1 to 25 of 108 Penetration Testing Jobs in the UK

Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In … this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved … Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing More ❯

is not available. Who we are: Cyber Guarded Ltd is a long-established and independent cyber security company based in Belfast. As the premier NCSC-approved supplier for CHECK Penetration Testing in Northern Ireland, including Cyber Incident Exercising being conducted at the highest levels, along with Cyber Advisor - Cyber Essentials, we support clients across both public and private … sectors. As we continue to grow significantly, securing significant contracts across Northern Ireland, we’re strengthening our technical team to meet demand. We are seeking skilled Penetration Testers who are either already Cyber Scheme Team Member (CSTM) or CREST Registered Penetration Tester (CRT) or have the technical ability and motivation to gain the above qualifications in the near … future to achieve NCSC CHECK Penetration Testing status. What You’ll Do: Perform infrastructure, web, cloud, and OT penetration testing Produce clear, actionable reports and remediation advice Engage with clients through the full testing lifecycle Contribute to tooling, methodology, and internal R&D What We’re Looking For: Hands-on experience in professional penetration More ❯

is not available. Who we are: Cyber Guarded Ltd is a long-established and independent cyber security company based in Belfast. As the premier NCSC-approved supplier for CHECK Penetration Testing in Northern Ireland, including Cyber Incident Exercising being conducted at the highest levels, along with Cyber Advisor - Cyber Essentials, we support clients across both public and private … sectors. As we continue to grow significantly, securing significant contracts across Northern Ireland, we’re strengthening our technical team to meet demand. We are seeking skilled Penetration Testers who are either already Cyber Scheme Team Member (CSTM) or CREST Registered Penetration Tester (CRT) or have the technical ability and motivation to gain the above qualifications in the near … future to achieve NCSC CHECK Penetration Testing status. What You’ll Do: Perform infrastructure, web, cloud, and OT penetration testing Produce clear, actionable reports and remediation advice Engage with clients through the full testing lifecycle Contribute to tooling, methodology, and internal R&D What We’re Looking For: Hands-on experience in professional penetration More ❯

is not available. Who we are: Cyber Guarded Ltd is a long-established and independent cyber security company based in Belfast. As the premier NCSC-approved supplier for CHECK Penetration Testing in Northern Ireland, including Cyber Incident Exercising being conducted at the highest levels, along with Cyber Advisor - Cyber Essentials, we support clients across both public and private … sectors. As we continue to grow significantly, securing significant contracts across Northern Ireland, we’re strengthening our technical team to meet demand. We are seeking skilled Penetration Testers who are either already Cyber Scheme Team Member (CSTM) or CREST Registered Penetration Tester (CRT) or have the technical ability and motivation to gain the above qualifications in the near … future to achieve NCSC CHECK Penetration Testing status. What You’ll Do: Perform infrastructure, web, cloud, and OT penetration testing Produce clear, actionable reports and remediation advice Engage with clients through the full testing lifecycle Contribute to tooling, methodology, and internal R&D What We’re Looking For: Hands-on experience in professional penetration More ❯

Why join Dionach by Nomios? Since being acquired by Nomios in late 2024, Dionach by Nomios has continued its dynamic growth as a leading information security company. Specializing in penetration testing and information assurance services, we offer an incredible opportunity to be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive … enterprise security systems. Delivering presentations to technical and non-technical stakeholders. Main role will be as a Junior Cyber Security Consultant, with options in the future to move into penetration testing andto work in other areas of information security consultancy. Focus on your development by attaining industry recognised certifications. Be available for occasional on-call duties and on … site client engagements, as needed. What We're Looking For Qualifications : Relevant degree or one full year's minimum experience in penetration testing or cyber security assurance. Experience : Some experience of cyber security assessment, vulnerability assessments, or penetration testing. Certifications : such as CPSA or CEH would be advantageous. Tools: Experience of penetration testing tools, Linux More ❯

