1 to 25 of 67 Remote Security Testing Jobs in the UK

London, United Kingdom Posted on 24/02/2025 Job Description: Security Testing Engineer Location: Remote with occasional travel as required Employment Type: Permanent About the Role Scrumconnect Consulting is looking for a Security Testing Engineer to ensure the security, resilience, and compliance of … GOV.UK digital services . This role involves identifying vulnerabilities, mitigating security risks, and ensuring adherence to government security policies and DDAT frameworks . You will work closely with developers, security architects, and business stakeholders to embed security testing into Agile development workflows and DevSecOps pipelines. … As a Security Testing Engineer , you will conduct static and dynamic security assessments, penetration testing, and vulnerability analysis , ensuring that applications meet the highest security standards. Key Responsibilities 1. Security Test Planning & Execution Develop, implement, and execute comprehensive security test plans for GOV.UK More ❯

and validated by science and data. Superpowered by creativity and design. All underpinned by technology created with purpose. YOUR ROLE The Invent Digital Trust & Security (DT&S) practice focuses on ensuring secure business outcomes for our clients, providing Cybersecurity advisory and transformation consulting in areas such as security strategy, risk management, human risk management, data and identity security, secure intelligent industry, Gen-AI risk, and security operations modernisation. Our security specialists and innovators enable our clients to evaluate cyber risks, redesign Cybersecurity operating models, modernise digital identity capabilities, lead programmes to drive security culture change, and transform security and compliance regimes to make them efficient, effective, sustainable, and resilient. For this role, we are looking for individuals with experience in Cybersecurity to help embed security culture and practices. We continuously recruit across a range of experienced hire grades for our More ❯

SOFTWARE APPLICATION SECURITY ENGINEER £90,000 + 15% Bonus + Excellent Staff Benefits including Strong Pension, Life Assurance Hybrid Working ( 2 Days per Week Onsite ) An interesting opportunity has presented itself within one of the UKs largest Independent Software Based Organisations who are one of a major driving forces … behind Innovative Development of Enterprise-Led Internet Technology. They are now looking for an Application Security Engineer to join their existing & high performing In - House Security Team of 35 Staff including SOC & Cyber Analysts through to Experienced Cyber Security Engineers & Security Architects. As an AppSec Engineer … you will focus on the technical side of IT Security, specifically looking at Application Security & Code Analysis, ensuring their Applications are Built Securely. The Information & Cyber Security Team deal with the Security of Closed-Sourced, Open-Source & In-House Developed Applications ensuring that All Systems & Services More ❯

an experienced Quality Assurance Lead who is passionate about our mission and capable of supporting our rapid growth. You will be leading the Software Testing function within the Engineering team, you will lead a small team of QA testers and you will have the opportunity to ensure the Quality … of our Product by hands-on testing while leading by example. About MediShout The world's first platform aggregating all operational departments and suppliers in hospitals Staff at over 100 Hospitals reporting their operational issues using our apps or QR codes Working with global medical device companies and facilities … and experienced QA Lead to build and lead our growing QA team. This hands-on role involves leading by example in manual and automated testing (using Cypress), mentoring QA engineers, and shaping the QA function from the ground up within our dynamic startup. You will be reporting to the More ❯

and commercial applications. We are trusted by our customers to protect their mission-critical information in the face of advanced persistent threats. Our offensive security engineers emulate these real-world threats and provide critical signal on attack vectors to help improve our security posture. This role will be … hands-on and requires a deep understanding of micro-service architecture, multi-tenancy vulnerabilities, cloud security, and web application security. In this role you'll dive deep into the security of our products and more: Conduct security assessments. You'll learn how our products work at the … then try to break them. This includes everything in our current and future product and service portfolio from Apollo to Foundry. You'll document security findings and work with AppSec and product engineers to develop mitigations. Build offensive testing tooling and automation. Scale offensive security testing More ❯

UK based, primarily remote working with some travel required to our London Office. Sponsorship is not available for this role. What you will do: Security Integration in CI/CD Pipelines: Implement security controls within CI/CD pipelines using automation and best practices, ensuring vulnerabilities are caught … early in the development cycle. Infrastructure as Code (IaC) Security: Secure the infrastructure by applying security measures to IaC tools such as Terraform and Ansible. Container Security: Ensure that containers (Docker, Kubernetes) are secured by configuring appropriate policies, scanning for vulnerabilities, and managing runtime security. Cloud Security: Design, implement, and manage security across Azure, focusing on identity management, data protection, and network security. Vulnerability Management: Identify and prioritize vulnerabilities across infrastructure and applications, and collaborate with teams to remediate them in a timely manner. Threat Modelling and Risk Assessment: Perform threat modelling to identify security More ❯

