151 to 175 of 309 Penetration Testing Jobs in the UK

other security tools, but experience with other cyber tools would also suffice. Participating in the change management process to ensure proposed changes are reviewed for security risk. Contributing to penetration testing planning, coordination and tracking of remediation. Maintaining risk logs and status dashboards for security findings and control effectiveness. Supporting reviews of cloud and on-premises systems to More ❯

multi-cloud security best practices Qualifications & Experience Certifications such as Cisco CCNA/CCNP , Fortinet NSE , or CompTIA Security+ (advantageous) Demonstrable experience delivering Cyber services in: Threat & Vulnerability Management Penetration Testing/Offensive Security SOC/MDR operations Third-Party Risk or Compliance (ISO, NIST, GDPR) Additional Information Must have the right to live and work in the More ❯

response for security risks and issues raised by SOC teams Manage implementation of logging and SIEM integration for comprehensive monitoring Prioritise and oversee vulnerability remediation across the platform Support penetration testing activities and security audits Collaboration & Leadership: Build strong relationships with central security teams and contribute to communities of practice Manage escalations of security-related issues, risks, and More ❯

technologies and tools Manage security environments across Azure and AWS infrastructure Coordinate security incident response and vulnerability remediation Oversee security monitoring, alerting, and detection capabilities Manage vulnerability assessment and penetration testing programs Maintain identity and access management controls Maintain ISO27001 certification and manage audit cycles Ensure PCI/DSS compliance for payment processing systems Manage GDPR compliance across More ❯

who are eager to develop their skills in a collaborative and fast-paced environment. Responsibilities: •Monitor and analyze security alerts to identify potential threats. •Assist with vulnerability assessments and penetration testing. •Support the implementation of security tools and protocols. •Investigate and respond to security incidents alongside the IT team. •Create detailed reports on security findings and recommendations for stakeholders. More ❯

Company Description BreachLock is a global leader in Continuous Attack Surface Discovery and Penetration Testing. We provide enterprises with evidence-based risk across their entire attack surface to determine how they will respond to an attack. Our services include Attack Surface Management, Penetration Testing, and Red Teaming. We're Hiring: Red Team Specialist UK (Remote) | BreachLock Inc. … defenses, and helping Fortune 500 clients improve their cyber resilience. What Youll Do: Plan and execute full-scope red team engagements (TIBER-style, MITRE ATT&CK aligned) Perform focused penetration tests on web applications, mobile apps (iOS/Android), APIs, and backend services , as well as traditional network/cloud infrastructure and specialised targets (IoT/OT) when required. More ❯

Company Description BreachLock is a global leader in Continuous Attack Surface Discovery and Penetration Testing. We provide enterprises with evidence-based risk across their entire attack surface to determine how they will respond to an attack. Our services include Attack Surface Management, Penetration Testing, and Red Teaming. 🚨 We're Hiring: Red Team Specialist – UK (Remote) | BreachLock Inc. … and helping Fortune 500 clients improve their cyber resilience. 🔧 What You’ll Do: Plan and execute full-scope red team engagements (TIBER-style, MITRE ATT&CK aligned) Perform focused penetration tests on web applications, mobile apps (iOS/Android), APIs, and backend services , as well as traditional network/cloud infrastructure and specialised targets (IoT/OT) when required. More ❯

Internal Penetration Tester - Hybrid in London - Inside IR35 - 6 months We are seeking an experienced Internal Pentester to join an international client secure their networks. This critical role, based in London (2-3 days per week), requires deep expertise in conducting manual and automated security assessments across networks, applications, cloud platforms, and infrastructure. You will identify and exploit vulnerabilities … play a key role in enhancing collaboration with development, cloud, and infrastructure teams, while ensuring robust security outcomes in sensitive and compliance-driven environments. Key Responsibilities: Plan and execute penetration tests - perform manual and automated testing across applications, APIs, internal/external networks, cloud environments, and Active Directory. Identify, exploit, and validate vulnerabilities - uncover security flaws such as … steps What You Will Ideally Bring: Application security knowledge - strong grasp of OWASP Top 10 and API security issues.Contract Details: Hands-on pentesting experience - 3-7+ years in penetration testing, red teaming, or offensive security across networks, cloud, AD, and web apps. Offensive security tooling - expertise with Nmap, Nessus, Masscan, Burp Suite, Metasploit, Cobalt Strike, Mimikatz, SQLmap More ❯

