51 to 75 of 105 Penetration Testing Jobs in the UK

between technical security and the wider business, translating requirements clearly Drive improvements across: SOC/SIEM capability (currently OpenText) Incident response and vulnerability management Penetration testing and security assurance Cloud security across Microsoft and Google environments Support key transformation programmes, particularly across data (data lake, analytics, data science ...

support to implementation and integration activities, working closely with software, systems, and integration teams Support and review security verification, validation, and test activities, including penetration testing, vulnerability analysis, and remediation activities Lead and facilitate threat modelling and TARA workshops with engineering teams and Tier 1 suppliers ...

Microsoft 365 security tools (Defender, Purview, Sentinel, Entra ID) Support ISO 27001 compliance and broader security frameworks Assist with third-party risk assessments and penetration testing Contribute to security policies, controls, and incident response Promote security awareness across the business Experience: 5+ years in cybersecurity or security operations ...

Enterprise Security (ES) Solid understanding of networking, cloud security (AWS/Azure), and MITRE ATT&CK Experience in vulnerability assessment (desirable) Exposure to penetration testing and web application security (desirable) Qualifications Cyber security certifications (e.g. Security+, CySA+, CISSP, GCIH, CCSP) CrowdStrike certifications (e.g. CCFA, CCFR, CCSE) - preferred Splunk ...

Enterprise Security (ES) Solid understanding of networking, cloud security (AWS/Azure), and MITRE ATT&CK Experience in vulnerability assessment (desirable) Exposure to penetration testing and web application security (desirable) Qualifications Cyber security certifications (e.g. Security+, CySA+, CISSP, GCIH, CCSP) CrowdStrike certifications (e.g. CCFA, CCFR, CCSE) - preferred Splunk ...

standards (e.g. ISO 27001/27002, NCSC guidance, Cyber Essentials, NIS/CAF) Experience in application security, including threat modelling, security reviews, and penetration testing Familiarity with enterprise architecture frameworks such as TOGAF (or equivalent) Relevant certifications (e.g. Azure Security Engineer/Architect) highly desirable Desirable Exposure ...

standards (e.g. ISO 27001/27002, NCSC guidance, Cyber Essentials, NIS/CAF) Experience in application security, including threat modelling, security reviews, and penetration testing Familiarity with enterprise architecture frameworks such as TOGAF (or equivalent) Relevant certifications (e.g. Azure Security Engineer/Architect) highly desirable Desirable Exposure ...

such as 007/SPF, NCSC Cloud Security Principles, NCSC Principles for Using Software as a Service (SaaS) securely, Cyber Essentials, and the CHECK penetration testing scheme Broad familiarity with UK Government physical and personnel security such as NPSA and UKSV Risk assessment using recognised standards such ...

wider SGN Security team and organisation Working alongside third-party network vendors, coordinating security activities Support with varied tasks, including internal and external audits, penetration testing activities and input into Incident & Lessons Learnt calls to identify solutions Ensuring security policies are enforced and completing routine technical vulnerability assessments ...

Skills · Experience with OT IDS technologies (e.g. Claroty, Nozomi, Dragos). · Knowledge of secure ICS engineering lifecycle and OT asset management. · Experience leading OT penetration testing or red‐team style engagements. · Understanding of IoT/IIoT integrations and cloud‐connected OT systems. · Consulting & Leadership Skills · Ability to translate ...

Advanced Splunk (SPL + Enterprise Security) expertise Solid understanding of networks, cloud (AWS/Azure), and MITRE ATT&CK Bonus: Vulnerability Assessment and Pen Testing experience MUST HAVE LOCAL GOVERNMENT EXPERIENCE Certifications (desirable): Splunk Certified Cybersecurity Defense Engineer (highly preferred) CrowdStrike certifications (CCFA, CCFR, CCSE) CISSP, GCIH, or similar ...

significant deals, operating with credibility at C‐suite and board level. You will excel in consultative, multi‐stakeholder sales environments, confidently positioning advanced cybersecurity testing and assurance capabilities in commercially compelling, outcome‐driven terms. This role demands resilience, pace, and a sharp focus on results, alongside the gravitas … success closing strategically significant, multi‐year contracts in competitive and procurement‐led environments Ability to rapidly assimilate and credibly position sophisticated technical offerings, including penetration testing, red teaming, cloud security, AI assurance, and IoT/OT assurance Executive‐level communication, negotiation, and influencing skills, with the confidence ...

