application, and physical layers. Prepare concise reports for both technical and non-technical stakeholders. Red Team Challenges: Participate in red team simulations, encompassing social engineering attacks and advanced … penetration tactics. Post-initial access, perform internal testing to escalate privileges and gain high-level access. Document methodologies and outcomes, providing actionable insights for enhancing security. Technical Proficiencies: Python/Scripting: Demonstrate a high level of proficiency in Python, essential for writing custom scripts to automate tasks, analyze data, and develop unique tools for penetration testing. This More ❯

cloud infrastructure using Infrastructure as Code principles Establish and maintain security controls and monitoring systems aligned with ISO27001 requirements Build and maintain CI/CD pipelines with integrated security testing and compliance checks Implement automated security scanning and vulnerability management processes Develop and maintain disaster recovery and backup solutions for critical systems Configure and manage secure cloud environments in … Deep understanding of cloud security best practices and implementing Zero Trust architecture Experience with healthcare compliance requirements (ISO27001, ISO13485, HIPAA) and security controls Proven track record implementing automated security testing and vulnerability management Strong knowledge of monitoring and observability tools (Azure Monitor, Application Insights) Experience implementing secure networking and identity management solutions in Azure Strong communication skills with ability … collaborate on security requirements across teams Track record of building secure and compliant DevOps practices Desired Skills Experience with quality management systems in medical device software development Experience of penetration testing Background in implementing Agile methodologies Experience of startup environments More ❯

cloud infrastructure using Infrastructure as Code principles Establish and maintain security controls and monitoring systems aligned with ISO27001 requirements Build and maintain CI/CD pipelines with integrated security testing and compliance checks Implement automated security scanning and vulnerability management processes Develop and maintain disaster recovery and backup solutions for critical systems Configure and manage secure cloud environments in … Deep understanding of cloud security best practices and implementing Zero Trust architecture Experience with healthcare compliance requirements (ISO27001, ISO13485, HIPAA) and security controls Proven track record implementing automated security testing and vulnerability management Strong knowledge of monitoring and observability tools (Azure Monitor, Application Insights) Experience implementing secure networking and identity management solutions in Azure Strong communication skills with ability … collaborate on security requirements across teams Track record of building secure and compliant DevOps practices Desired Skills Experience with quality management systems in medical device software development Experience of penetration testing Background in implementing Agile methodologies Experience of startup environments More ❯

cloud infrastructure using Infrastructure as Code principles Establish and maintain security controls and monitoring systems aligned with ISO27001 requirements Build and maintain CI/CD pipelines with integrated security testing and compliance checks Implement automated security scanning and vulnerability management processes Develop and maintain disaster recovery and backup solutions for critical systems Configure and manage secure cloud environments in … Deep understanding of cloud security best practices and implementing Zero Trust architecture Experience with healthcare compliance requirements (ISO27001, ISO13485, HIPAA) and security controls Proven track record implementing automated security testing and vulnerability management Strong knowledge of monitoring and observability tools (Azure Monitor, Application Insights) Experience implementing secure networking and identity management solutions in Azure Strong communication skills with ability … collaborate on security requirements across teams Track record of building secure and compliant DevOps practices Desired Skills Experience with quality management systems in medical device software development Experience of penetration testing Background in implementing Agile methodologies Experience of startup environments More ❯

You’re walking into a mature environment: The company already has Secure SDLC and DevSecOps practices in place. This isn’t a ground-up build – it’s about stress-testing and strengthening what’s already built. You’ll have impact and visibility: Reporting to the CIO, with close collaboration with the Head of Information Security (compliance), you’ll shape … You’ll Be Doing: Actively identifying vulnerabilities in applications, especially around authentication flows, payments, and sensitive data handling Thinking creatively and adversarially – “breaking the app” to protect it Performing penetration testing, threat modelling, and secure code reviews Working directly with developers to integrate security best practices into an already-operational DevSecOps pipeline Advising on product and architectural design … culture that prioritises customer trust and system integrity What We’re Looking For: Deep hands-on experience in application security – not just theory, but experience in secure coding, manual testing, and fixing complex vulnerabilities A proven background in credit cards, payments, or financial transaction systems Understanding of modern application architectures (APIs, microservices, cloud platforms – likely Azure) Familiarity with OWASP More ❯

