22 of 22 Burp Suite Jobs in the UK excluding London

ongoing research. What You Bring - Skills & Experience 2 to 5+ years of hands-on penetration testing experience across network, web, wireless, and cloud environments. Expert with core tools: Burp Suite, Metasploit, Cobalt Strike, Nmap , and custom Scripting. Deep understanding of vulnerabilities (OWASP Top 10, MITRE ATT&CK) and exploitation methods. Experience delivering reports aligned to PTES More ❯

activities, helping to develop scenarios and engage in both blue and red team activities. Some experience with tooling such as Metasploit, Nmap, Cobalt Strike, Hydra, John the Ripper, Burp Suite, Mimikatz, Bloodhound, and others. Threat Hunting Ability to learn fast new advanced persistent threat (APT) tactics, techniques, and procedures (TTPs) mapped to the cyber kill chain More ❯

external/internal). Experience in scoping penetration testing assessments. Strong knowledge of security testing methodologies and frameworks (eg, OWASP, NIST). Proficiency with industry-standard tools (eg, Burp Suite, Nmap, Metasploit, Kali Linux). Excellent written and verbal communication skills. OSCP is essential. Experience with red teaming or threat simulation exercises. Experience conducting code reviews. More ❯

only) Desirable Skills: Exposure to internal network testing or Active Directory environments Experience with cloud platforms (e.g., AWS, Azure) from an offensive perspective Familiarity with tools such as Burp Suite, Nmap, Cobalt Strike, or custom scripts Understanding of MITRE ATT&CK framework or red team methodologies What You'll Gain: Intensive training across all areas of More ❯

only) Desirable Skills: Exposure to internal network testing or Active Directory environments Experience with cloud platforms (e.g., AWS, Azure) from an offensive perspective Familiarity with tools such as Burp Suite, Nmap, Cobalt Strike, or custom scripts Understanding of MITRE ATT&CK framework or red team methodologies What You'll Gain: Intensive training across all areas of More ❯

penetration testing experience in enterprise environments. Deep understanding of infrastructure testing, Active Directory security, and cloud technologies (AWS, Azure, Kubernetes). Strong familiarity with tools such as Nmap, Burp Suite, Metasploit, Impacket, and SMBClient. Able to articulate technical findings to both technical and non-technical audiences in written and verbal formats. How to be successful in More ❯

Top 10, CWE, CVSS scoring etc.) Strong experience communicating to stakeholders of varying technical skill levels Your experience should include: Using offensive security tooling, including tools such as Burp Suite, Kali, Metasploit and such Scripting including the use of python, Powershell, bash or Javascript Securing networks, hosts, web applications and cloud native deployments Working with toolsets More ❯

Active Directory. Knowledge of Scripting Languages e.g. Python, Shell Scripting etc. Strong expertise with web application and network pen testing methodologies. Proficiency in using penetration testing tools such as BurpSuite Pro, Nmap, Nessus, and Metasploit. Experienced in using Kali Linux and the associated penetration testing tool suite. Advanced completion of penetration testing simulations like Hack the Box or Capture the More ❯

dynamic and ambitious environment. What You'll Be Doing: Perform penetration tests on networks, applications, and infrastructure. Identify and exploit vulnerabilities to strengthen security defences. Use tools like Burp Suite, Nessus, Metasploit, and Kali Linux. Provide detailed reports with clear, actionable recommendations. Experience required: Strong knowledge of OWASP, CVE, and security frameworks. Hands-on … experience with ethical hacking & exploit techniques. Scripting & automation skills a plus. Ability to communicate findings to technical and non-technical teams. Proficiency in using penetration testing tools such as BurpSuite Pro, Nmap, Nessus, and Metaspolit. Experienced in using Kali Linux and the associated penetration testing tool suite Nice to Have: Relevant security certifications (e.g. OSCP, CREST, Cyber Scheme. More ❯

in offensive security and penetration testing. Demonstrable experience in infrastructure and web application testing; experience in API testing is desirable. Demonstrable experience using common pentesting tools including Kali Linux, Burpsuite, Nessus and other industry standard tools. Hold or working towards an industry recognised certification including CompTIA PenTest+; CHECK, CREST; Offensive Security Certified Professional (OSCP) etc. Relevant experience within a cyber … weekly. 25 Days Holiday. Lifestyle, Health, and Wellbeing including financial wellbeing benefits such as financial tools, electric car scheme and access to a virtual GP. Access to a suite of 300+ courses on demand developed by our in-house Talent Development team. Diversity and Inclusion at RSM At RSM, we want to create a strong sense of belonging More ❯

following categories: Mobile Application Assessment (iOS/Android), Reverse Engineering (e.g. IDA Pro/Ghidra/Radare2), Fuzzing (e.g. Jazzer/AFL/Peach), Web Application assessment (e.g. Burp Suite Proxy, ZAP, REST API testing) Proficiency in manual penetration testing in at least TWO or more of the following areas - Mobile, API, Infrastructure, OS, Web Application More ❯