across the CAPL Technology Teams. To be successful as a Business Information Security Officer, you should have: Knowledge or experience of Security Tooling (e.g. penetration testing, applications security, network security) and industry standards (e.g. NIST and ISO27001) frameworks and methodologies. The ability to identify, understand and translate Cyber … business units to develop and implement security policies and procedures for the banks operations aligned to the risk management framework. Management of the implementation, testing and monitoring of security controls across the banks IT systems to ensure the effectiveness of controls and mitigation of risk. Execution of training content ...

maturing capabilities across risk management, incident response, vulnerability management, governance, and awareness Experience working with third-party security providers across services such as penetration testing, Managed Detection and Response, and compliance programmes A strong understanding of how to enable the safe use of AI within a business Excellent ...

regulated UK bank, fintech, or other regulated financial services organisation, with demonstrated engagement on CBEST matters (including oversight of threat led penetration testing) at Board Risk Committee level. Demonstrable experience achieving and maintaining ISO/IEC 27001 certification. Strong background in software application security and mobile security. Experience ...

security team, monitoring and analysing real-time security events and responding to potential threats. The Cyber Security Engineer will conduct regular vulnerability assessments and penetration tests to identify and mitigate security risks and breaches, and will investigate security incidents and conduct forensic analysis to determine the root cause … Entra, Purview and Copilot Experience with conditional access policies and mobile application management policies Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous, as would a background in general windows server support, ideally with broad experience of networks ...

recommend continuous improvements and be involved in - Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery. Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk Conduct regular security ...

assessments, threat modelling, incident response planning, and recovery testing. Strengthen information governance, data protection, and secure configuration baselines. Own security-focused change control, coordinate penetration testing, and manage remediation activity. Essential Skills & Experience Strong Microsoft support and administration background, with proven experience supporting complex, enterprise Microsoft environments. ...

/identity and access SCCM Playing an active role in cyber security initiatives, including endpoint protection, vulnerability management, and responding to security findings Supporting penetration testing activity and helping implement recommendations Contributing to change control, documentation, and technical standards Working closely with senior stakeholders to explain risks, options ...

architecture differences. · Knowledge & experience of OT IDS technologies (e.g. Nozomi, Claroty, Dragos). · Understanding of industrial networking and gateways. · Experience with OT focused penetration testing. · Knowledge of cloud‐integrated OT solutions. · Consulting Skills · Ability to translate technical findings into business recommendations. · Strong stakeholder management. · Comfortable delivering workshops. Why join ...

Principal Security Consultant (CCSAM/CCRTM) - RTO NetSPI® pioneered Penetration Testing as a Service (PTaaS) and leads the industry in modernpentesting. Combining world-class security professionals with AI and automation,NetSPIdelivers clarity, speed, and scale across 50+pentesttypes, attack surface management, and vulnerability prioritization. TheNetSPIplatform streamlines workflows and accelerates … remediation, enabling our experts to focus on deep dive testing that uncovers vulnerabilities others miss. Trusted by the top 10 U.S. banks and Fortune 500 companies worldwide,NetSPIhas been driving security innovation since 2001. NetSPIis on an exciting growth journey as we disrupt and improve the proactive security market. ...

systems. Develop and deliver cybersecurity initiatives, including Cyber Essentials certification. Manage security platforms such as identity management and endpoint protection tools. Conduct vulnerability management, penetration testing, and incident response planning. Drive technical projects from planning through to delivery and review. Contribute to IT strategy, standards, documentation, and change ...

critical. They’re now hiring a Senior Product Security Engineer to embed security deeper into their software development lifecycle. This is not a pure penetration testing role. It’s for someone who enjoys working directly with engineers, improving secure design, and building scalable DevSecOps guardrails. What ...

EUC. Being consulted on identity and access administration matters Skills Required: Strong technical knowledge of security tools, frameworks and best practices. Experience with penetration testing and vulnerability management processes. Understanding of endpoint protection technologies and policies. Knowledge of identity and access management principles. Familiarity with security accreditations such ...

stakeholders and customers Ensure compliance with frameworks such as the NIST Risk Management Framework and Cyber Security Framework Participate in or plan CHECK/penetration testing activities Stay current with evolving cyber security threats, trends, and technologies Occasionally travel to customer sites for meetings and investigations Skills & Experience ...