You’re walking into a mature environment: The company already has Secure SDLC and DevSecOps practices in place. This isn’t a ground-up build – it’s about stress-testing and strengthening what’s already built. You’ll have impact and visibility: Reporting to the CIO, with close collaboration with the Head of Information Security (compliance), you’ll shape … You’ll Be Doing: Actively identifying vulnerabilities in applications, especially around authentication flows, payments, and sensitive data handling Thinking creatively and adversarially – “breaking the app” to protect it Performing penetration testing, threat modelling, and secure code reviews Working directly with developers to integrate security best practices into an already-operational DevSecOps pipeline Advising on product and architectural design … culture that prioritises customer trust and system integrity What We’re Looking For: Deep hands-on experience in application security – not just theory, but experience in secure coding, manual testing, and fixing complex vulnerabilities A proven background in credit cards, payments, or financial transaction systems Understanding of modern application architectures (APIs, microservices, cloud platforms – likely Azure) Familiarity with OWASP More ❯

5+ years with ForgeRock IAM stack : PingGateway, PingAM, PingIDM, PingDS Advanced cloud security knowledge (AWS CLI, security controls, policies) Strong experience with PKI, HSMs, certificate lifecycle management Proficiency in penetration testing , threat modeling, and vulnerability management Automating security with GitLab CI/CD, Chef, AWS CLI Collaborating with CISO, engineering, and product teams on secure architecture Completion of More ❯

5+ years with ForgeRock IAM stack : PingGateway, PingAM, PingIDM, PingDS Advanced cloud security knowledge (AWS CLI, security controls, policies) Strong experience with PKI, HSMs, certificate lifecycle management Proficiency in penetration testing , threat modeling, and vulnerability management Automating security with GitLab CI/CD, Chef, AWS CLI Collaborating with CISO, engineering, and product teams on secure architecture Completion of More ❯

cyber threat intelligence. Managing vulnerabilities, nation-state threats, ransomware transformation, and automated security controls. Building a resilient cybersecurity culture within the organization to combat cyber threats. Micromanaging cybersecurity engineers, penetration testing engineers, cyber architects, and other related roles. PHYSICAL DEMANDS: This position requires the ability to communicate and exchange information, utilizing necessary equipment to perform the job. ENVIRONMENT More ❯

to Methodically Find Faults and perform Root Cause Analysis • Able to evaluate multiple courses of action, achieving goals by non-standard means if necessary • System Regression • Protocol Analysis • Load Testing • Availability and Resilience Optimisation • Lockdowns and Basic Penetration Testing Technologies • Operating Systems and Virtualisation (Windows and Linux) • Infrastructure as Code and Operational Automation (e.g. Terraform, Ansible) • Message More ❯

review skills – essential •Ability to identify vulnerabilities using CWE or OWASP •Knowledge of operating systems and their hardening techniques •Understanding of development concepts such as CICD, Pipelines, and SDLC •Penetration testing knowledge is also super useful •Familiarity with Cloud Development Kit (CDK) and GitOps •Experience operating in a DevOps/agile team environment •Understanding of docker, Kubernetes, serverless More ❯

review skills – essential •Ability to identify vulnerabilities using CWE or OWASP •Knowledge of operating systems and their hardening techniques •Understanding of development concepts such as CICD, Pipelines, and SDLC •Penetration testing knowledge is also super useful •Familiarity with Cloud Development Kit (CDK) and GitOps •Experience operating in a DevOps/agile team environment •Understanding of docker, Kubernetes, serverless More ❯

and services that align with strategic needs, negotiating as necessary. Develop and implement security awareness training programs for employees to promote best practices and cultivate a vigilant workforce. Oversee penetration testing and vulnerability scanning to identify and remediate security vulnerabilities promptly. Data Privacy: Establish and maintain programs to ensure data handling, storage, and access comply with relevant privacy More ❯

to reduce risk and effort Practical experience working collaboratively with Engineering and IT teams to investigate, resolve, and prevent security issues Familiarity with application security principles, with exposure to penetration testing or ethical hacking (CEH or similar certification is a plus) Awareness of industry frameworks like ISO 27001, CIS, or similar, and ideally holding a CISMP certification A More ❯

