151 to 175 of 716 Penetration Testing Jobs in the UK

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board. Job description Assistant Manager Job title: Senior Penetration Tester - Assistant Manager Location: UK Line of Business: Advisory - Risk Consulting Service Area: Cyber Security Roles and Responsibilities The Role At KPMG we are looking for an Assistant Manager who lives … to cut your teeth on and a friendly, passionate team to develop and grow. The Team The KPMG's Cyber Defence (CDS) Team conducts client facing technical assurance and penetration testing and has a long and successful history in KPMG. Our clients are diverse and we cover many sectors with particular specialisms in Financial Services, High-end Defence … Assurance and Telecommunications. We work closely with the NCSC developing new schemes such as Cross Domain Solutions Testing ( https://www.ncsc.gov.uk/blog-post/ncsc-cross-domain-industry-pilot-stage-2 ) and are members of all current NCSC and CREST testing schemes - as a result we conduct interesting and challenging work that isn't on offer More ❯

Why join Dionach by Nomios? Since being acquired by Nomios in late 2024, Dionach by Nomios has continued its dynamic growth as a leading information security company. Specializing in penetration testing and information assurance services, we offer an incredible opportunity to be part of an experienced team, build your skills, and grow professionally. Job Description Location: This role … Why join Dionach by Nomios? Since being acquired by Nomios in late 2024, Dionach by Nomios has continued its dynamic growth as a leading information security company. Specializing in penetration testing and information assurance services, we offer an incredible opportunity to be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive … enterprise security systems. Delivering presentations to technical and non-technical stakeholders. Main role will be as a Junior Cyber Security Consultant, with options in the future to move into penetration testing andto work in other areas of information security consultancy. Focus on your development by attaining industry recognised certifications. Be available for occasional on-call duties and on More ❯

for you to cut your teeth on and a friendly, passionate team to develop and grow. The KPMG’s Cyber Defence (CDS) Team conducts client facing technical assurance and penetration testing and has a long and successful history in KPMG. Our clients are diverse and we cover many sectors with particular specialisms in Financial Services, High-end Defence … Assurance and Telecommunications. We work closely with the NCSC developing new schemes such as Cross Domain Solutions Testing (https://www.ncsc.gov.uk/blog-post/ncsc-cross-domain-industry-pilot-stage-2) and are members of all current NCSC and CREST testing schemes - as a result we conduct interesting and challenging work that isn’t on offer … we are able to offer flexibility in base location, as well as embracing remote working. What will you be doing? Aspects of the role include: HACKING! Learning and developing penetration testing skills in: Infrastructure, Application (web, mobile, desktop), Cloud and AI. Working through a clear and defined certification pathway. Delivering penetration tests to some of our most More ❯

Security Engineer, you will implement and maintain robust security systems and protocols across the IT infrastructure. Your responsibilities include conducting risk assessments and vulnerability scans, mitigating vulnerabilities identified in penetration testing, and implementing preventative measures to protect against cyber threats. You will monitor the security infrastructure, detect and respond to potential threats, mentor and develop the IT security … SSO Manage MDMMAM and Conditional Access Manage security certificates and keys Manage IDS and IPS Manage PAM systems Deliver Cyber Security Awareness Training Remediate vulnerabilities and weaknesses identified during penetration testing Participate in ad-hoc IT security projects Experience – Essential The successful candidate will have good working knowledge and experience managing the following technology stack: CrowdStrike EDR Mimecast … Menlo Web Security Gateway KnowBe4 Digicert Certificates and Microsoft Certificate Services Ivanti or Automox patching AppCheck or Tenable WAS Desired Education: CISM, MS SC100, 200, 900, OSCP, or other penetration testing qualifications Industry: Financial services, SOC, pentesting is desirable Personal Skills: Excellent interpersonal, written, and verbal communication skills; ability to handle multiple priorities and projects; clear and precise More ❯