Ventures, as well as the founders of Zoopla, Funding Circle, Comply Advantage, Tessian, Fenergo and Fidel. The Role: You will be responsible for information security at Thirdfort, leveraging your expertise to help us live our Build on Trust company value. By improving the coverage and efficiency of our security controls, you will help reduce our security risk whilst also allowing us to give best in class answers to clients, regulators and auditors about our security practices. You will report directly to the Head of Engineering. You will oversee critical security infrastructure and operations, automate security workflows, and work closely with technical and business stakeholders to ensure effective, efficient and appropriate security controls are in place across all parts of the business. This is a great opportunity to across all aspects of security, and help shape how security is done at Thirdfort. More ❯

A Senior Information Security Specialist, who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The application security team deals with the security of closed source, open source, and in-house … that you possess an understanding of the Secure Software Development Lifecycles and the assessment of code. This role is part of the broader Information Security department, which is comprised of engineers and analysts with varying backgrounds. Collectively, the team utilises enterprise and bespoke tooling to identify and mitigate threats … in the Company's hybrid working from home policy. Preferred skills and experience Excellent understanding and demonstrable experience of automated, dynamic and static application security testing tools. Excellent understanding and experience with manual security testing to find vulnerabilities and logical issues. Knowledge and understanding of OWASP More ❯

Who we are looking for A Senior Information Security Specialist, who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The application security team deal with the security of closed source … that you possess an understanding of the Secure Software Development Lifecycles and the assessment of code. This role is part of the broader Information Security department, which is comprised of engineers and analysts with varying backgrounds. Collectively, the team utilises enterprise and bespoke tooling to identify and mitigate threats … in the Company’s hybrid working from home policy. Preferred skills and experience Excellent understanding and demonstrable experience of automated, dynamic and static application security testing tools. Excellent understanding and experience with manual security testing to find vulnerabilities and logical issues. Knowledge and understanding of OWASP More ❯

Who we are looking for A Senior Information Security Specialist, who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The application security team deal with the security of closed source … that you possess an understanding of the Secure Software Development Lifecycles and the assessment of code. This role is part of the broader Information Security department, which is comprised of engineers and analysts with varying backgrounds. Collectively, the team utilises enterprise and bespoke tooling to identify and mitigate threats … in the Company’s hybrid working from home policy. Preferred skills and experience Excellent understanding and demonstrable experience of automated, dynamic and static application security testing tools. Excellent understanding and experience with manual security testing to find vulnerabilities and logical issues. Knowledge and understanding of OWASP More ❯

best in class expertise Encouraged and supported in developing crypto knowledge The Role An opportunity has arisen for an experienced SDET who will be testing the software platform for a new digital asset exchange; focused on an institutional client base. The ideal applicant will bring previous experience in testing scalable mission-critical financial systems, working with global teams, ensuring best testing practices, and staying within agreed project timelines. As the SDET, you must be hands-on and well-versed with the automation of API testing using WebSockets. You will also assist API QA teams based in … the PH location and help prioritize their automation backlog and make recommendations for testing tools, maintenance, and testing strategies, and assist with creating a maintainable application landscape alongside other QA Engineers, Development Leads, Developers, and Scrum Masters. Working for this employer as they experience continued growth you will More ❯

best in class expertise Encouraged and supported in developing crypto knowledge The Role An opportunity has arisen for an experienced SDET who will be testing the software platform for a new digital asset exchange; focused on an institutional client base. The ideal applicant will bring previous experience in testing scalable mission-critical financial systems, working with global teams, ensuring best testing practices, and staying within agreed project timelines. As the SDET, you must be hands-on and well-versed with the automation of API testing using WebSockets. You will also assist API QA teams based in … the PH location and help prioritize their automation backlog and make recommendations for testing tools, maintenance, and testing strategies, and assist with creating a maintainable application landscape alongside other QA Engineers, Development Leads, Developers, and Scrum Masters. Working for this employer as they experience continued growth you will More ❯

Job Title: Application Security Engineer Job Type: Permanent Location: UK or Europe (Remote) Salary: $150,000 - $180000 About the Role My client is seeking an Application Security Engineer to strengthen our security posture by identifying vulnerabilities, integrating best practices into CI/CD pipelines , and ensuring compliance … with PCI DSS, SOC 2, GDPR, and CCPA . You'll work closely with development teams to embed security into the Software Development Lifecycle (SDLC) from the ground up. If you're passionate about securing applications and solving complex security challenges, we want to hear from you! Key … Responsibilities Conduct security reviews and threat modeling during the application design phase. Perform static and dynamic application security testing (SAST/DAST) on internal and third-party applications. Define and maintain security standards for software development. Integrate security tools and processes into CI/CD More ❯

