1 to 25 of 43 Remote Penetration Testing Jobs in the UK excluding London

Penetration Testing Team Lead Technology Banking AVP Level Hybrid (London (Moorgate) 3 days per week) Salary & Package TBC Opportunity for a skilled Cyber Security Professional with penetration testing and red team expertise to join a global financial services organisation. This is a hands-on role where you'll simulate advanced cyber attacks, test defences, and influence … enterprise-level security strategy. Key Responsibilities Lead red team operations , penetration testing, and ethical hacking engagements Plan and deliver cyber attack simulations, vulnerability assessments, and social engineering tests Work with SOC teams on purple team exercises to enhance detection and response Produce executive reporting on cyber threats, risks, and remediation progress Collaborate with security and infrastructure teams to … strengthen overall cyber resilience Skills & Experience 3+ years in penetration testing/ethical hacking/red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights More ❯

Senior Penetration Tester Location: Fully Remote (UK-Based) Salary Range: £50,000 - £75,000 (dependent on experience) Position: Permanent, Full-Time My client is a dynamic and growing cybersecurity consultancy dedicated to providing top-tier security services to a diverse range of clients. They believe in empowering the team with the flexibility of remote work while tackling challenging and … engaging projects that make a real difference to their clients' security posture. The Role We are seeking a highly skilled and motivated Senior Penetration Tester to join our remote team. You will be responsible for leading and executing complex penetration tests against a variety of systems, networks, and applications. The ideal candidate is not just a proficient tester … but a critical thinker who can articulate risks clearly and provide pragmatic remediation advice to clients. Key Responsibilities Plan, lead, and execute sophisticated penetration tests across infrastructure, web applications, APIs, and internal networks. Conduct advanced Red Team exercises to simulate real-world adversary attacks and test organisational defences. Produce high-quality, clear, and concise reports for both technical and More ❯

are looking for a technically exceptional and visionary Senior Manager to lead our Offensive Security function. This role is both strategic and hands-on, responsible for delivering high-impact penetration testing, attack surface management, and a mature bug bounty program. The ideal candidate will be a transformation leader with deep technical expertise in offensive security and a passion … Security will serve as both a strategic leader and hands-on technical expert, driving the evolution of our offensive security capabilities. This role is accountable for delivering high-impact penetration testing, managing our attack surface, and overseeing a global bug bounty program. With a strong focus on identifying control gaps and advancing purple team maturity, the ideal candidate … a transformation mindset, and a proven ability to lead and inspire high-performing teams in a dynamic, threat-informed environment. RESPONSIBILITIES Technical Leadership & Execution - Personally lead and execute advanced penetration tests, red/purple team exercises, and adversary emulation campaigns across cloud, application, and infrastructure layers. - Identify and exploit vulnerabilities to simulate real-world attack scenarios, validate detection and More ❯

Cyber Security Consultant (Penetration Tester) Milton Keynes, Buckinghamshire, United Kingdom We are seeking an experienced Cyber Security Consultant (Penetration Tester) . Make an Impact at RSM UK At RSM, our consulting team brings together diverse advisory experts to deliver our six core solutions: business transformation, forensic, deal services, restructuring, finance function support, and risk and governance. Our solutions … seeking an enthusiastic Cyber Security Consultant to join our team. Working alongside our experienced team of specialists, you'll deliver offensive security services including digital footprint reconnaissance, social engineering, penetration testing, vulnerability assessments, and more to high-profile clients across all industries. The purpose of this role is to deliver offensive security services such as digital footprint reconnaissance … social engineering, vulnerability assessments, penetration testing, threat modeling, cyber-attack simulation exercises, and more. You'll benefit from ongoing coaching, career mentoring, and support through our career pathway. You will have opportunities to develop market-leading skills across different capabilities and advance your professional development. You will make an impact by: Supporting technical scoping activities for client assignments. More ❯