access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments or penetration testing. Manage relationships with external pentest providers, auditors, and assessors. Secure Development Lifecycle (SDLC) Partner with engineering teams to embed security in the SDLC and DevSecOps practices. Advise and … security leadership role. Strong understanding of security standards and frameworks (ISO 27001, SOC 2, CIS, NIST, GDPR, EU AI Act). Hands-on technical skills in areas such as penetration testing, application security, or infrastructure hardening. Familiarity with modern software development practices, DevSecOps, and cloud-native architectures (preferably Python eco-system, Kubernetes and Azure/AWS/GCP More ❯

Strong experience in building secure web and mobile apps Experience with Security architecture, Application Security assessments, penetration testing, vulnerability assessment, Secure SDLC, and Static code reviews Certified Secure Software Lifecycle Professional (CSSLP) (desirable) Responsibilities: - Design, develop, and implement security frameworks and solutions to safeguard company's assets and infrastructure. - Conduct regular security audits and risk assessments to identify More ❯

Snowflake, Databricks Splunk Certificated Architect (or Enterprise Security Admin) Bonus Points Track record of thought leadership and infosec community contributions (conference talks, blog posts, open source) Red team/penetration testing experience Deep cloud security knowledge (AWS/Azure/GCP) Kubernetes/container security knowledge Other security certifications (GIAC, HTB CAPE, PNPT, GCP/WS/Azure More ❯

and security teams. Role Assist in monitoring and maintaining the organisation’s information security systems and networks. Help identify, investigate, and respond to potential security incidents. Support vulnerability assessments, penetration testing, and system audits. Learn to implement and maintain firewalls, antivirus software, and other security tools. Assist in maintaining and updating security policies, procedures, and documentation. Help with More ❯

assessments aligned to relevant frameworks (ISO 27001, NIST, CIS, Cyber Essentials/Plus) Perform vulnerability assessments and develop mitigation strategies Support the deployment of Managed Detection and Response (MDR), Penetration Testing, and Data Loss Prevention (DLP) solutions Advise clients on governance, incident response, and security awareness training Skills & Experience Proven experience in a Cybersecurity consultancy role Professional certifications More ❯

Manage security environments across Azure and AWS infrastructure. Lead incident response efforts and coordinate vulnerability remediation activities. Manage continuous security monitoring, alerting, and detection systems. Administer vulnerability management and penetration testing programs. Maintain strong identity, access, and privilege management controls. Compliance & Assurance (30%) Manage and maintain ISO 27001 certification and audit processes. Ensure ongoing compliance with PCI DSS More ❯

and implementation of the Colt Vulnerability Management Framework. Enhancing the scope and efficiency of current vulnerability scanning and management tools and integration between them. Design and manage the periodic penetration testing exercise. Collaborating with identified stakeholders to provide specialist guidance and support, ensuring effective vulnerability identification, prioritisation and remediation activity definition. Perform Vulnerability scans using Vulnerability Management tool More ❯

of security incidents and policy violations Assist with risk assessments and security audits Implement and maintain security standards, and guidelines Work with third-party vendors and partners on pen testing and remediation activities Support awareness campaigns to improve cybersecurity hygiene among staff Assist in the development and implementation of disaster recovery and business continuity plans. Produce reports and metrics More ❯

