101 to 125 of 291 Penetration Testing Jobs in the UK

concepts Strong analytical and problem-solving skills Good communication skills and the ability to explain technical concepts clearly Nice to Have (But Not Required): Personal or academic experience with penetration testing, malware analysis, or security tools Knowledge of scripting (e.g. Python, Bash, PowerShell) Internship, placement, or lab-based university project in security Familiarity with security frameworks or certifications … real users and systems Mentoring : One-on-one support to help you grow professionally and personally Career Pathways : Clear progression into specialised roles such as SOC Analyst, Security Engineer, Penetration Tester, or Risk Analyst Collaborative Culture : Join a team that values innovation, integrity, and inclusion Excellent Company Benefits We believe in supporting our people from day one. Here’s More ❯

concepts Strong analytical and problem-solving skills Good communication skills and the ability to explain technical concepts clearly Nice to Have (But Not Required): Personal or academic experience with penetration testing, malware analysis, or security tools Knowledge of scripting (e.g. Python, Bash, PowerShell) Internship, placement, or lab-based university project in security Familiarity with security frameworks or certifications … real users and systems Mentoring : One-on-one support to help you grow professionally and personally Career Pathways : Clear progression into specialised roles such as SOC Analyst, Security Engineer, Penetration Tester, or Risk Analyst Collaborative Culture : Join a team that values innovation, integrity, and inclusion Excellent Company Benefits We believe in supporting our people from day one. Here’s More ❯

concepts Strong analytical and problem-solving skills Good communication skills and the ability to explain technical concepts clearly Nice to Have (But Not Required): Personal or academic experience with penetration testing, malware analysis, or security tools Knowledge of scripting (e.g. Python, Bash, PowerShell) Internship, placement, or lab-based university project in security Familiarity with security frameworks or certifications … real users and systems Mentoring : One-on-one support to help you grow professionally and personally Career Pathways : Clear progression into specialised roles such as SOC Analyst, Security Engineer, Penetration Tester, or Risk Analyst Collaborative Culture : Join a team that values innovation, integrity, and inclusion Excellent Company Benefits We believe in supporting our people from day one. Here’s More ❯

concepts Strong analytical and problem-solving skills Good communication skills and the ability to explain technical concepts clearly Nice to Have (But Not Required): Personal or academic experience with penetration testing, malware analysis, or security tools Knowledge of scripting (e.g. Python, Bash, PowerShell) Internship, placement, or lab-based university project in security Familiarity with security frameworks or certifications … real users and systems Mentoring : One-on-one support to help you grow professionally and personally Career Pathways : Clear progression into specialised roles such as SOC Analyst, Security Engineer, Penetration Tester, or Risk Analyst Collaborative Culture : Join a team that values innovation, integrity, and inclusion Excellent Company Benefits We believe in supporting our people from day one. Here’s More ❯

from our Crewe campus . In this role, you will report to the Functional Manager - Product Security Test & Incident Management and will be responsible for preparing and executing cybersecurity testing for automotive products in compliance with UNECE R . 155 and China GB 44495 regulations. This role plays a critical part in ensuring our vehicle systems are secure and … meet regulatory requirements across global markets. Responsibilities include: Manage and maintain test properties to ensure readiness for cybersecurity testing, including flashing, coding, debugging, analysis, and issue resolution on both test benches and vehicles. Develop cybersecurity test cases aligned with regulatory requirements (e.g., UNECE R155, GB 44495). Execute cybersecurity test cases and generate comprehensive test reports. Support cybersecurity homologation … and compliance testing activities for global regions. Coordinate and plan various levels of product security testing throughout the development lifecycle. About the Person The successful candidate will be a delivery-focused and results-driven cybersecurity test engineer , ideally with hands-on experience in product security testing within the automotive industry . They should possess strong technical skills More ❯

Lead or support incident response activities: investigation, containment, eradication, recovery, and reporting. Conduct root cause analysis and implement security hardening improvements. Vulnerability & Risk Management Run regular vulnerability scans and penetration testing activities; track remediation of findings. Evaluate risks and recommend security enhancements or compensating controls. Maintain asset inventories and ensure patching and configuration baselines are followed. Security Governance More ❯

security or technology teams Strong knowledge across core domains such as cloud, infrastructure, networks, and secure software development Expertise in enterprise security operations, risk management, and governance Experience with penetration testing, application security testing, and red teaming Security certifications (e.g. More ❯

Oversee advanced DLP and insider risk management to protect critical IP. Partner with IT and Operations to ensure resilience in the event of cyber incidents or infrastructure outages. Coordinate penetration testing, red team exercises, and remediation activities. Partner with IT and DevOps teams to embed secure-by-design principles into systems, applications, and IaC. Oversight of the Incident More ❯