Nessus Palo Alto Firewalls, InTune, Entra ID, Active Directory Desirable: Imperva WAF, Menlo Security, Cisco Secure Access/Umbrella, KnowBe4, AppCheck Ivanti or Automox patching Kali Linux, Metasploit, NMAP, BurpSuite Candidate Profile Professional certifications such as CISM, MS SC100/200/900, OSCP are advantageous Background in financial services, SOC environments, or penetration testing preferred Strong interpersonal and communication More ❯

Gateway Menlo CASB Cisco Secure Access Cisco Umbrella Cisco ASA KnowBe4 Digicert Certificates and Microsoft Certificate Services Ivanti or Automox patching AppCheck or Tenable WAS Kali Linux (NMAP, Metasploit, BurpSuite, John etc) Desired Education: CISM, MS SC100, 200 and 900, OSCP or other penetration testing qualifications. Industry: Financial services, SOC, Pentesting is desirable Personal Skills: Excellent inter-personal, written and More ❯

CCT, OSCP, OSWE, OSCE, or equivalent level. • Experience: At least two years in penetration testing, covering network, web, and internal tests and customer engagements. • Tools: Proficiency with tools like Burpsuite Pro, Nessus, and other industry standards. • Communication: Strong verbal and written skills for stakeholder management, collaboration and report writing. • Independence: Ability to work solo or as part of a team More ❯

CCT, OSCP, OSWE, OSCE, or equivalent level. • Experience: At least two years in penetration testing, covering network, web, and internal tests and customer engagements. • Tools: Proficiency with tools like Burpsuite Pro, Nessus, and other industry standards. • Communication: Strong verbal and written skills for stakeholder management, collaboration and report writing. • Independence: Ability to work solo or as part of a team More ❯

C++, or C#. Familiarity with scripting and automation using Python. Experience working with Linux or Windows-based systems. Hands-on experience with vulnerability scanning tools (e.g., Nessus, OpenVAS, Burp Suite, or similar). Familiarity with CVSS scoring, vulnerability databases (e.g., NVD, MITRE ATT&CK), and risk prioritization frameworks. Understanding of patch management processes, secure configuration baselines More ❯

following categories: Mobile Application Assessment (iOS/Android) Reverse Engineering (e.g. IDA Pro/Ghidra/Frida) Fuzzing (e.g. Jazzer/AFL/Peach) Web Application assessment (e.g. Burp Suite Proxy, ZAP, REST API testing) Proven experience with security research including any published CVEs Experience developing proof of concept exploits bypassing modern exploit mitigations Active participant More ❯

with cross-functional teams to fortify our defenses against cyber threats. KEY ACCOUNTABILITIES & RESPONSIBILITIES Focused on application security initiatives across cloud and on-premises environments, employing a diverse suite of tools including Semgrep for SAST, Snyk for SCA, GHAS for secret scanning, Burp Suite for DAST, and python for automation. Forge partnerships with external … experience in application security, with a track record of leadership or significant contributions in similar roles. Proficiency in Semgrep for SAST, Snyk for SCA, GHAS for secret scanning, Burp Suite for DAST, and automation scripting. Understanding of application security principles and best practices. Experience integrating and optimizing security tools within development workflows, particularly within Azure DevOps More ❯

or equivalent. Working within container technology such as Docker and Kubernetes within a cloud environment such as OCP, AWS, GCP or Azure. Security testing using tools such as Burp suite, Zap or equivalent. About working for us Our focus is to ensure we're inclusive every day, building an organisation that reflects modern society and celebrates More ❯

facilitating penetration testing, security risk assessments, driving the remediation of cyber vulnerabilities and remediating or mitigating cyber risks. Experience of security testing services e.g., penetration testing, ZAP testing, Burp Suite, Attack & Breach simulation, or similar. Knowledge of emerging threats e.g. Quantum, AI and Digital Ledger Financial Services Regulation and Payments Scheme compliance experience. Any creative experience More ❯

internal security processes and documentation in the process. Required: Strong experience as an App Sec Engineer Extensive experience of Penetration Testing Hands-on experience with tools such as Burp Suite and Metasploit Capable of designing Security policies, procedures and best practices The ability to investigate and respond to Security related incidents within applications, and work closely More ❯

realistically be doing - Build and automate offensive security tooling - Work alongside pen testers to turn manual recon/exploitation into slick, scalable pipelines - Write the glue that binds Burp Suite, Nmap, BloodHound, CrackMapExec, and all the other tools they love (or build their own) - They need to think like an attacker, and script like a builder More ❯