Security Engineer, you will implement and maintain robust security systems and protocols across our IT infrastructure. Your responsibilities include conducting risk assessments and vulnerability scans, mitigating vulnerabilities identified in penetration testing, and implementing preventative measures to protect against cyber threats. You will monitor the security infrastructure, detect and respond to potential threats, mentor and develop the IT security … SSO Manage MDM/MAM and Conditional Access Manage security certificates and keys Manage IDS and IPS Manage PAM systems Deliver Cyber Security Awareness Training Remediate vulnerabilities identified during penetration testing Handle ad-hoc IT security projects Experience - Essential The successful candidate will have good working knowledge and experience with the following technology stack: CrowdStrike EDR Mimecast Mail … Menlo Web Security Gateway KnowBe4 Digicert Certificates and Microsoft Certificate Services Ivanti or Automox patching AppCheck or Tenable WAS Desired Education: CISM, MS SC100, 200, 900, OSCP or other penetration testing qualifications. Industry: Financial services, SOC, Pentesting is desirable Personal Skills: Excellent interpersonal, written, and verbal communication skills Ability to handle multiple priorities, tasks, and projects simultaneously Clear More ❯

and promote a culture of continuous improvement. We are looking for an enthusiastic Senior Test Engineer (Non-Functional Security) with great technical skills, able to deliver and support security testing workstreams, including vulnerability assessments and penetration testing. You will also offer guidance to other testers on security testing best practices. You will be part of our non … functional testing specialist team, working collaboratively with your team and overseeing the testing journey. This provides an opportunity to make the test community thrive by exploring new and emerging tools and approaches and working out how you can help the organisation deliver better services. This is a rewarding role within the Test Team and provides an opportunity to … more information. Job description As a Senior Test Engineer focusing on security you will; Working within a delivery team, you'll contribute to the coordination and execution of security testing across the software development lifecycle. This will involve running vulnerability scans using tools such as Burp, coordinating with relevant teams, testing security related issues. Support the wider test More ❯

Security Engineer, you will implement and maintain robust security systems and protocols across the our IT infrastructure. You will conduct risk assessments and vulnerability scans, mitigate vulnerabilities identified in penetration testing, and implement preventative measures to protect against cyber threats. You will monitor the security infrastructure and detect and respond to potential threats. You will help mentor and … Manage MDM\MAM and Conditional Access Manage security certificates and keys. Manage IDS and IPS. Manage PAM systems Deliver Cyber Security Awareness Training Remediate vulnerabilities and weaknesses identified during penetration testing. Ad-hoc IT security projects The successful candidate will have a good working knowledge and experience in managing the majority of the following technology stack CrowdStrike EDR Mimecast … Microsoft Certificate Services Ivanti or Automox patching AppCheck or Tenable WAS Kali Linux (NMAP, Metasploit, BurpSuite, John etc) Desired Education: CISM, MS SC100, 200 and 900, OSCP or other penetration testing qualifications. Industry: Financial services, SOC, Pentesting is desirable Personal Skills: Excellent inter-personal, written and verbal communication skills The ability to handle multiple priorities, tasks and projects More ❯

Security Engineer, you will implement and maintain robust security systems and protocols across the our IT infrastructure. You will conduct risk assessments and vulnerability scans, mitigate vulnerabilities identified in penetration testing, and implement preventative measures to protect against cyber threats. You will monitor the security infrastructure and detect and respond to potential threats. You will help mentor and … Manage MDM\MAM and Conditional Access Manage security certificates and keys. Manage IDS and IPS. Manage PAM systems Deliver Cyber Security Awareness Training Remediate vulnerabilities and weaknesses identified during penetration testing. Ad-hoc IT security projects The successful candidate will have a good working knowledge and experience in managing the majority of the following technology stack CrowdStrike EDR Mimecast … Microsoft Certificate Services Ivanti or Automox patching AppCheck or Tenable WAS Kali Linux (NMAP, Metasploit, BurpSuite, John etc) Desired Education: CISM, MS SC100, 200 and 900, OSCP or other penetration testing qualifications. Industry: Financial services, SOC, Pentesting is desirable Personal Skills: Excellent inter-personal, written and verbal communication skills The ability to handle multiple priorities, tasks and projects More ❯