Why join Dionach by Nomios? Since being acquired by Nomios in late 2024, Dionach by Nomios has continued its dynamic growth as a leading information security company. Specializing in penetration testing and information assurance services, we offer an incredible opportunity to be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive … enterprise security systems. Delivering presentations to technical and non-technical stakeholders. Main role will be as a Junior Cyber Security Consultant, with options in the future to move into penetration testing andto work in other areas of information security consultancy. Focus on your development by attaining industry recognised certifications. Be available for occasional on-call duties and on … site client engagements, as needed. What We're Looking For Qualifications : Relevant degree or one full year's minimum experience in penetration testing or cyber security assurance. Experience : Some experience of cyber security assessment, vulnerability assessments, or penetration testing. Certifications : such as CPSA or CEH would be advantageous. Tools: Experience of penetration testing tools, Linux More ❯

Principal Security Consultant (Hardware/Embedded Penetration Tester) NetSPI is an award-winning pioneer of Penetration Testing as a Service (PTaaS) with its AI-powered platform supported by more than 350 in-house cybersecurity experts. Specializing in 50+ pentest types, attack surface visibility, vulnerability prioritization, and attack simulation, NetSPI delivers security testing with unprecedented clarity, speed … depth and breadth in embedded and hardware systems, as well as the soft skills to effectively communicate with executive and technical teams. As a Principal Hardware/Embedded Systems Penetration Tester, you will be responsible for assessing the security of various hardware and embedded systems, identifying vulnerabilities, and providing actionable recommendations for improvement. You will largely work independently, demonstrating … strong problem-solving skills, as well as lead, collaborate, and innovate to deliver high-quality exercises and exceptional experiences for our customers. Responsibilities : Perform Hardware and/or firmware penetration tests. Lead in threat modeling exercises related to Embedded Systems. Create and deliver penetration test reports to clients. Collaborate with clients to create remediation strategies that will help More ❯

GBP (Inside IR35) Start Date: ASAP The Role We are seeking an experienced DevSecOps Pentester to join a high-performing security team. The successful candidate will conduct penetration tests and security assessments across CI/CD pipelines, cloud infrastructure, and application environments. You will integrate automated security tools into DevOps workflows, identifying vulnerabilities before they reach production, and collaborate … with developers and operations teams to enhance security posture. This role requires a mix of hands-on penetration testing, automation expertise, and strong collaboration skills within agile environments. Key Responsibilities Integrate security practices and tooling into DevOps pipelines. Perform penetration testing and security reviews on CI/CD pipelines, cloud, containers, and web/API applications. … and secrets management practices. Educate development and operations teams on emerging threats and best practices. Essential Skills & Experience Strong application security knowledge (OWASP Top 10, API security). Manual penetration testing of modern web applications, APIs, and CI/CD pipelines. Deep understanding of DevSecOps practices, secure SDLC, and threat modelling. Hands-on experience automating security checks within More ❯

Overview Senior Security Consultant - Penetration Testing. Perform advanced penetration tests on networks, applications, and systems, identifying and exploiting vulnerabilities, and reporting findings. This role is a hybrid position based in London. Responsibilities Plan and execute advanced security reviews on various systems (e.g., applications, infrastructure, cloud, networks). Discover security weaknesses and perform technical analysis to understand the impact … growth and expertise. Work with clients, development teams, and infrastructure teams to understand business context and integrate security into projects. Research emerging cyber threats, tools, and techniques to ensure testing remains representative of the current threat landscape. Contribute to refining internal testing methodologies and developing or leveraging tools for automated tasks. Present technical findings and risks to both … technical and non-technical audiences, including senior management. About you Deep knowledge of penetration testing methodologies, tools (e.g., Burp Suite, Nmap, Nessus, Kali Linux), network protocols (TCP/IP, OSI), and operating systems. Proficiency in scripting languages like Python for developing automated solutions. Strong ability to analyze complex systems, identify vulnerabilities, and develop effective solutions. Excellent written and More ❯