We provide enterprises with evidence-based risk across their entire attack surface to determine how they will respond to an attack. Our services include Attack Surface Management, Penetration Testing, and Red Teaming. We're Hiring: Red Team Specialist UK (Remote) BreachLock Inc. Join BreachLocks elite offensive security team, where we dont just simulate threats we emulate real adversaries. … you'll be at the frontlines of BreachLocks offensive security operations, conducting advanced adversary emulation, bypassing modern defenses, and helping Fortune 500 clients improve their cyber resilience. Perform focused penetration tests on web applications, mobile apps (iOS/Android), APIs, and backend services , as well as traditional network/cloud infrastructure and specialised targets (IoT/OT) when required. More ❯

Harrington Starr have partnered with a global multi billion pound business in Belfast as they seek a Vulnerability and Penetration Testing Engineer to join their Belfast Centre team in providing security architecture, vulnerability and risk assessment. Responsibilities: Thoroughly evaluate proposed and current solutions to ensure compliance with established standards for secure system design. This includes meeting requirements outlines … as necessary for the protection of firms assets. Continually evaluate relevant products, tools, scripts, and techniques that improve existing assessment capabilities. Essential Criteria: Excellent knowledge of Vulnerability and Penetrating Testing concepts and best practices, including the requirements for WhiteHat/Ethical Hacking. Experience with automated tools such as Nessus, Appscan, Burp Suite, Nipper, and Trustwave. Expert understanding of the … difference between a vulnerability assessment and a penetration test in the context of assessment scope, objectives, and deliverables. Working knowledge of information security frameworks such as ISO27001, NIST, and CIS. If this sounds like a good opportunity, apply today or get in contact with Andrew.Nitek@harringtonstarr.com More ❯

Harrington Starr have partnered with a global multi billion pound business in Belfast as they seek a Vulnerability and Penetration Testing Engineer to join their Belfast Centre team in providing security architecture, vulnerability and risk assessment. Responsibilities: Thoroughly evaluate proposed and current solutions to ensure compliance with established standards for secure system design. This includes meeting requirements outlines … as necessary for the protection of firms assets. Continually evaluate relevant products, tools, scripts, and techniques that improve existing assessment capabilities. Essential Criteria: Excellent knowledge of Vulnerability and Penetrating Testing concepts and best practices, including the requirements for WhiteHat/Ethical Hacking. Experience with automated tools such as Nessus, Appscan, Burp Suite, Nipper, and Trustwave. Expert understanding of the … difference between a vulnerability assessment and a penetration test in the context of assessment scope, objectives, and deliverables. Working knowledge of information security frameworks such as ISO27001, NIST, and CIS. If this sounds like a good opportunity, apply today or get in contact with Andrew.Nitek@harringtonstarr.com More ❯

Senior Penetration Tester -£300,000+ Total Package (£150,000 - £200,000 fixed) + Sign On + Bonus Entasis Partners are proud to be exclusively supporting a global organisation at the forefront of innovation in financial systems and high-performance computing. This is not your average security role. Our partner operates in a deeply technical, high-trust environment where the … of internal talent make for an exceptionally challenging and rewarding opportunity. With a newly developed central London site focused on next-generation research, this firm is seeking a Senior Penetration Tester to strengthen its already world-class internal security capability. The Opportunity This is a hands-on, highly autonomous role embedded within a specialist cyber function. You’ll be … trusted to scope, execute, and deliver sophisticated penetration tests and control assessments across a range of technologies including Kubernetes, Jenkins, and Windows-based infrastructure. More than just finding issues, you’ll work in partnership with teams across the business to advise, remediate, and embed meaningful improvements. The environment is agile, collaborative, and engineered for depth not red tape. What More ❯

