1 to 25 of 41 Remote/Hybrid Penetration Testing Jobs in the UK excluding London

Reading Mode of Working: Hybrid Hybrid Requirement: 3 days The Role We're looking for Security Consultant/Senior Security Consultant with expertise in penetration testing. As part of our Cyber Security team, you shall perform penetration testing which includes internet, intranet, wireless, web application, social engineering … physical penetration testing. You shall also perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations. -------> Please include a brief outline of the impact this role will have, including overview of customer industry and projects, access to cutting ...

looking to hire two Lead Penetration Testers with CTL Certification. This is a chance to join a well-established cybersecurity team that supports organisations across both public and private sectors. You’ll play a key role in delivering high-quality penetration testing that helps clients stay secure … fast-moving threat landscape. Role Overview: Role: Lead Penetration Tester (CTL Certified) Location: Remote with ad-hoc travel to client sites. Package: £60,000- £80,000 per annum & benefits. Industry: Cyber Security/Managed Security Services. What You’ll Be Doing: Deliver a wide range of penetration testing ...

verifying the efficacy of our technical, people, physical and process controls from an attacker perspective. The team perform regular Adversary Simulation (Red Team) testing and a range of Ad-Hoc and Tactical Assessments based on changes to the threat landscape and organisational needs. To succeed in this role … adversary simulation. Detailed knowledge of global cyber threats and the procedures used by cyber adversaries. Two or more of the following skills: Network penetration testing and manipulation of network infrastructure Web application penetration testing assessments Email, phone, or physical social-engineering assessments Development, extension, or modifying ...

work closely with Software Development teams to ensure application-based vulnerabilities are understood, prioritised, and remediated effectively. You'll contribute to threat modelling, penetration testing, secure design reviews, and the continuous improvement of security testing methodologies. The role also plays a key part in enhancing existing security … automation and the responsible use of AI within application security. INFORMATION SECURITY SPECIALIST ESSENTIAL SKILLS: * Hands-on experience with static and dynamic application security testing tools * Strong understanding of OWASP principles and their use within threat modelling * Experience conducting and reporting on web application penetration testing * Knowledge ...

Role: Head of Security Testing & Vulnerability Management Location: Leeds (Hybrid 2/3 split) Salary: £75,000 - £85,000 Summary: The Head of Security Testing and Vulnerability Management is responsible for defining and delivering the organisation's global approach to security testing and vulnerability management. This role … operates in a complex, multi-regional environment and works closely with technology, engineering, and business stakeholders. Key Responsibilities: Define and lead the global security testing and vulnerability management strategy aligned to enterprise risk objectives. Establish governance, metrics, and reporting for security testing and remediation activities. Oversee penetration ...

JUNIOR PCI PENETRATION TESTERS - LONDON (REMOTE) £35,000 - £45,000 | Fully Remote (UK-based) | Cybersecurity Scale-Up A rapidly growing cybersecurity company is seeking Junior PCI Penetration Testers to join their expanding offensive security team. The Role: Conduct PCI-DSS v4.0 compliance testing including manual penetration testing, quarterly vulnerability scanning, and network segmentation assessments Manage client engagements from scoping through to delivery Perform security assessments using industry-standard tools (Nessus, nmap, Burp Suite, Metasploit) Report findings to technical and non-technical stakeholders Support clients in maintaining PCI-DSS compliance Essential Requirements: UK Bachelor ...

development, DevOps and security, helping teams understand why vulnerabilities exist and how to fix them properly.The foundations are already strong, with regular external penetration testing, positive audit outcomes, and mature security tooling are in place. Your role is to raise the bar further, embedding security deeper into … secure configuration and deployment within Azure (including Azure Front Door, WAF, Defender for Cloud, Sentinel) Support and interpret results from ITHC (UK Government-standard) penetration tests, ensuring findings are understood and remediated across product and platform teams Embed security controls and testing into CI/CD pipelines, improving ...

development, DevOps and security, helping teams understand why vulnerabilities exist and how to fix them properly. The foundations are already strong, with regular external penetration testing, positive audit outcomes, and mature security tooling are in place. Your role is to raise the bar further, embedding security deeper into … secure configuration and deployment within Azure (including Azure Front Door, WAF, Defender for Cloud, Sentinel) Support and interpret results from ITHC (UK Government-standard) penetration tests, ensuring findings are understood and remediated across product and platform teams Embed security controls and testing into CI/CD pipelines, improving ...

/a* Opportunity to work across vulnerability management and wider security operations* Exposure to class-leading scanning tools and third-party penetration testing* Competitive package (DOE) ABOUT THE CLIENT We're supporting an established organisation with a strong technical footprint that is continuing to invest in its security … systems are scanned, monitored, and assessed for risk. You'll review and interpret vulnerability scan results, assist with scheduling and planning internal and external testing activities, and support the collation and communication of security reports. You'll also liaise with technical and non-technical stakeholders to discuss risk, remediation ...