Oversee advanced DLP and insider risk management to protect critical IP. Partner with IT and Operations to ensure resilience in the event of cyber incidents or infrastructure outages. Coordinate penetration testing, red team exercises, and remediation activities. Partner with IT and DevOps teams to embed secure-by-design principles into systems, applications, and IaC. Oversight of the Incident More ❯

or looking to move into another area of Cyber Security. Our industry-renowned and awarded training program will teach you to perform web application security assessment, network and infrastructure testing, applied research, consultancy skills, and more. You will propel your career and be on the fast track to becoming a full fledge Penetration Tester (aka Security Consultant). … from client communication to report writing You’ll work through real-world scenarios using tools like Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through the programme, you’ll deliver a … gaining CRT or CSTM, you will apply to NCSC for CHECK Team Member accreditation. Transition into client-facing delivery work with confidence and credibility Build a strong foundation in penetration testing and consultancy, ready to specialise or broaden into other areas of cyber security. A successful Associate Has a good level of English command, both written and spoken More ❯

or looking to move into another area of Cyber Security. Our industry-renowned and awarded training program will teach you to perform web application security assessment, network and infrastructure testing, applied research, consultancy skills, and more. You will propel your career and be on the fast track to becoming a full fledge Penetration Tester (aka Security Consultant). … from client communication to report writing You’ll work through real-world scenarios using tools like Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through the programme, you’ll deliver a … gaining CRT or CSTM, you will apply to NCSC for CHECK Team Member accreditation. Transition into client-facing delivery work with confidence and credibility Build a strong foundation in penetration testing and consultancy, ready to specialise or broaden into other areas of cyber security. A successful Associate Has a good level of English command, both written and spoken More ❯

or looking to move into another area of Cyber Security. Our industry-renowned and awarded training program will teach you to perform web application security assessment, network and infrastructure testing, applied research, consultancy skills, and more. You will propel your career and be on the fast track to becoming a full fledge Penetration Tester (aka Security Consultant). … from client communication to report writing You’ll work through real-world scenarios using tools like Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through the programme, you’ll deliver a … gaining CRT or CSTM, you will apply to NCSC for CHECK Team Member accreditation. Transition into client-facing delivery work with confidence and credibility Build a strong foundation in penetration testing and consultancy, ready to specialise or broaden into other areas of cyber security. A successful Associate Has a good level of English command, both written and spoken More ❯

or looking to move into another area of Cyber Security. Our industry-renowned and awarded training program will teach you to perform web application security assessment, network and infrastructure testing, applied research, consultancy skills, and more. You will propel your career and be on the fast track to becoming a full fledge Penetration Tester (aka Security Consultant). … from client communication to report writing You’ll work through real-world scenarios using tools like Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through the programme, you’ll deliver a … gaining CRT or CSTM, you will apply to NCSC for CHECK Team Member accreditation. Transition into client-facing delivery work with confidence and credibility Build a strong foundation in penetration testing and consultancy, ready to specialise or broaden into other areas of cyber security. A successful Associate Has a good level of English command, both written and spoken More ❯

or looking to move into another area of Cyber Security. Our industry-renowned and awarded training program will teach you to perform web application security assessment, network and infrastructure testing, applied research, consultancy skills, and more. You will propel your career and be on the fast track to becoming a full fledge Penetration Tester (aka Security Consultant). … from client communication to report writing You’ll work through real-world scenarios using tools like Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through the programme, you’ll deliver a … gaining CRT or CSTM, you will apply to NCSC for CHECK Team Member accreditation. Transition into client-facing delivery work with confidence and credibility Build a strong foundation in penetration testing and consultancy, ready to specialise or broaden into other areas of cyber security. A successful Associate Has a good level of English command, both written and spoken More ❯

practices and timely remediation of vulnerabilities, aligned with criticality-based policy enforcement. Prioritise weaknesses in IT infrastructure and applications using manual and automated methods, including results from Static Application Testing (SAST) and Software Composition Analysis (SCA) tooling (in conjunction with the Service Transition team). Influence stakeholders to prioritise and drive remediation of process and technology gaps Work with … Cyber Security, Application Teams, and IT Risk to ensure controls are met and vulnerabilities are addressed across infrastructure and applications. Engage and support Cyber Security for remediation of penetration test findings. Engage with Internal and External Auditors as the SME on all matters relating to VM. Stakeholder Engagement & Culture Act as the primary Service Matter Expert and point of … AWS, Azure, Oracle), with a high-level understanding of platforms, operating systems, and technologies. Proven capability in creating and executing comprehensive threat and vulnerability management programmes, including vulnerability scanning, penetration testing, and security awareness training. Proficiency in using vulnerability scanning tools (e.g. Tenable, Qualys, Rapid7, Veracode, JFrog Xray), threat intelligence platforms, and incident response tools. Prior experience implementing More ❯