Location(s):UK, Europe & Africa : UK : Guildford Job Title: Information Security Classified Networks Technical Assurance Lead Location: Guildford, with some option for hybrid working. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role What you'll … into the IT team, Accreditor and affected business units. Maintain accreditation and compliance with frameworks such as Secure by Design, NIST-800-53, STRAP; Security Testing - Scope and oversee penetration testing, vulnerability scanning, and other security validation activities, to ensure effectiveness of security controls; Design … and Architecture Review - Assess the Information Security of IT architecture and system designs during project lifecycles, and provide recommendations to ensure secure design principles are applied and within standards and compliance; Policy and Standards - Develop and enforce technical security policy, procedures, standards and guidance, to ensure policies are More ❯

Birmingham, United Kingdom Principal Consultant - Cyber Security We are searching for an experienced Principal Consultant - Cyber Security. Make an Impact at RSM UK Consulting brings together multiple teams across Transactions, Risk & Consulting, ABA, and Outsourcing to provide client-centric solutions for RSM's current and future clients within the … service and identification of further work opportunities. The role will involve managing the delivery of agreed work activities with a primary focus on technical security including offensive security services. You'll benefit from ongoing coaching, career mentoring, and be supported by our career pathway. You will have an … to develop market-leading skills across our different capabilities and advance your professional development. You will make an impact by: Planning and delivering cyber security engagements, from scoping through to delivery, debriefs, and report writing. Contributing towards the development of exciting new market-facing offensive security cyber security More ❯

Principal Product Security Engineer Apply locations CZ - Prague UK - London time type Full time posted on Posted 6 Days Ago job requisition id JR103958 Our Product Security team is seeking a Principal Product Security Engineer to define and lead a secure development strategy and approach in a … fast-paced, agile development environment. You will be responsible for defining and driving security-related initiatives in collaboration with internal stakeholders. You will bring a wealth of technical expertise and industry experience spanning application security, cloud security, DevSecOps and CI/CD. The ideal candidate for this … has extensive industry experience with a strong technical background, is self-driven, with the ability to translate business objectives into technical requirements. Responsibilities: Drive security roadmap for SSDLC adoption across product portfolio, designing security practices in alignment with DevSecOps principles. Establish guidelines and architectural principles based on industry More ❯

Security Systems Engineer - DevSecOps - Remote - Amazing role - to £70,0000 + Bens Once in a life time opportunity to join a scaling up tech company who are disrupting the digital security sector. My customer are an incredibly innovative scaling up tech company who are looking to recruit a … Security Systems Engineer with experience of DevSecOps, AWS, and terraform who is looking for a new challenge. Excellent salary - Up to 70k + pension + health + share scheme + flexible working + 25 days holidays. Complete remote role with quarterly meet-ups and customer site visits. Position Overview … We are seeking a security systems engineer who combines strategic oversight with strong hands-on capabilities. This role is pivotal in shaping the overarching technical security posture of our organisation while actively integrating security into our development and operational workflows. The ideal candidate will bridge the gap More ❯

Information Security Officer About the role: We're seeking a seasoned Information Security Officer to drive our security strategy from the ground up. As the first dedicated security leader, you'll be at the forefront of protecting our systems, data, and users, ensuring we can scale … securely and remain fully compliant. You'll steer policy creation, oversee risk management, drive security testing, and collaborate company-wide to embed security in everything we do. About us: BeOne is a next-generation neobank that redefines how individuals and businesses manage money by blending traditional and … vision is to become the largest regulated funds and data transfer network for both retail and business customers. We empower users with financial freedom, security, and efficiency, whether for personal finances, business operations, or global investments. What you will do: Drive the company's information security strategy, ensuring More ❯

Job Title: Security Assurance Lead Salary: £53,300 - £71,300 Location: Cambridge/Hybrid with a minimum 2 days a week in the office Contract: Permanent, Full-time (35 hours per week) The Security Assurance Lead is crucial to staying ahead of emerging threats and ensuring our information … demands a professional who excels at identifying vulnerabilities and ensuring compliance with industry standards. If you have the expertise and drive to elevate our security, we are eager to welcome you to our team. We are Cambridge University Press & Assessment, a world-leading academic publisher and assessment organisation and … a proud part of the University of Cambridge. About the role The Security Assurance Lead plays a key role in safeguarding Cambridge University Press & Assessment's information assets and ensuring compliance with industry standards, regulations, and best practices. This role involves leading security assurance initiatives, conducting risk assessments More ❯