modelling, and secure coding practices across agile and DevOps teams, ensuring alignment with regulatory requirements (FCA, GDPR, etc). Oversee the secure development lifecycle, from requirements and design to testing, deployment, and ongoing operation, ensuring risk mitigation at every stage. Lead, mentor, and develop a team of application and product security professionals, fostering a culture of continuous improvement and … accelerate digital transformation. Develop and maintain application security architecture, reference models, and automation in line with cloud-first and hybrid environments (AWS, Azure, etc). Commission and manage security testing (SAST, DAST, pen testing, Interactive testing, Mobile testing, bug bounties), triage vulnerabilities, and drive remediation efforts with development teams. Report to executive leadership and the board … across the wider business. Engage with external partners, vendors, and industry groups to benchmark best practice and represent the firm's interests. Lead the offensive security function looking after penetration testing, red/purple team exercises and bug bounty programme. About you Extensive leadership experience in application and/or product security, ideally within the wealth management, financial More ❯

apps that sync with the client's hardware devices Drive DevOps best practices across CI/CD pipelines, monitoring, and deployment Design and maintain a cybersecurity-first architecture, including penetration testing Optimise an Azure-based infrastructure for high availability and cost efficiency Collaborate with cross-functional teams to deliver impactful new features Shape the design of future products … Tech Stack Web: ASP.NET Core, C#, JavaScript, HTML/CSS PC: C#, XAML, USB-MTP Mobile: Cordova (iOS & Android) Cloud: Microsoft Azure, CI/CD pipelines, version control, automated testing Security: Secure coding, authentication, penetration testing Hardware: Industry-leading devices, digitally integrated What They are Looking For KO2's client is seeking a creative, forward-thinking developer More ❯

apps that sync with the client's hardware devices Drive DevOps best practices across CI/CD pipelines, monitoring, and deployment Design and maintain a cybersecurity-first architecture, including penetration testing Optimise an Azure-based infrastructure for high availability and cost efficiency Collaborate with cross-functional teams to deliver impactful new features Shape the design of future products … Tech Stack Web: ASP.NET Core, C#, JavaScript, HTML/CSS PC: C#, XAML, USB-MTP Mobile: Cordova (iOS & Android) Cloud: Microsoft Azure, CI/CD pipelines, version control, automated testing Security: Secure coding, authentication, penetration testing Hardware: Industry-leading devices, digitally integrated What They are Looking For KO2's client is seeking a creative, forward-thinking developer More ❯

apps that sync with the client's hardware devices Drive DevOps best practices across CI/CD pipelines, monitoring, and deployment Design and maintain a cybersecurity-first architecture, including penetration testing Optimise an Azure-based infrastructure for high availability and cost efficiency Collaborate with cross-functional teams to deliver impactful new features Shape the design of future products … Tech Stack Web: ASP.NET Core, C#, JavaScript, HTML/CSS PC: C#, XAML, USB-MTP Mobile: Cordova (iOS & Android) Cloud: Microsoft Azure, CI/CD pipelines, version control, automated testing Security: Secure coding, authentication, penetration testing Hardware: Industry-leading devices, digitally integrated What They are Looking For KO2's client is seeking a creative, forward-thinking developer More ❯

Why join Dionach by Nomios? Since being acquired by Nomios in late 2024, Dionach by Nomios has continued its dynamic growth as a leading information security company. Specializing in penetration testing and information assurance services, we offer an incredible opportunity to be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive … environment for all our employees. If you require accommodations during the application process, let us know, and we'll work to meet your needs. What You'll Do • Conduct penetration tests across various environments, including web applications, APIs, Cloud, and network infrastructure. • Issue detailed reports outlining findings, risks, and recommendations for remediation. • Translate complex technical findings into actionable insights … engagements, as needed. What We're Looking For • Certifications: Relevant certifications such as CREST CRT, CREST CCT, OSCP, OSWE, OSCE, or equivalent level. • Experience: At least two years in penetration testing, covering network, web, and internal tests and customer engagements. • Tools: Proficiency with tools like Burpsuite Pro, Nessus, and other industry standards. • Communication: Strong verbal and written skills More ❯