We are seeking an enthusiastic security consultant to join our team. Working alongside some of the best hacking minds in the country, you will be delivering pen testing services to a diverse range of clients, from presales through to delivery and debriefs. We are looking for a consultant with a minimum of two years experience in pen testing who can deliver the following: Web application testing API testing External & Internal Infrastructure testing (including build reviews) Mobile application testing (including knowledge of standards such as OWASP MASVS) Experience testing in any of the following areas is also desirable: Compiled application testing Cloud security reviews (including AWS & Azure) Kubernetes reviews Knowledge and development More ❯

We are seeking an enthusiastic security consultant to join our team. Working alongside some of the best hacking minds in the country, you will be delivering pen testing services to a diverse range of clients, from presales through to delivery and debriefs. We are looking for a consultant with a minimum of two years experience in pen testing who can deliver the following: Web application testing API testing External & Internal Infrastructure testing (including build reviews) Mobile application testing (including knowledge of standards such as OWASP MASVS) Experience testing in any of the following areas is also desirable: Compiled application testing Cloud security reviews (including AWS & Azure) Kubernetes reviews Knowledge and development More ❯

secure, innovative solutions across industries. We foster collaboration, inclusion, and continuous growth, with networks supporting diversity, equity, and belonging. What You'll do: Lead and manage threat intelligence-led penetration tests across applications, infrastructure, cloud (AWS/Azure/O365), APIs, and OT Develop advanced test plans, identify critical assets, and deliver detailed, actionable reports for technical and business … team capabilities Contribute to research on emerging threats and attack techniques to strengthen proactive security What You'll Bring: CREST CRT (or higher) certification - essential 5+ years' experience in penetration testing with strong understanding of adversarial tactics and threat intelligence Expertise across network, cryptography, vulnerabilities, and attack vectors Strong communication and reporting skills Experience with Breach Attack Simulation More ❯

Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks and systems for threats; lead incident response efforts Perform root cause analysis and maintain incident response protocols Recommend enhancements to improve More ❯

Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks and systems for threats; lead incident response efforts Perform root cause analysis and maintain incident response protocols Recommend enhancements to improve More ❯

from containment to recovery. You'll document incidents thoroughly, follow established playbooks, and help improve them over time. Automation will be key to streamlining investigations and enriching threat intelligence. Testing and Validation You'll take part in cyber crisis simulations, penetration testing, and table-top exercises to ensure our defences are robust and response plans are effective. More ❯

like ISO 27001, SOC 2, HITRUST, FedRAMP, and UK Cyber Essentials as applied to cloud SaaS, PaaS, and IaaS operations. Experience building continuous integration/deployment pipelines with robust testing and deployment schedules Experience working with internal customers and translating requests into prioritized work or features Expertise in applying risk identification techniques to develop security solutions Experience and understanding … of cryptographic algorithms, standards, implementation and application Experience and understanding of threat modeling, penetration testing, reverse engineering and attacks on software Experience working with large enterprise customers The ideal candidate posseses or has the ability to obtain and maintain a Developed Vetting (DV) clearance. More ❯

Azure, AWS, GCP, and containerized environments (Kubernetes, Docker) Architect, design, and implement secure cloud solutions, including network, infrastructure, IAM, firewalls, NSG, ASG, WAF, and cloud-native security tools Conduct penetration tests, forensic investigations, vulnerability assessments, SAST, DAST, and SCA Integrate security into Secure Software Development Lifecycle (SSDLC) and CI/CD pipelines Act as the primary security expert for … Stay ahead of latest cloud security threats, vulnerabilities, and emerging technologies What Youll Bring 7+ years in information security, including cloud security (Azure, AWS, GCP), advanced networking (Layer 47 ), penetration testing, and application security Microsoft Azure expertise with hands-on experience in NSG, ASG, and WAF configuration Scripting skills (Python, PowerShell, Bash or simmilar) for automation, troubleshooting, and More ❯

Azure, AWS, GCP, and containerized environments (Kubernetes, Docker) Architect, design, and implement secure cloud solutions, including network, infrastructure, IAM, firewalls, NSG, ASG, WAF, and cloud-native security tools Conduct penetration tests, forensic investigations, vulnerability assessments, SAST, DAST, and SCA Integrate security into Secure Software Development Lifecycle (SSDLC) and CI/CD pipelines Act as the primary security expert for … of latest cloud security threats, vulnerabilities, and emerging technologies What You’ll Bring 7+ years in information security, including cloud security (Azure, AWS, GCP), advanced networking (Layer 4–7 ), penetration testing, and application security Microsoft Azure expertise with hands-on experience in NSG, ASG, and WAF configuration Scripting skills (Python, PowerShell, Bash or simmilar) for automation, troubleshooting, and More ❯

Operational Technology (OT) Cyber Security Engineer to join their Service and Support team. The role involves designing and securing OT networks across various critical industries, conducting advanced threat analysis, penetration testing, and vulnerability assessments. The engineer will develop and implement cybersecurity solutions, lead risk mitigation efforts, mentor junior team members, and support project management and business development activities. More ❯