the smooth functioning of modern society. Neelam Kadbane, our next pathbreaker, Senior Vulnerability Analyst at Mastercard, identifies and addresses security vulnerabilities within Mastercard's environment & products by conducting network penetration tests. Neelam talks to Shyam Krishnamurthy fromThe Interview Portal about the innumerable challenges and the satisfacation of her work in preventing potential breaches that could lead to financial loss … until it's publicly disclosed and assigned a CVE. This combination of concepts is key in managing andmitigating security risks in any environment. This experience piqued my interest in penetrationtesting, leading me to my current role as a Pen Tester at Mastercard. My career path wasn't linear, but each step taught me something valuable and brought me closer to More ❯

Job Title: Security Testing Consultant (Penetration Testing) Location: London SE1 (with hybrid working available post-probation) Salary: 45,000 - 60,000 + benefits Are you a skilled Penetration Tester looking to join a collaborative and mission-driven cyber security team? This Security Testing Consultant position offers the chance to deliver high-impact security assessments across … web applications, infrastructure, cloud platforms, APIs, mobile, and wireless systems. You'll be part of a close-knit team delivering trusted security testing and advisory services for clients across various industries. If you're passionate about offensive security and want to contribute to Red Team activities while supporting junior team members, this role is for you. What You'll … Be Doing: Conduct web and mobile application assessments, plus API, infrastructure, and cloud penetration tests. Deliver high-quality technical reports and confidently present findings to clients. Support remediation efforts and provide client-facing consultancy. Help develop internal testing methodologies and contribute to Red Team and social engineering operations. Support junior team members and engage in knowledge sharing. Key More ❯

Job Title: Security Testing Consultant (Penetration Testing) Location: London SE1 (with hybrid working available post-probation) Salary: £45,000 - £60,000 + benefits Are you a skilled Penetration Tester looking to join a collaborative and mission-driven cyber security team? This Security Testing Consultant position offers the chance to deliver high-impact security assessments across … web applications, infrastructure, cloud platforms, APIs, mobile, and wireless systems. You'll be part of a close-knit team delivering trusted security testing and advisory services for clients across various industries. If you're passionate about offensive security and want to contribute to Red Team activities while supporting junior team members, this role is for you. What You'll … Be Doing: Conduct web and mobile application assessments, plus API, infrastructure, and cloud penetration tests. Deliver high-quality technical reports and confidently present findings to clients. Support remediation efforts and provide client-facing consultancy. Help develop internal testing methodologies and contribute to Red Team and social engineering operations. Support junior team members and engage in knowledge sharing. Key More ❯

Description The Offensive Security Manager is responsible for the provision of penetration & red team testing services to the business, including leading teams, creating processes, and management of technologies & 3rd parties that make up the service. The role reports to the Director of Offensive Security. The position does not need to be filled by a hands-on penetration … red tester, as organizational, leadership, relationship and supplier management skills are the key focuses of the role but will need to have a good understanding of security vulnerabilities and testing methodology to be able to understand the subject matter of the service and manage quality. The role will work closely alongside the rest of the Cyber Team (e.g. Vulnerability … help the wider community in fostering a culture which is both security aware and is a great place to come to work. Responsibilities Create, maintain and execute appropriate security testing processes to enable timely detection, risk-based prioritization, and coordinate the remediation of security testing findings. Penetration Assessments: To plan and execute complex assessments to identify vulnerabilities More ❯

has grown to employ elite technical experts who have contributed to some of the world's largest technology and digital security projects. The NCSC-approved CHECK company specializes in penetration testing and security assessment services under the government-accredited CHECK scheme. They are currently seeking for a skilled Penetration Tester to join the growing team. This role … combination of industry-standard and in-house developed tools for security testing. Conduct manual reviews to identify issues within customer infrastructure and web applications. Perform various types of security testing, including network penetration, web application, mobile security assessments, and social engineering. Participate in red team engagements, employing creative strategies to outsmart defenders. Explore various approaches to gain unauthorized … solving capabilities. Possesses a solid understanding and fascination with fundamental concepts in operating systems and networking. Displays a keen interest in security principles and protocols. Demonstrates proven experience in penetration testing and/or security surveillance. Exhibits eagerness to absorb new knowledge and technologies. Programming Exposure A relevant Cyber Security certification is advantageous, e.g. (OSCP, CRT, CTM, CTL More ❯