ATT&CK Framework Desirable Certifications, Qualifications Experience: Computer Security Security Blue Team 1 or higher CompTIA Cyber Security Analyst SC-200 Microsoft Security Operations Analyst One of: CREST Registered Penetration Tester, CREST Certified Infrastructure Tester, Cyber Scheme Team Member (CSTM), Cyber Scheme Team Leader (CSTL), EC-Council Certified Security Analyst (ECSA): Penetration Testing practical, EC-Council Certified … Penetration Testing Professional (CPENT), Offensive Security Certified Professional (OSCP) Company benefits include: Discretionary 10% bonus Discretionary 2k annual training fund per employee Very competitive pension scheme Virtual GP Annual Eye Test More ❯

ATT&CK Framework Desirable Certifications, Qualifications Experience: Computer Security Security Blue Team 1 or higher CompTIA Cyber Security Analyst SC-200 Microsoft Security Operations Analyst One of: CREST Registered Penetration Tester, CREST Certified Infrastructure Tester, Cyber Scheme Team Member (CSTM), Cyber Scheme Team Leader (CSTL), EC-Council Certified Security Analyst (ECSA): Penetration Testing practical, EC-Council Certified … Penetration Testing Professional (CPENT), Offensive Security Certified Professional (OSCP) Company benefits include: Discretionary 10% bonus Discretionary 2k annual training fund per employee Very competitive pension scheme Virtual GP Annual Eye Test More ❯

ATT&CK Framework Desirable Certifications, Qualifications Experience: Computer Security Security Blue Team 1 or higher CompTIA Cyber Security Analyst SC-200 Microsoft Security Operations Analyst One of: CREST Registered Penetration Tester, CREST Certified Infrastructure Tester, Cyber Scheme Team Member (CSTM), Cyber Scheme Team Leader (CSTL), EC-Council Certified Security Analyst (ECSA): Penetration Testing practical, EC-Council Certified … Penetration Testing Professional (CPENT), Offensive Security Certified Professional (OSCP) Company benefits include: Discretionary 10% bonus Discretionary 2k annual training fund per employee Very competitive pension scheme Virtual GP Annual Eye Test More ❯

ATT&CK Framework Desirable Certifications, Qualifications Experience: Computer Security Security Blue Team 1 or higher CompTIA Cyber Security Analyst SC-200 Microsoft Security Operations Analyst One of: CREST Registered Penetration Tester, CREST Certified Infrastructure Tester, Cyber Scheme Team Member (CSTM), Cyber Scheme Team Leader (CSTL), EC-Council Certified Security Analyst (ECSA): Penetration Testing practical, EC-Council Certified … Penetration Testing Professional (CPENT), Offensive Security Certified Professional (OSCP) Company benefits include: Discretionary 10% bonus Discretionary 2k annual training fund per employee Very competitive pension scheme Virtual GP Annual Eye Test More ❯

Pen Tester Location: London (Hybrid - 2/3 days in office) Contract Length: 6 months Rate: £500-600 per day - Inside IR35 The Role We are seeking an Internal Penetration Tester to join on a 6-month contract. You will carry out advanced penetration testing across applications, APIs, internal infrastructure, networks, and cloud environments. The role involves … simulating real-world attacks, identifying vulnerabilities, and providing clear remediation guidance to improve overall security posture. Key Responsibilities * Conduct full-scope penetration tests of applications, APIs, networks, cloud, and internal infrastructure. * Perform network testing, Active Directory enumeration/abuse, and privilege escalation. * Identify weaknesses in authentication, authorization, input validation, and cloud/AD configurations. * Simulate attacker techniques to … for both technical and executive audiences, including remediation advice. * Collaborate with development, cloud, and infrastructure teams to close vulnerabilities. Candidate Profile Essential Skills & Experience * 3-7+ years in penetration testing, red teaming, or offensive security. * Strong application security knowledge (OWASP Top 10, API security). * Hands-on experience in end-to-end pentests (internal, external, cloud, AD More ❯