enterprise information security and in-depth knowledge of standards including Cyber Essentials, ISO 27001, 27002 etc., Data Protection Act and the General Data Protection Regulation. Good understanding of security testing principles, including experience of penetration testing, identifying, resolving and reporting risks. Technical security experience with the following - Microsoft core OS; Networking; Security operations; Penetration testing … Security. Propose changes to existing policies and procedures to ensure operating efficiency and regulatory compliance. Identifying security non-conformities, patching or reconfiguring systems to resolve issues and building and testing new security technologies. Research and propose appropriate security solutions. Design, co-ordinate and manage security testing procedures to verify the security of systems, networks and applications, and manage More ❯

of continuous improvement. We are looking for an enthusiastic Lead Test Engineer (Security) with great technical skills able to coach and mentor other testers and lead the non-functional testing workstream focused on Security testing. You will be part of our lead tester group, working collaboratively with your team and overseeing the testing journey with management responsibilities. This … . Please see 'Things you need to know' section below for more information. Job description As a Lead Test Engineer focusing on security, you will: Take ownership of security testing within the software development lifecycle. This will involve running vulnerability scans using tools such as Burp, coordinating with relevant teams, and testing security-related issues. As a manager … you will provide advice, coaching and mentoring to testers on non-functional testing subjects such as security testing. Attend meetings and provide stakeholders with updates. Design and execute manual and automated security test cases using standard testing techniques. Design and implement pipeline solutions to support automated security testing and reporting. For more information on the Test Engineering More ❯

clearly to both technical and non-technical audiences and hold strong team ethos that encourages diversity. IT WOULD BE GREAT IF YOU ALSO HAD ANY Experience of conducting control testing, technical reviews or audits to understand cyber compliance needs aligned to technical and regulatory standards. Experience of cyber risk management, security frameworks (NIST, ISO27001) cyber compliance, assurance, and attestation … work. Exposure to facilitating penetration testing, security risk assessments, driving the remediation of cyber vulnerabilities and remediating or mitigating cyber risks. Experience of security testing services e.g., penetration testing, ZAP testing, Burp Suite, Attack & Breach simulation, or similar. Knowledge of emerging threats e.g. Quantum, AI and Digital Ledger Financial Services Regulation and Payments Scheme More ❯

security measures to protect our organisation's assets from cyber threats and ensuring compliance with industry standards. Key Responsibilities Assist in the planning and implementation of security controls and testing to ISO27001 standards, including developing and enforcing security policies and best practices to ensure compliance. Perform business impact analyses (BIA) across key technology processes, systems and facilities and identify … identified are tracked to a satisfactory conclusion. Document and report enterprise risk and compliance issues according to required timelines. Assist with the management, planning & preparation of third-party external penetration testing. Assist in preparation and review of corrective action plans associated with penetration test/vulnerability management findings. Perform internal penetration testing to assess the security … and experience Qualifications such as CompTIA Security+, CEH or ISO27001 Lead Implementer. Experience of senior management engagement and relationship management. Experience in dealing with Information Security incidents. Experience conducting penetration tests and working with vulnerability management tools. Benefits This role offers a fantastic package. The salary on offer will be competitive, commensurate with your skills and experience. On top More ❯

security measures to protect our organisation's assets from cyber threats and ensuring compliance with industry standards. Key Responsibilities Assist in the planning and implementation of security controls and testing to ISO27001 standards, including developing and enforcing security policies and best practices to ensure compliance. Perform business impact analyses (BIA) across key technology processes, systems and facilities and identify … identified are tracked to a satisfactory conclusion. Document and report enterprise risk and compliance issues according to required timelines. Assist with the management, planning & preparation of third-party external penetration testing. Assist in preparation and review of corrective action plans associated with penetration test/vulnerability management findings. Perform internal penetration testing to assess the security … and experience Qualifications such as CompTIA Security+, CEH or ISO27001 Lead Implementer. Experience of senior management engagement and relationship management. Experience in dealing with Information Security incidents. Experience conducting penetration tests and working with vulnerability management tools. This role offers a fantastic package. The salary on offer will be competitive, commensurate with your skills and experience. On top of More ❯