Senior Penetration Tester -£300,000+ Total Package (£150,000 - £200,000 fixed) + Sign On + Bonus Entasis Partners are proud to be exclusively supporting a global organisation at the forefront of innovation in financial systems and high-performance computing. This is not your average security role. Our partner operates in a deeply technical, high-trust environment where the … of internal talent make for an exceptionally challenging and rewarding opportunity. With a newly developed central London site focused on next-generation research, this firm is seeking a Senior Penetration Tester to strengthen its already world-class internal security capability. The Opportunity This is a hands-on, highly autonomous role embedded within a specialist cyber function. You’ll be … trusted to scope, execute, and deliver sophisticated penetration tests and control assessments across a range of technologies including Kubernetes, Jenkins, and Windows-based infrastructure. More than just finding issues, you’ll work in partnership with teams across the business to advise, remediate, and embed meaningful improvements. The environment is agile, collaborative, and engineered for depth not red tape. What More ❯

Senior Penetration Tester -£300,000+ Total Package (£150,000 - £200,000 fixed) + Sign On + Bonus Entasis Partners are proud to be exclusively supporting a global organisation at the forefront of innovation in financial systems and high-performance computing. This is not your average security role. Our partner operates in a deeply technical, high-trust environment where the … of internal talent make for an exceptionally challenging and rewarding opportunity. With a newly developed central London site focused on next-generation research, this firm is seeking a Senior Penetration Tester to strengthen its already world-class internal security capability. The Opportunity This is a hands-on, highly autonomous role embedded within a specialist cyber function. You’ll be … trusted to scope, execute, and deliver sophisticated penetration tests and control assessments across a range of technologies including Kubernetes, Jenkins, and Windows-based infrastructure. More than just finding issues, you’ll work in partnership with teams across the business to advise, remediate, and embed meaningful improvements. The environment is agile, collaborative, and engineered for depth not red tape. What More ❯

Senior Penetration Tester -£300,000+ Total Package (£150,000 - £200,000 fixed) + Sign On + Bonus Entasis Partners are proud to be exclusively supporting a global organisation at the forefront of innovation in financial systems and high-performance computing. This is not your average security role. Our partner operates in a deeply technical, high-trust environment where the … of internal talent make for an exceptionally challenging and rewarding opportunity. With a newly developed central London site focused on next-generation research, this firm is seeking a Senior Penetration Tester to strengthen its already world-class internal security capability. The Opportunity This is a hands-on, highly autonomous role embedded within a specialist cyber function. You’ll be … trusted to scope, execute, and deliver sophisticated penetration tests and control assessments across a range of technologies including Kubernetes, Jenkins, and Windows-based infrastructure. More than just finding issues, you’ll work in partnership with teams across the business to advise, remediate, and embed meaningful improvements. The environment is agile, collaborative, and engineered for depth not red tape. What More ❯

Senior Penetration Tester -£300,000+ Total Package (£150,000 - £200,000 fixed) + Sign On + Bonus Entasis Partners are proud to be exclusively supporting a global organisation at the forefront of innovation in financial systems and high-performance computing. This is not your average security role. Our partner operates in a deeply technical, high-trust environment where the … of internal talent make for an exceptionally challenging and rewarding opportunity. With a newly developed central London site focused on next-generation research, this firm is seeking a Senior Penetration Tester to strengthen its already world-class internal security capability. The Opportunity This is a hands-on, highly autonomous role embedded within a specialist cyber function. You’ll be … trusted to scope, execute, and deliver sophisticated penetration tests and control assessments across a range of technologies including Kubernetes, Jenkins, and Windows-based infrastructure. More than just finding issues, you’ll work in partnership with teams across the business to advise, remediate, and embed meaningful improvements. The environment is agile, collaborative, and engineered for depth not red tape. What More ❯

security team, monitoring and analysing real-time security events using SIEM tools to detect and respond to potential threats. The Cyber Security Engineer will conduct regular vulnerability assessments and penetration tests to identify and mitigate security risks and breaches, and will investigate security incidents and conduct forensic analysis to determine the root cause and recommend remediation actions. Outside of … Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as hiring the right person! So if you don't meet More ❯