Location(s): UK, Europe & Africa : UK : Guildford Job Title: Information Security Classified Networks Technical Assurance Lead Location: Guildford, with some option for hybrid working. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. What you'll … work, interfacing with the IT team, Accreditor, and affected business units. Maintain compliance with frameworks such as Secure by Design, NIST-800-53, STRAP. Security Testing - Scope and oversee penetration testing, vulnerability scanning, and other security validation activities to ensure effectiveness of security controls. Design … and Architecture Review - Assess the Information Security of IT architecture and system designs during project lifecycles, providing recommendations for secure design principles. Policy and Standards - Develop and enforce technical security policy, procedures, standards, and guidance to ensure effective implementation across projects and teams. Continuous Improvement - Identify gaps in More ❯

An SC cleared Network Test Manager is required to work with our customer to scope testing requirements for the primary network and manage the tests with the TDAs, service, security, and test assurance teams. Tis is a hybrid role with 2 days on site in Southampton and is … inside IR35 so will require working via an FCSA umbrella company. The main testing areas that need to be scoped and managed are: *Security Testing - Review the vulnerability of the network, and review configuration of sample devices against CIS Benchmarks and NATS security policies *Penetration Testing … test lead to support the scoping, execution and managing of remediations. This will be a separate resource to the overall Test Lead *Network Failover Testing - Tests will be based on failure modes as identified in the FMEA (Failure Modes and Effects Analysis) documents for the primary network *Performance Testing More ❯

Penetration Testing Team Lead - AVP Penetration Testing Team Lead - AVP Apply locations London time type Full time posted on Posted 3 Days Ago job requisition id -WD Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one … being inspired is expected and making a meaningful impact is rewarded. Main Purpose of the Role: To ensure effective management and control of information security, IT and information risk for MUSI by ensuring all appropriate Security, IT and common-sense controls are in place, that these controls are … being followed and that this is evidenced across the whole business and IT department. The role will involve liaising with the other information security functions within the MUS international business and MUFG group to ensure a consistent approach to all controls, standards and policies is adopted across the organisation. More ❯

our Non-Functional Test and assurance efforts, confirming our products and services meet the highest quality standards. The role ensures that the non-functional testing delivered by our Service Providers is optimised to certify that our systems meet performance, reliability and scalability requirements, protecting the service we provide to … and tools. Our Technology Assurance Function is part of Smart DCC's Technology Office (CTO) and currently comprises of four teams which are: Enterprise Testing Business Analysis This role resides within the Test Assurance team but will be required to work across internal functions and with external stakeholders to … set the approach, frameworks and standards under which all non-functional testing will be operated. In addition, the candidate will be required to assure the delivery of our Service Providers non-functional testing in alignment with our non-functional testing strategy. What will you be doing? Defining More ❯

using open source software and cloud platforms. We predominantly work with central government agencies and adhere to the Government Digital Service standard. We take security seriously, and are certified to ISO 27001 and Cyber Essentials Plus, demonstrating our commitment to robust information security practices. To support our continued … growth, we are seeking an experienced Information Security Manager. In this role, you will be responsible for ensuring our ongoing compliance with ISO27001 and Cyber Essentials Plus, including the management of quarterly external audits and the facilitation of Integrated Management System (IMS) meetings. You will also oversee our adherence … and external risk management workshops, supporting both our own compliance and that of our clients. You will provide expert analysis and advisory services on security compliance standards for the applications and cloud solutions we develop and support. Compliance and Security Management: Develop, implement, and maintain comprehensive compliance programs More ❯

My growing defence client is seeking a Security Engineer. You'll join a leading organisation that develops cutting edge products and technology. Role Purpose You'll own the security posture across our client's product portfolio—encompassing software, hardware, and services—by embedding robust security controls throughout … the development lifecycle, identifying and mitigating risks, and ensuring compliance with defence-grade standards. Key Responsibilities Risk Assessments & Vulnerability Management Conduct comprehensive security risk assessments at each product phase (design, implementation, deployment). Identify vulnerabilities in architectures, codebases, and configurations; drive remediation with development and operations teams. Secure Development … Practices Partner with software and hardware engineers to integrate secure coding and design principles (e.g., threat modelling, secure-by-design). Perform security code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001/27005, NIST 800-30/ More ❯