Why join Dionach by Nomios? Since being acquired by Nomios in late 2024, Dionach by Nomios has continued its dynamic growth as a leading information security company. Specializing in penetration testing and information assurance services, we offer an incredible opportunity to be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive … environment for all our employees. If you require accommodations during the application process, let us know, and we'll work to meet your needs. What You'll Do • Conduct penetration tests across various environments, including web applications, APIs, Cloud, and network infrastructure. • Issue detailed reports outlining findings, risks, and recommendations for remediation. • Translate complex technical findings into actionable insights … engagements, as needed. What We're Looking For • Certifications: Relevant certifications such as CREST CRT, CREST CCT, OSCP, OSWE, OSCE, or equivalent level. • Experience: At least two years in penetration testing, covering network, web, and internal tests and customer engagements. • Tools: Proficiency with tools like Burpsuite Pro, Nessus, and other industry standards. • Communication: Strong verbal and written skills More ❯

Penetration Tester (SC Cleared) Location: Wokingham - Hybrid working (50/50 split) Contract Duration: Until 26/12/2025 initially - with a view to extend Daily Rate: £525/day Inside IR35 - Candidates will need to work through an Umbrella Company Clearance Required: Active SC Clearance We are looking for an experienced Penetration Tester to join a … team. This role offers the opportunity to work on a hybrid basis, engaging in high-impact security assessments across various platforms and environments. Key Responsibilities: Conduct manual and automated penetration tests on web applications, networks, APIs, and mobile platforms Identify, exploit, and document vulnerabilities, delivering detailed risk assessments Design and execute red team exercises and threat simulations Work closely … on emerging threats, tools, and techniques Support internal security awareness training and initiatives Contribute to the development of security policies and best practices Required Skills & Experience: Strong background in penetration testing, ethical hacking, or red teaming Deep knowledge of OWASP Top 10, MITRE ATT&CK, and CVSS scoring systems Proficiency with tools such as Burp Suite, Metasploit, Nmap More ❯

the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident, Problem, Change Management). Ability to work independently and thrive in a 24/7 on-call environment. Education & Experience More ❯

Liaise with the Security Architects and wider team to provide technical requirements to ensure projects deliver secure solutions Work with the Security Business Partners to scope, arrange and support penetration testing and vulnerability testing and track remediation to a close Articulate risk in technical and non-technical terminology so that it can be interpreted by Information Technology More ❯

and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. Knowledge of secure development practices, penetration testing, and vulnerability assessments. Ability to communicate security risks and strategies to technical and non-technical stakeholders. Experience in incident response and remediation. Strong analytical and problem-solving More ❯

and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. Knowledge of secure development practices, penetration testing, and vulnerability assessments. Ability to communicate security risks and strategies to technical and non-technical stakeholders. Experience in incident response and remediation. Strong analytical and problem-solving More ❯

Based Vulnerabilities are Understood & Mitigated meaning that Code Reading Skills are also desirable. Skills & Experience of the AppSec Engineer role: Hands-On Experience with Security Assessment Tools & Techniques including Penetration Testing & Code Review. Use of Planned, Structured Methodologies for Conducting & Reporting on Web Application Penetration Testing. Understanding & Demonstrable Experience of Automated, Dynamic & Static Application Security Testing Tools, as well as Manual Security Testing to find Vulnerabilities & Logical Issues. Broad Understanding of SDLC & Technology Functions and how they relate to Information Security. Understanding of Industry Standard Information Security Practices. Ideally Offensive Security Certified Professional (OSCP) Certification (or similar is Desirable but Not Essential). Strong Communication Skills & High Attention to Detail. Main Responsibilities of the … considered up front and throughout the Project Lifecycle. Taking Responsibility for the Security of Tested Products within Project Context. Conducting Manual & Automated Source Code Reviews. Contributing to & Utilising Security Testing Methodologies, Creating & Updating Technical Documentation as necessary. Liaising with Software Development Department to ensure Security is considered throughout SDLC. Identifying any Security Issues within the Businesss Software and Manage More ❯