Senior Penetration Tester -240,000+ Total Package Entasis Partners are proud to be exclusively supporting a global organisation at the forefront of innovation in financial systems and high-performance computing. This is not your average security role. Our partner operates in a deeply technical, high-trust environment where the scale of data, the pace of experimentation, and the calibre … of internal talent make for an exceptionally challenging and rewarding opportunity. With a newly developed central London site focused on next-generation research, this firm is seeking a Senior Penetration Tester to strengthen its already world-class internal security capability. The Opportunity This is a hands-on, highly autonomous role embedded within a specialist cyber function. You’ll be … trusted to scope, execute, and deliver sophisticated penetration tests and control assessments across a range of technologies including Kubernetes, Jenkins, and Windows-based infrastructure. More than just finding issues, you’ll work in partnership with teams across the business to advise, remediate, and embed meaningful improvements. The environment is agile, collaborative, and engineered for depth not red tape. What More ❯

Senior Penetration Tester -240,000+ Total Package Entasis Partners are proud to be exclusively supporting a global organisation at the forefront of innovation in financial systems and high-performance computing. This is not your average security role. Our partner operates in a deeply technical, high-trust environment where the scale of data, the pace of experimentation, and the calibre … of internal talent make for an exceptionally challenging and rewarding opportunity. With a newly developed central London site focused on next-generation research, this firm is seeking a Senior Penetration Tester to strengthen its already world-class internal security capability. The Opportunity This is a hands-on, highly autonomous role embedded within a specialist cyber function. You’ll be … trusted to scope, execute, and deliver sophisticated penetration tests and control assessments across a range of technologies including Kubernetes, Jenkins, and Windows-based infrastructure. More than just finding issues, you’ll work in partnership with teams across the business to advise, remediate, and embed meaningful improvements. The environment is agile, collaborative, and engineered for depth not red tape. What More ❯

Senior Penetration Tester -240,000+ Total Package Entasis Partners are proud to be exclusively supporting a global organisation at the forefront of innovation in financial systems and high-performance computing. This is not your average security role. Our partner operates in a deeply technical, high-trust environment where the scale of data, the pace of experimentation, and the calibre … of internal talent make for an exceptionally challenging and rewarding opportunity. With a newly developed central London site focused on next-generation research, this firm is seeking a Senior Penetration Tester to strengthen its already world-class internal security capability. The Opportunity This is a hands-on, highly autonomous role embedded within a specialist cyber function. You’ll be … trusted to scope, execute, and deliver sophisticated penetration tests and control assessments across a range of technologies including Kubernetes, Jenkins, and Windows-based infrastructure. More than just finding issues, you’ll work in partnership with teams across the business to advise, remediate, and embed meaningful improvements. The environment is agile, collaborative, and engineered for depth not red tape. What More ❯

A premier UK consultancy is seeking a skilled and passionate Penetration Tester to join its growing team of cybersecurity experts. This is a dynamic opportunity for individuals with strong technical skills and a proactive mindset, eager to make a tangible impact across a wide range of client environments. Working on mission critical projects across National Security, Critical National Infrastructure … and Defence the Senior Penetration Tester will liaise with highly-skilled teams acting as a trusted advisor. Key Responsibilities: Conduct hands-on internal penetration tests in infrastructure/Active Directory environments Produce clear and concise technical reports, summarising findings for both technical and business stakeholders Work directly with clients as a trusted advisor – this is a consulting-facing … also be available: Possesses industry-recognised certifications such as CTM, CSTM, CTL, CSTL, OSCP, or CREST/Cyber Scheme qualifications. Brings specialist knowledge in one or more areas of penetration testing – this could include mobile app security, cloud environments, operational technology (OT), or specific sectors such as telecommunications, defence, or maritime. Demonstrates a strong desire to contribute to More ❯