client, a leading global organization, is looking for a skilled Internal Pentester to join a leading security team in London. This contract role is perfect for someone experienced in penetration testing across networks, systems, web applications, APIs, and cloud environments, who can identify vulnerabilities, simulate attacks, and deliver actionable remediation advice. Youll work in a compliance-driven, high … security environment, collaborating with cross-functional teams to strengthen the organizations security posture. What Youll Do Conduct full-scope penetration tests on applications, APIs, internal infrastructure, networks, and cloud environments (AWS, Azure, GCP). Identify and exploit security flaws: insecure authentication, authorization bypass, input validation issues, cloud misconfigurations, AD misuse, etc. Perform internal/external network testing, AD … enumeration, privilege escalation. Automate security testing where possible, integrating IaC and ServiceNow workflows. Simulate real-world attacks using the same techniques and tools as malicious actors. Produce detailed, actionable reports with executive summaries and technical findings. Collaborate with development, cloud, and infrastructure teams on remediation. Keep up to date with latest vulnerabilities, exploit techniques, and pentesting tools. Essential Skills More ❯

Internal Pen Tester Location: London (Hybrid - 2/3 days in office) Contract Length: 6 months Rate: £420 per day - Inside IR35 The Role We are seeking an Internal Penetration Tester to join on a 6-month contract. You will carry out advanced penetration testing across applications, APIs, internal infrastructure, networks, and cloud environments. The role involves … simulating real-world attacks, identifying vulnerabilities, and providing clear remediation guidance to improve overall security posture. Key Responsibilities Conduct full-scope penetration tests of applications, APIs, networks, cloud, and internal infrastructure. Perform network testing, Active Directory enumeration/abuse, and privilege escalation. Identify weaknesses in authentication, authorization, input validation, and cloud/AD configurations. Simulate attacker techniques to … for both technical and executive audiences, including remediation advice. Collaborate with development, cloud, and infrastructure teams to close vulnerabilities. Candidate Profile Essential Skills & Experience 3-7+ years in penetration testing, red teaming, or offensive security. Strong application security knowledge (OWASP Top 10, API security). Hands-on experience in end-to-end pentests (internal, external, cloud, AD More ❯

Technologies: AWS | Azure | Microsoft 365 | OWASP | CompTIA Security+ | Data Loss Prevention | Breach Simulation | Penetration Testing | Cyber Essentials | Network Security East Midlands Salary: £50,000 | Hybrid: 2 days/week in office Reach out to me to gain a full job description and client details Hands-On Cyber Security Engineer Role Leading UK retailer seeks a Cyber Security Engineer … for hands-on implementation work. Excellent staff retention record and great place to work reputation. Key Responsibilities Execute cybersecurity strategy and maintain security testing programmes Work with third-party information security providers Own Data Loss Prevention project implementation Manage breach simulation tools and conduct penetration testing Identify and remediate security weaknesses Deliver monthly security awareness sessions Support More ❯

Security Engineer, you will implement and maintain robust security systems and protocols across the our IT infrastructure. You will conduct risk assessments and vulnerability scans, mitigate vulnerabilities identified in penetration testing, and implement preventative measures to protect against cyber threats. You will monitor the security infrastructure and detect and respond to potential threats. You will help mentor and … Manage MDM\MAM and Conditional Access Manage security certificates and keys. Manage IDS and IPS. Manage PAM systems Deliver Cyber Security Awareness Training Remediate vulnerabilities and weaknesses identified during penetration testing. Ad-hoc IT security projects Experience Essential The successful candidate will have a good working knowledge and experience in managing the majority of the following technology stack CrowdStrike … Microsoft Certificate Services Ivanti or Automox patching AppCheck or Tenable WAS Kali Linux (NMAP, Metasploit, BurpSuite, John etc) Desired Education: CISM, MS SC100, 200 and 900, OSCP or other penetration testing qualifications. Industry: Financial services, SOC, Pentesting is desirable Personal Skills: Excellent inter-personal, written and verbal communication skills The ability to handle multiple priorities, tasks and projects More ❯