SOC or NOC environment. Strong hands-on experience with SIEM tools, specifically QRadar Solid understanding of incident response methodologies and DFIR principles. Knowledge of network traffic analysis, vulnerability management, penetration testing, and malware reverse engineering. Familiarity with ITIL processes (Incident, Problem, Change). Strong written and verbal communication, with the ability to produce clear technical documentation and reports. More ❯

response for security risks and issues raised by SOC teams Manage implementation of logging and SIEM integration for comprehensive monitoring Prioritise and oversee vulnerability remediation across the platform Support penetration testing activities and security audits Collaboration & Leadership: Build strong relationships with central security teams and contribute to communities of practice Manage escalations of security-related issues, risks, and More ❯

Leading the cultural shift towards secure software development across product teams Defining and implementing the software security strategy in line with business goals Collaborating with developers to automate security testing and embed security requirements into the SDLC Supporting penetration testing, vulnerability management, and remediation efforts Acting as a software security SME, advising teams on secure design, risk More ❯

objectives. Draft, maintain, and implement information security policies and Standard Operating Procedures (SOPs). Configure and oversee mobile securityMDM (MAM/BYOD)to protect business continuity. Lead vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts. Author compelling tender responses, clearly demonstrating technical capability and strategic value. Enhance Microsoft 365 securityleveraging Purview, Conditional Access, MFAto safeguard modern workplaces. … through closure. Strong understanding of ITIL, CAB, and structured change management. Skilled in crafting and updating security policies, SOPs, and managing tender documentation. Hands-on expertise with MDM tools, penetration testing, and policy-based firewalls. Experience designing and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional More ❯

Draft, maintain, and implement information security policies and Standard Operating Procedures (SOPs). Configure and oversee mobile security—MDM (MAM/BYOD)—to protect business continuity. Lead vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts. Author compelling tender responses, clearly demonstrating technical capability and strategic value. Enhance Microsoft 365 security—leveraging Purview, Conditional Access, MFA—to safeguard … through closure. Strong understanding of ITIL, CAB, and structured change management. Skilled in crafting and updating security policies, SOPs, and managing tender documentation. Hands-on expertise with MDM tools, penetration testing, and policy-based firewalls. Experience designing and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional More ❯

CI/CD pipelines and infrastructure-as-code (IaC) deployments across Azure. Lead container, API, and web application security initiatives, including code reviews. Support threat modelling, vulnerability management, and penetration testing activities. Drive logging integration with SIEM tools, enabling SOC monitoring and incident response. Coach engineering teams on cloud security principles and manage audit-related actions. What You More ❯

background in incident response, SOC operations, and security investigations. Hands-on expertise with SIEM tools (Splunk, QRadar, Microsoft Sentinel). Deep understanding of network traffic analysis, vulnerability management, and penetration testing. Knowledge of DFIR principles, malware reverse engineering, and digital forensics. Familiarity with ITIL processes (Incident, Problem, Change). Experience with cloud platforms (AWS and/or Azure). More ❯

firewalls, intrusion detection systems, endpoint protection, log monitoring, and vulnerability scanning. Investigates and documents security breaches and cyber incidents, including assessment of impact and coordination of remediation efforts. Coordinates penetration testing with internal or external parties as appropriate. Drives business-wide understanding of secure development practices and general information security awareness. Represents the company during audits and performs More ❯

to ensure an appropriate response taken. Overseeing vulnerability scanning to confirm the effectiveness of patching Monitoring systems for compliance with policy and supporting remediation where required. Track and manage penetration testing programs. Investigate and respond to security breaches and incidents. Supporting the administration of email and web gateways Develop our threat intelligence and provide monitoring of external information More ❯