/a* Opportunity to work across vulnerability management and wider security operations* Exposure to class-leading scanning tools and third-party penetration testing* Competitive package (DOE) ABOUT THE CLIENT We're supporting an established organisation with a strong technical footprint that is continuing to invest in its security … systems are scanned, monitored, and assessed for risk. You'll review and interpret vulnerability scan results, assist with scheduling and planning internal and external testing activities, and support the collation and communication of security reports. You'll also liaise with technical and non-technical stakeholders to discuss risk, remediation ...

security community, including engagement with CERT. Set standards for security documentation, reviewing supplier outputs and ensuring alignment with best practice. Scope, commission, and interpret penetration testing activities, translating findings into business-focused risk and remediation plans. Effective management of security vulnerabilities by working with suppliers to identify, evaluate … treatment options, and controls. • Demonstrable experience conducting information security risk assessments, threat modelling and guiding others on effective risk management. • Experience scoping and managing penetration testing for internal and third-party solutions. • Excellent written and verbal communication skills, with the ability to translate technical risk into business language. ...

across the organisation. Key responsibilities include: Reviewing application code to identify and remediate security vulnerabilities across modern web applications Performing and supporting web application penetration testing, focused on real-world risk rather than tick-box security Designing, building and improving security tooling and automation for tasks such … also beneficial) Proven application security experience, with a focus on web application vulnerabilities rather than infrastructure-only security Hands-on experience with code review, penetration testing, and identifying issues such as XSS, SQL injection and logic flaws Experience building or improving security automation and tooling (DevSecOps mindset) Familiarity ...

Perform security risk assessments and impact analyses- Translate security policies into project-level security requirements- Review and validate solution and architecture designs- Define security testing and penetration testing scope- Produce security documentation, standards, and principles- Act as the security point of contact for projects and stakeholders- Support ...

.NET, Python.* C2 frameworks such as Cobalt Strike, Sliver, Mythic.Required & Valued Certifications in at least one of the below please * OSEP - Offensive Security Experienced Penetration Tester* OSCE/OSCE3 - Offensive Security Certified Expert/Expert3* OSEE - Offensive Security Exploit Expert* OSCP - Offensive Security Certified Professional* OSWE - Offensive Security … Expert* OSED - Offensive Security Exploit Developer* CCSAS - CREST Certified Simulated Attack Specialist* CRT - CREST Registered Penetration Tester* CCT INF/CCT APP - CREST Certified Tester (Infrastructure/Applications)* GPEN - GIAC Penetration Tester* GXPN - GIAC Exploit Researcher & Advanced Penetration Tester* CRTO - Certified Red Team OperatorProfessional Attributes Exceptional consulting ...

desirable? * Experience working in a managed services or MSP environment* Exposure to compliance frameworks such as GDPR, ISO 27001, or NIST* Vulnerability assessment or penetration testing experience* SOC or security operations experience* Mentoring or leadership exposure within technical teams The Package * 40-hour working week (Monday-Friday ...

designs with frameworks such as Cyber Essentials, ISO27001, and NCSC guidelines. Conduct internal and client-facing security reviews, readiness assessments, and recommendations. Maintain current penetration testing qualifications to support Cyber Essentials Plus assessments. ?Vulnerability Assessment & Remediation (30%) Oversee and support vulnerability assessments across client environments, ensuring consistent methodology ...

VoIP traffic is well designed, secure and optimised. You will ensure best practices are used for delivering network security. Continually monitoring, maintaining and testing the threat landscape and security posture. Provide regular service status updates to line management and agree and monitor service availability targets. Manage … hundred office, home and field-based employees. Provide day-to-day cyber security guidance and support to relevant technical & business stakeholders. Deliver annual penetration testing and implement recommended improvements. Research latest network cyber threat developments and recommend any actions that will improve network performance and security. Work closely ...

Implement advanced monitoring tools to detect, analyse, and respond to security threats in real-time. Proactively identify vulnerabilities and risks through regular assessments and penetration testing and lead incident response efforts for cloud-related security breaches, ensuring minimal downtime and data loss. Develop automated workflows for vulnerability management ...

regulations and standards (e.g. GDPR, ISO 27001, FCA-aligned controls where applicable) Manage incident response, disaster recovery, and business continuity planning Lead vulnerability management, penetration testing, and security audits Own infrastructure budgets, vendor contracts, and technology roadmaps Provide clear reporting and risk assessments to senior leadership Cloud platforms ...

Offensive & Penetration Test Automation Engineer Location: Fully Remote - UK & Europe Right to Work: Must have the right to work in the UK Experience: 2-5 years Salary: £70,000 - £80,000 (depending on experience) About the Role We're looking for an Offensive Engineer to join our security team … hacking with software engineering and automation, this role is for you. What You'll Be Doing Creating smart automation offensive security activities including penetration testing and foot holding/initial access Designing, building, and deploying custom offensive tooling and automation Studying and deploying exploit code and offensive tooling ...

specifically measuring performance, cost, and time. Working as part of a large technical team. Experience of Cyber Essentials/Cyber Essentials Plus. Experience of Penetration Testing and IT System security. In-date professional registration with organisations such as APMG or CIISec Strong critical thinking and analytical skills ...

specifically measuring performance, cost, and time. Working as part of a large technical team. Experience of Cyber Essentials/Cyber Essentials Plus. Experience of Penetration Testing and IT System security. In-date professional registration with organisations such as APMG or CIISec S trong critical thinking and analytical skills ...

security incidents, ensuring timely and effective responses. Document incidents with clear analysis and remediation actions. Conduct vulnerability assessments and monthly endpoint security checks. Coordinate penetration testing (physical and black-box) to identify risks. Work with IT teams to ensure remediation actions are implemented. Develop and maintain security policies ...

variety of day to day activities including: vulnerability management, patch management, email security and mobile device management assessing cyber threats, using SIEM & SOAR tools penetration testing continuous improvement, ensuring documentation is maintained in line with best-practice/standards support on project work About you Applicants ...

oversee breach management. Stay informed on emerging cyber threats and provide actionable recommendations. Drive certification initiatives such as Cyber Essentials Plus and ISO27001. Review penetration testing reports and implement improvements. Create and deliver cyber security training and awareness programmes. Assist with disaster recovery planning and enforce best practice ...