security architecture and assurance to OFFICIAL and above classifications. Provide specialist advice and knowledge of Public Cloud (Azure, AWS, GCP) cloud-based security architectures. Define and lead external security testing (e.g ITHC) of solutions on the public cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk … across IaaS, PaaS, SaaS and Serverless architectures Implementing Information Security and Privacy Standards and Frameworks (e.g. ISO 27k, NIST800-53, CIS, GDPR) Leading security working groups and external security testing (ITHC, Penetration Testing, etc) of cloud solutions at high HMG classification levels (OFFICIAL required, SECRET desirable) or equivalent in other industries Designing & delivering secure systems & tooling: Working … and principles Working within environments utilising DevOps, DevSecOps, SRE, CI/CD, Infrastructure & Security as Code (Docker, Git, Terraform) Managing technical assessments of security related technologies, vulnerability assessments and penetration tools and techniques Enabling & informing risk-based decisions: Working with higher impact or more complex risks, advising on the impact and whether this is within risk tolerance Understanding and More ❯

security of NHSCFA ICT infrastructure and information systems. You will work to proactively monitor IT systems; identify, manage and resolve security incidents, vulnerabilities, security alerts and threats; potentially perform penetration testing; and contribute to maintaining security certifications, assurances and accreditations. Potential applicants can contact Simon Clark at simon.clark@nhscfa.gov.uk for an informal chat if they have any questions … assist the team with identifying and resolving security incidents, vulnerabilities and risks. This can include, but is not limited to, proactively monitoring ICT systems, analysing firewall rules and performing penetration tests. They will maintain a solid knowledge of the information security principles and practices, ensuring that timely technical support is provided to satisfy the organisation's business needs. About More ❯

with SIEM - IBM QRadar . Experience with log parsing, KQL/SPL/AQL, and scripting (Python, PowerShell). Solid understanding of threat detection, incident response, vulnerability management, and penetration testing . Familiarity with frameworks such as MITRE ATT&CK, NIST, and CIS . Strong communication and presentation skills, with the ability to work across technical and business More ❯

Azure Sentinel/Microsoft Defender/Endpoint Security/PowerShell/Python/Bash/Azure DevOps/Infrastructure as Code/CI/CD/Network Security/Penetration Testing/Vulnerability Management/ISO27001/Information Assurance/Computer Science/Cyber Security/Information Security/Security Compliance More ❯

essential condition of employment. Responsibilities What You'll Do Lead the implementation and management of SIEM systems, Fortinet tools, and endpoint detection & response (EDR) solutions. Conduct vulnerability assessments and penetration testing to stay ahead of cyber threats. Strengthen identity and access management (IAM) through Active Directory, Entra ID, MFA, and Zero Trust principles. Safeguard networks with advanced VPN More ❯

detection, incident response, and cyber kill chain Familiarity with MITRE ATT&CK, NIST, and CIS frameworks Understanding of network traffic flows and vulnerability management Exposure to ethical hacking and penetration testing Knowledge of ITIL disciplines (Incident, Problem, Change Management) Experience with ServiceNow Security Suite Cloud experience (AWS and/or Azure) Excellent communication, presentation, and analytical skills Ability More ❯

posture across the business. A Day in the Life: Design and implement technical security architecture across IT systems, cloud platforms, and customer-facing services Lead advanced security operations including penetration testing, forensic analysis, threat hunting, and incident response Drive security automation initiatives and integrate DevSecOps best practices into our CI/CD pipelines Provide expert cybersecurity guidance to More ❯