security measures to protect our organisation's assets from cyber threats and ensuring compliance with industry standards. Key Responsibilities Assist in the planning and implementation of security controls and testing to ISO27001 standards, including developing and enforcing security policies and best practices to ensure compliance. Perform business impact analyses (BIA) across key technology processes, systems and facilities and identify … identified are tracked to a satisfactory conclusion. Document and report enterprise risk and compliance issues according to required timelines. Assist with the management, planning & preparation of third-party external penetration testing. Assist in preparation and review of corrective action plans associated with penetration test/vulnerability management findings. Perform internal penetration testing to assess the security … and experience Qualifications such as CompTIA Security+, CEH or ISO27001 Lead Implementer. Experience of senior management engagement and relationship management. Experience in dealing with Information Security incidents. Experience conducting penetration tests and working with vulnerability management tools. This role offers a fantastic package. The salary on offer will be competitive, commensurate with your skills and experience. On top of More ❯

This Security Testing Operations (STO) Senior Associate role is a crucial role for the offensive testing programme across the group, which protects the business from our most sophisticated cyber threats! The role holder will plan and complete offensive security simulations targeting assets across the enterprise as well as provide technical support for our bug bounty and perimeter asset … a tight-nit technical team, with external partners, BISOs, the GSOC, and other entities. Role Responsibilities & Key Accountabilities: Plan, lead and carry out red teams/purple teams and penetration tests where you assume the role of a threat actor to meet specified objectives Co-ordinate with external 3rd party vendors to enable vulnerability discovery Provide constructive feedback to … or equivalent experience and certifications in cyber security One or more of the following security certifications OSCP, OSCE, OSEE, OSWE, CREST, GXPEN preferred Demonstrable experience in Red Teaming and Penetration Testing Minimum 3 years of deep, hands-on, technical security experience with at least one of: multiple security technologies such as Firewalls, IDS/IPS, Web Proxies and More ❯

with engineers and information security teams to address security risks and provide mitigation recommendations within the Software Development Lifecycle (SDLC). Support security assurance audits of our Product Security testing to help internal and external customers navigate and validate security compliance. Perform activities such as security testing reviews with teams, product demos and trainings, and building documentation to … embedded into their SDLC. Regularly interact with internal and external customers on security-related projects and operational tasks. Design, build and deploy automation to scale the orchestration of security testing across all TWDC applications and platforms. Must Have: Minimum 3+ years of experience in cybersecurity, application security, or related information technology disciplines. Programming/scripting skills with a language … as Python to automate work. Proven experience collaborating with teams on security and building trust through delivery and data. Strong understanding of at least two of the following security testing principles and practices, such as SAST, SCA, DAST, API, Mobile and Penetration testing. Excellent communication and collaboration skills. Ability to work in a fast paced, dynamic environment. Nice More ❯

an experienced Cyber Security Engineer to strengthen its Application Security (AppSec) capabilities. This role focuses on embedding automated security controls within CI/CD pipelines and delivering hands-on testing of cloud-based services. Key Responsibilities: Conduct penetration tests and security assessments on web apps, APIs, and cloud platforms Review and optimise security automation tools within CI/… cloud security (AWS, Azure, or GCP) and DevSecOps tooling Ensure security compliance across the development lifecycle, aligned with NCSC and industry standards Required Experience: Proven track record in pen testing, vulnerability assessments, and ethical hacking Hands-on with tools such as Burp Suite, ZAP, Nmap, Metasploit Deep understanding of secure cloud infrastructure (AWS/Azure) and scripting (Python, Bash More ❯

clearly to both technical and non-technical audiences and hold strong team ethos that encourages diversity. IT WOULD BE GREAT IF YOU ALSO HAD ANY Experience of conducting control testing, technical reviews or audits to understand cyber compliance needs aligned to technical and regulatory standards. Experience of cyber risk management, security frameworks (NIST, ISO27001) cyber compliance, assurance, and attestation … work. Exposure to facilitating penetration testing, security risk assessments, driving the remediation of cyber vulnerabilities and remediating or mitigating cyber risks. Experience of security testing services e.g., penetration testing, ZAP testing, Burp Suite, Attack & Breach simulation, or similar. Knowledge of emerging threats e.g. Quantum, AI and Digital Ledger Financial Services Regulation and Payments Scheme More ❯

talk with your recruiter to learn more. Base pay range Direct message the job poster from Pentest People Pentest People is a UK-based security consultancy specialising in providing Penetration Testing as a Service to all its clients. Our innovative approach to security testing merges the benefits of consultant-led penetration testing with ongoing vulnerability More ❯

at QA Ltd Remote (Once in a month to London or Leeds office) This senior role will involve you in strategic decision-making, system implementations, and the adoption and testing of new processes and procedures which improve the security and robustness of QA’s organisational infrastructure and associated IT systems. As a Head of Cyber Security Operations you will … security of IT systems both on-prem and cloud. Creation of reports, dashboards, metrics for SOC operations and presentation to senior management. Oversight, planning and execution of vulnerability assessments, penetration tests, audits or related security assessment exercises (eg Red Team) to improve the security posture of the infrastructure, applications and services. Manage the remediation of identified vulnerabilities through to … of information security principles, including risk assessment, intrusion detection, Security Incident and Event Management (SIEM) tools, threat and vulnerability management Detailed knowledge or experience of application or network based penetration testing tools and methodologies Experience of incident response and/or security incident event management solutions, SOAR, UEBA What We'll Do For You! About QA At QA More ❯

like SAST and DAST deployments. Provide technical support with risk assessments on PHI, and steering improvements to our environment in line with common standards such as NIST. Support External Penetration Testing and application vulnerability efforts, delivering assessments and prioritizing remediation activities across the organization. Be across Threat Intelligence relevant to our industry and geographic regions, and translating that … with our technology teams. Who You Are - some of the essential things required to be successful in the role At least 4 years' experience in securing software or infrastructure, penetration testing or pure product or application security Strong expertise in offensive security techniques and methodologies, including ethical security testing Deep understanding of secure coding practices, common vulnerabilities More ❯

overall security posture. Key responsibilities: Conducting comprehensive security assessments: This involves evaluating an organization's IT infrastructure, networks, systems, and applications to identify potential weaknesses and vulnerabilities. Performing vulnerability testing and penetration testing: Using various tools and techniques (like Nessus, Burp Suite, Metasploit), you'll simulate attacks to uncover exploitable flaws. Developing threat analysis schedules and staying More ❯

overall security posture. Key responsibilities: Conducting comprehensive security assessments: This involves evaluating an organization's IT infrastructure, networks, systems, and applications to identify potential weaknesses and vulnerabilities. Performing vulnerability testing and penetration testing: Using various tools and techniques (like Nessus, Burp Suite, Metasploit), you'll simulate attacks to uncover exploitable flaws. Developing threat analysis schedules and staying More ❯

ticketing processes using Scripting languages such as Python, Bash, PowerShell, or Go. Collaborate with IT, DevOps, and engineering teams to remediate identified vulnerabilities quickly and effectively. Scope and coordinate penetration testing activities; track remediation and risk acceptance outcomes. Monitor, measure, and report on vulnerability management performance, including KPIs, SLAs, and risk metrics. Security Engineer - Vulnerability Management - Your Background … Strong Scripting skills using languages such as Python, Bash, PowerShell, or Go. Familiarity with APIs, automation workflows, and integrating with platforms like Jira, ServiceNow, or Slack. Ability to scope penetration tests and manage findings through to remediation. Strong understanding of security frameworks and standards such as ISO 27001, NIST, and CIS. Excellent communication, presentation, and influencing skills, with the More ❯

plans Vulnerability Management: Research weaknesses and find ways to counter them Security incident response: Respond to attack vectors and security incidents, and coordinate incident response across teams Security software testing: Test company software, firmware, and firewalls Security software design: Design software security systems like intrusion detection systems and firewalls Security system maintenance: Maintain and proof network security systems Security … rules, and administration of SIEM preferred Should have expertise on TCP/IP network traffic and event log analysis Network Troubleshooting skills required. Knowledge and hands-on experience in penetration testing/vulnerability scanning, security tools like tenable Nessus, kali Linux Knowledge of ITIL disciplines such as Incident, Problem and Change Management Experience of infrastructure design and management More ❯