26 to 50 of 112 Penetration Testing Jobs in the UK excluding London

with enhanced security requirements. • Create, refine, and update tailored cyber security policy documents. • Conduct annual cyber audits to track progress, maintain compliance, and highlight risks. • Perform vulnerability assessments and penetration testing to uncover and remediate potential threats. • Analyse and monitor security logs across a range of platforms, identifying suspicious activity and responding accordingly. • Assess and manage third-party … Certifications such as CISSP, CISM, CISA, CEH, CompTIA Security+, or similar (highly advantageous). • Hands-on experience with Cyber Essentials and Cyber Essentials Plus. • Proven background in security audits, penetration testing and vulnerability assessments. • Strong working knowledge of NCSC best practice and how to apply it for SMEs. • Experience developing security policies, analysing logs and supporting incident response. More ❯

of the most lucrative commission structures in the industry, uncapped & paid monthly designed to truly recognise top performance. A complete cybersecurity portfolio: Offer clients end-to-end solutions spanning penetration testing, offensive security, managed SOC, cloud security, and compliance, empowering you to sell with confidence and deliver real value. What Were Looking For Proven success in cyber security … sales, ideally within penetration testing, managed SOC, threat intelligence or Cyber Essentials Strong experience in new business B2B sales The ability to engage senior stakeholders at UK SMEs and mid-market organisations A collaborative, driven mindset with exceptional organisational and communication skills Whats In It For You: The role offers a base salary of £40,000 to More ❯

Position Summary As an Associate Penetration Tester at Claranet, you will able to deliver you own web application tests and through training and partnering, you will have the opportunity to become involved in a full range of testing work from mobile app and infrastructure testing to social engineering and Red Team exercises. Role Mission Claranet’s strategy … and to own the existing and future market-leading multi-solutions portfolio that Claranet offers to customers that enables cross and up sell. Objectives & Key Results Undertaking web application testing and infrastructure testing engagements Using the opportunities provided by the business to improve skills and capabilities into all areas of testing Working with key clients providing bespoke … be self-motivated and able to work in an independent manner as well as part of a team Excellent written and oral communications skills Positive, collaborative and enthusiastic Conducting penetration testing work out of normal office hours on occasion Willing to travel to deliver onsite work as required Appetite to shadow, train and develop to improve capabilities into More ❯

Security Engineer GCP, Cloud Security, Pen Testing- Hybrid (London) You will be joining a company that build software solutions fast to solve real problems within the workplace. The team builds tools that help engineering and product teams respond to incidents, reduce downtime, and continuously improve. Were looking for a pragmatic, energetic customer facing and product-minded engineers who will … Teams to embed security features into designs Detect security weaknesses across API's, Applications and Infrastructure Driving secure development practices across the business Requirements: White-box and Black-box testing Penetration Testing Cloud Security in GCP Secure Software Development (Go, Typescript) Ability to conduct in-depth Security Research If you're interested please get in touch ASAP More ❯

Contract Opportunity: CyberSecurity Test Engineer - Automotive | Hybrid Cyber Security Test Engineer on a contract basis to support the testing and validation of cybersecurity features in cutting-edge automotive products. This role is pivotal in ensuring compliance with global regulations including UNECE R.155 and China GB 44495, helping our client deliver secure and compliant vehicles to markets worldwide. You’ll … report to the Functional Manager - