1 to 25 of 82 Security Testing Jobs in London

Job Title: Network and Security Engineer Location: London (UK) On site Job Type: Full Time We are seeking a talented and experienced Network and Security Engineer to join our team. The ideal candidate will have a strong background in networking and security, excellent problem-solving skills, and a passion for learning and developing new skills. You will … be responsible for designing, implementing, and managing networks and security measures to safeguard our networks and systems against current and emerging cyber threats, with a particular focus on Datacentre, 3GPP mobile network CORE and RAN environments. Key Responsibilities: Networking, Segmentation, Optimization and Maintenance Design, configure and implement highly scalable L2/L3 networks using varieties of protocols and vendor … equipment. Monitor network traffic and analyse security incidents to detect and respond to threats within mobile network environments. Diagnose and troubleshoot network related issues associated with L1-L7 using varieties of tools, ensuring quick recovery and minimum network downtime. Carry out periodic backups of network device operating system and configurations to ensure timely restoration of critical network services. Design More ❯

implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you … identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team … in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role More ❯

White Collar Factory (95009), United Kingdom, London, London Senior Cyber Security Engineer About This Role In Cyber at Capital One, we take an automation first approach, working in a fast paced and CI/CD driven environment. Capital One is not your normal financial services company constrained by a fixed mindset and legacy systems. We're an agile business … As well as agility, Capital One is a company that puts customers at the centre of everything we do, and consequently, protecting customer data is our core focus. Their security is our responsibility and we protect the trust that our customers put in us on a 24/7 basis. Our Configuration Compliance team focuses on maintaining the hardening … standards, assessing security posture, processing and reporting the findings of hundreds of thousands of assets across the Capital One enterprise. The remit covers servers, databases, endpoint devices, network equipment, and more, across Public Cloud and On Premise environments. As a Cyber Engineer you will work as part of the Security Testing organisation, focused on the Configuration Compliance More ❯

The team you'll be working with: Consultant - Offensive Security Testing Role Overview: We are seeking a highly skilled and experienced Offensive Security Consultant with a strong focus on threat intelligence and attack methods. The ideal candidate will manage and conduct advanced penetration testing engagements, leveraging threat intelligence to simulate real-world attacks across various environments … applications, cloud infrastructure, and APIs. This role requires a deep understanding of adversarial tactics, excellent communication skills, and the ability to provide strategic, actionable recommendations to enhance our clients' security posture. What you'll be doing: Responsibilities: Lead and manage the full lifecycle of complex penetration testing engagements, applying a threat intelligence-led approach. Execute advanced penetration tests … maintain detailed test plans and use cases informed by threat intelligence analysis. Identify and prioritize critical OT and IT assets based on potential threats and exposure. Plan and schedule testing engagements based on threat assessments and client needs. Produce clear, detailed reports with technical findings, business impact, and strategic remediation recommendations for diverse audiences. Communicate complex security concepts More ❯

global leader in cloud-based treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive security automation and best practices across our cloud infrastructure and IT … operations. Job Overview As a DevSecOps Engineer, you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations. Working at the intersection of operations, security, and development, you will collaborate closely with internal teams to safeguard critical business operations by design and default. You will be responsible for security automation, CI …/CD pipeline enhancements, and cloud security management, ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development security. Work with development teams to optimize infrastructure security. Cloud & Infrastructure Security: Maintain and secure AWS cloud infrastructure for clients and internal operations. Automate AWS infrastructure builds More ❯

global leader in cloud-based treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive security automation and best practices across our cloud infrastructure and IT … operations. Job Overview As a DevSecOps Engineer, you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations. Working at the intersection of operations, security, and development, you will collaborate closely with internal teams to safeguard critical business operations by design and default. You will be responsible for security automation, CI …/CD pipeline enhancements, and cloud security management, ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development security. Work with development teams to optimize infrastructure security. Cloud & Infrastructure Security: Maintain and secure AWS cloud infrastructure for clients and internal operations. Automate AWS infrastructure builds More ❯

The Role Embed security best practices within the SDLC, collaborating with developers to ensure secure coding. Conduct security assessments, identify potential threats, and mitigate risks in web and mobile applications. Perform application security testing (SAST, DAST) and manual security code reviews. Implement and manage security tools such as SAST, DAST, SCA, and CI/… CD security integrations. Investigate security incidents, prioritise remediation and guide teams on secure development practices. Ensure applications meet industry standards (OWASP Top 10, NIST, ISO 27001) and regulatory requirements (GDPR, PCI-DSS, etc.) Educate engineers and stakeholders on security threats, vulnerabilities and secure coding practices. Skills 5+ years of experience in application security, penetration testing, or software security engineering. Strong knowledge of secure coding principles in one or more languages (e.g., Python, Java, JavaScript, Go, .NET). Hands-on experience with SAST, DAST, SCA and security automation in CI/CD pipelines. Familiarity with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Knowledge of OWASP Top More ❯

The Role Embed security best practices within the SDLC, collaborating with developers to ensure secure coding. Conduct security assessments, identify potential threats, and mitigate risks in web and mobile applications. Perform application security testing (SAST, DAST) and manual security code reviews. Implement and manage security tools such as SAST, DAST, SCA, and CI/… CD security integrations. Investigate security incidents, prioritise remediation and guide teams on secure development practices. Ensure applications meet industry standards (OWASP Top 10, NIST, ISO 27001) and regulatory requirements (GDPR, PCI-DSS, etc.) Educate engineers and stakeholders on security threats, vulnerabilities and secure coding practices. Skills 5+ years of experience in application security, penetration testing, or software security engineering. Strong knowledge of secure coding principles in one or more languages (e.g., Python, Java, JavaScript, Go, .NET). Hands-on experience with SAST, DAST, SCA and security automation in CI/CD pipelines. Familiarity with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Knowledge of OWASP Top More ❯

The Role Embed security best practices within the SDLC, collaborating with developers to ensure secure coding. Conduct security assessments, identify potential threats, and mitigate risks in web and mobile applications. Perform application security testing (SAST, DAST) and manual security code reviews. Implement and manage security tools such as SAST, DAST, SCA, and CI/… CD security integrations. Investigate security incidents, prioritise remediation and guide teams on secure development practices. Ensure applications meet industry standards (OWASP Top 10, NIST, ISO 27001) and regulatory requirements (GDPR, PCI-DSS, etc.) Educate engineers and stakeholders on security threats, vulnerabilities and secure coding practices. Skills 5+ years of experience in application security, penetration testing, or software security engineering. Strong knowledge of secure coding principles in one or more languages (e.g., Python, Java, JavaScript, Go, .NET). Hands-on experience with SAST, DAST, SCA and security automation in CI/CD pipelines. Familiarity with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Knowledge of OWASP Top More ❯

Job Title: Senior Security Engineer Manager: CISO Department: Cyber Security Division: Enterprise Information Technology Services Location: London, Hybrid Main Purpose: The MDU is undertaking an exciting digital transformation programme and to support this the Cyber Security Team is looking to appoint a Senior Security Engineer. Working closely with delivery teams covering strategic and non-strategic change … this role will provide subject matter expertise to keep the MDU, its data and, its member safe from cyber security threats. The Senior Security Engineer will be responsible for the delivery of security technologies in a range of projects and will therefore: Have a strong cyber security engineering or professional services background with experience of delivering … both large-scale and small-scale projects to a high quality in a fast-paced environment. Have a good practical knowledge of both traditional security technologies and modern security tooling to allow support of both the existing and new environments during the digital transformation. Have a proven track record of working in cross functional teams to successfully deliver More ❯

Job Purpose The Data Security Manager will partner with multiple divisions and technical managers to enhance security aspects of the data security program. Extensive oversight and control of CLS information assets, mitigating the risks of data loss at CLS in all aspects of day-to-day business. The individual will be accountable for the Data Security Program, setting strategic direction and driving operational excellence while leveraging resources distributed across several functional teams. The Data Security Manager will be responsible for analyzing potential weaknesses and identifying a roadmap to improve the security of information assets across CLS. The candidate will advise Business Owners, developers, and technical teams on options to mitigate risk. The candidate … must have excellent verbal, written, analytical and interpersonal communication skills. Essential Functions/Major Duties and Responsibilities Strategic Provide strategic direction specific to data security management. Build and maintain a robust data security program while aligning closely with CLS's mission. Improve and manage the data security program and the company-wide security standards for the More ❯

executing advanced penetration tests and vulnerability assessments across a diverse portfolio of applications. This is a hands-on, technical role where you'll actively identify, exploit, and help remediate security weaknesses in web, mobile, and cloud-based applications. You'll be at the forefront of defending against cyber threats by implementing cutting-edge security tools, collaborating with development … teams to integrate security into the SDLC, and playing a critical role in protecting the organisation's digital assets. The successful candidate will play a hands-on role in testing the security of applications, networks, and systems, while ensuring that security standards are integrated into the development process. Key Responsibilities: Penetration Testing & Vulnerability Assessment: Conduct … exploits. Analyse and prioritise vulnerabilities based on risk and provide detailed technical reports with recommended remediation steps for developers and system administrators. Keep up to date with the latest security vulnerabilities, exploits, and attack methodologies to ensure effective penetration testing. Security Risk Management: Develop and manage the organisation's vulnerability management program, ensuring compliance with internal policies and More ❯

Cyber Security Engineer - London (Hybrid) - £700 per day inside IR35 - 4 months+ All applicants must hold an active SC clearance. My client is on the hunt for a Cyber Security Engineer to join a central government client of theirs. You will be joining an AppSec team focused on building security automation into delivery pipelines and conducting security focused tests against digital services. Key Responsibilities Perform penetration testing and vulnerability assessments of web applications, APIs, and cloud infrastructure. Evaluate the automated security tooling into CI/CD pipelines (SAST, DAST, dependency checking, IaC etc), and make necessary recommendations. Collaborate with developers to remediate identified vulnerabilities and ensure secure code practices. Provide expert input on cloud … security (AWS, Azure, or GCP) and DevSecOps tooling. Assist in maintaining security assurance across the SDLC in line with MoJ and NCSC guidelines. Essential Criteria Penetration testing, ethical hacking, or vulnerability assessments. Security testing tools (e.g., Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc.). DevSecOps principles and tools (e.g., Veracode, SonarQube, GitHub Advanced Security More ❯

Security Systems Engineer - DevSecOps - Remote - Amazing role - to £70,0000 + Bens Once in a life time opportunity to join a scaling up tech company who are disrupting the digital security sector. My customer are an incredibly innovative scaling up tech company who are looking to recruit a Security Systems Engineer with experience of DevSecOps, AWS, and … + health + share scheme + flexible working + 25 days holidays. Complete remote role with quarterly meet-ups and customer site visits. Position Overview: We are seeking a security systems engineer who combines strategic oversight with strong hands-on capabilities. This role is pivotal in shaping the overarching technical security posture of our organisation while actively integrating … security into our development and operational workflows. The ideal candidate will bridge the gap between high-level security strategy and practical implementation, ensuring that our systems are secure by design and that security is embedded throughout the software development lifecycle. This individual will ensure that both our strategic security objectives and operational practices align with compliance More ❯

Fintech investors Breega and Element Ventures, as well as the founders of Zoopla, Funding Circle, Comply Advantage, Tessian, Fenergo and Fidel. The Role: You will be responsible for information security at Thirdfort, leveraging your expertise to help us live our Build on Trust company value. By improving the coverage and efficiency of our security controls, you will help … reduce our security risk whilst also allowing us to give best in class answers to clients, regulators and auditors about our security practices. You will report directly to the Head of Engineering. You will oversee critical security infrastructure and operations, automate security workflows, and work closely with technical and business stakeholders to ensure effective, efficient and … appropriate security controls are in place across all parts of the business. This is a great opportunity to across all aspects of security, and help shape how security is done at Thirdfort. Working in a fast paced, cloud native environment, you will be involved in everything from security operations to application security, cloud security More ❯

About Us Integrity360 is one of Europe’s leading cyber security specialists operating from office locations spread out across Europe, providing a comprehensive range of professional, support and managed cyber security services for our 300+ clients. With four top-class Security Operation Centers, we offer a complete end-to-end security services covering our clients’ security from every angle. Our services include Managed Security, Cyber Security Testing, Incident Response, Security Integration, PCI Compliance and Cyber Risk & Assurance services. What sets Integrity360 apart is our excellent team of people that drive the business forward. The company was founded with a focus on technical expertise and that philosophy remains today. The skills and … Integrity360 because they can rely on and trust us to go above and beyond to ensure their needs are met. Listed multiple times on Gartner Market Guides for Managed Security Services. Job Role/Responsibilities Assisting our clients in securing their information systems (defining target objectives, developing action plans, implementing actions (organizational or technical), coordination, monitoring and managing these More ❯

About Us Integrity360 is one of Europe’s leading cyber security specialists operating from office locations spread out across Europe, providing a comprehensive range of professional, support and managed cyber security services for our 300+ clients. With four top-class Security Operation Centers, we offer a complete end-to-end security services covering our clients’ security from every angle. Our services include Managed Security, Cyber Security Testing, Incident Response, Security Integration, PCI Compliance and Cyber Risk & Assurance services. What sets Integrity360 apart is our excellent team of people that drive the business forward. The company was founded with a focus on technical expertise and that philosophy remains today. The skills and … Integrity360 because they can rely on and trust us to go above and beyond to ensure their needs are met. Listed multiple times on Gartner Market Guides for Managed Security Services. Job Role/Responsibilities Assisting our clients in securing their information systems (defining target objectives, developing action plans, implementing actions (organizational or technical), coordination, monitoring and managing these More ❯

product managers and designers to translate business requirements into technical solutions. Ensure high reliability and uptime through proactive monitoring and improvements. Optimize application performance and ensure best practices in security and maintainability. Technical Leadership & Innovation Influence architectural decisions and technical direction within the team. Advocate for best practices in code quality, testing, and maintainability. Identify and address technical … Lead technical discussions and help drive consensus on complex engineering challenges. Collaboration & Communication Influence architectural decisions and technical direction within the team. Advocate for best practices in code quality, testing, and maintainability. Identify and address technical debt, improving system resilience and scalability. Stay ahead of industry trends and propose innovative solutions to business problems. Lead technical discussions and help … . Strong understanding of CI/CD pipelines, DevOps practices, and software deployment strategies. Deep knowledge of database technologies (SQL and NoSQL) and performance optimization techniques. Experience in software testing, including test automation, performance testing, and security testing. Familiarity with Agile development methodologies and modern product engineering practices. Excellent problem-solving, analytical, and debugging skills. Strong communication More ❯

Manager: CISO Department: Cyber Security Division: Enterprise Information Technology Services Location: London, Hybrid Main Purpose: Identity is a core security component in any modern IT estate, ensuring the right people, machines, and software components have access to the correct resources at the appropriate time, while preventing unauthorised access and maintaining a secure environment. The Identity and Access Manager … role heads up this crucial security function within the Cyber Security Team and will Lead strategic development and operational management of identity services. Develop and manage identity and access related tooling and processes to ensure mature, efficient, and secure working practices. Be an advocate for best practices in Identity and Access Management. Ensure compliance and risk management standards … are met. Main Responsibilities: Lead the Identity and Access function within the Cyber Security team, including: o Access Management o Identity Governance and Administration o Role Based Access Control o Privileged Access Management o Identity Threat Detection and Response o Access Certification o Identity Data Management & Analytics Ensure that only authorised identities have access to the relevant data and More ❯

cross- functional teams to define test strategies, create test plans, execute test cases, and identify and report software defects. The ideal candidate will have a strong understanding of software testing methodologies, excellent analytical skills, and a passion for delivering high-quality products. Tech Stack: AWS Serverless Lambda with Node.js API Gateway (REST/JSON) DynamoDB S3 WAF Back-Office … with the development team to ensure timely resolution. Participate in the review of product requirements, design documents, and specifications to provide input on testability and quality aspects. Perform exploratory testing and provide feedback on user experience and potential usability issues. Conduct regression testing to ensure that software changes and updates do not introduce new defects. Collaborate with software … concise steps to reproduce. Continuously improve the QA process by identifying inefficiencies, proposing solutions, and implementing best practices. Stay up to date with industry trends and advancements in software testing methodologies and tools. Communicate test progress, test results, and other relevant information to project stakeholders. About You: Qualifications: Bachelor's or Master's degree in Computer Science, Engineering, or More ❯

We're looking for a highly motivated and enthusiastic Information Security Engineer to join our dynamic UK IT Security team. In this role, you'll play a key part in strengthening our security posture by: Supporting the development and implementation of application security controls Automating security-related tasks to improve efficiency and consistency Contributing to … the enhancement of our incident response capabilities This is a great opportunity to work in a collaborative environment where your ideas and technical skills will directly impact the security of our systems and services Key Responsibilities Support the development and implementation of secure coding practices. Assist in application security testing and vulnerability assessments. Collaborate with developers to … embed security into the SDLC. Help design and maintain automated security testing workflows. Contribute to vulnerability reporting and security recommendations. Apply security best practices to IT and security projects. Monitor applications for compliance with security standards. Promote application security awareness and best practices. Aid in maintaining incident response plans for security More ❯

Job Title: Application Security Architect Location: Remote (with twice a month in Leeds Office) Duration: 6 months - End date 21/12/2025 (Possible extension) Engagement: Inside IR35 - Via Umbrella Day rate: £800 Per day We’re looking for an experienced Application Security Architect to a Global Healthcare client of ours on a contract basis. You’ll … a pivotal role in shaping and securing the design and development of key applications across their technology estate. Key Responsibilities Collaborate with engineering and architecture teams to define technical security requirements and ensure cohesive, secure solutions. Lead on the resolution of high-priority and complex security incidents. Advise senior leadership on risk management strategies and mitigation plans. Oversee … security for a portfolio of applications/projects from inception through delivery. Ensure security controls are effectively embedded throughout the SDLC. Maintain up-to-date InfoSec policies and technical security standards. Conduct vulnerability assessments, threat modelling, and architecture reviews. What You’ll Bring Strong ability to translate technical risk into clear, actionable business terms. Hands-on experience More ❯

DevSecOps Engineer | Permanent | UK (Hybrid - once a month) | £85k We're working with a highly respected, forward-thinking professional services firm on a mission to embed security into every part of their digital transformation journey. This is a key hire within their growing tech function - they're looking for a DevSecOps/Lead Software Security Engineer to shape … its people, with a collaborative culture and real investment in development. They're agile, ambitious, and looking for someone who wants to play a hands-on role in moving security left - bringing DevSecOps to life and guiding engineering teams with confidence and clarity. What you'll be doing: Leading the cultural shift towards DevSecOps across multiple product teams Embedding … security requirements and tooling into the SDLC from the ground up Defining and implementing a product security strategy aligned with business goals Collaborating with developers to automate and streamline security testing Supporting pen test activity and guiding secure remediation efforts Serving as an internal SME on application and cloud security matters Keeping documentation, training, and More ❯

Principle Security QA Consultant - SC Cleared - Inside IR35 Remote with travel to Croydon 6 months+ contract ASAP Start £600-650 per day The Role Our client is currently developing an internal Security Testing capability that will operate out of the Quality Assurance and Testing function. As a Principle Cyber Security Professional, your role will be … embedded in the Cyber Security function working day to day with senior security stakeholders to lead the continued development of the security testing service and represent security testing for the client. Communication and professionalism are critical for this role as you will be working collaboratively with senior Security colleagues across the organisation on … a day-to-day basis. Working within Security Testing, you will play a leading role in delivering security testing, vulnerability assessment and continual security compliance capabilities in order to secure services and to ensure the best possible technical security risk-based advice is given to our customers. You will work collaboratively with key business More ❯

Pentest People is a UK-based security consultancy specialising in providing Penetration Testing as a Service to all its clients. Our innovative approach to security testing merges the benefits of consultant-led penetration testing with ongoing vulnerability assurance through our advanced SecurePortal. We are expanding our Incident Response team and are looking for a DFIR … and the ability to perform in a fast-paced environment. As part of our dynamic team, you’ll play a critical role in mitigating cyberattacks and enhancing our clients’ security posture to prevent future incidents. Key Responsibilities: Conduct initial incident assessments and support ongoing Incident Response (IR) management. Participate in live IR operations, including digital forensics and data acquisition. … Perform security assessments, threat intelligence gathering, and OSINT analysis. Collaborate with internal teams to deliver a holistic cybersecurity service. Engage with clients regularly to collect relevant logs and gain infrastructure access for investigations. Thoroughly document incidents — including timelines, impacted systems, actions taken, and improvement recommendations. Prepare clear, well-structured reports for both technical and non-technical stakeholders. Technical Skills More ❯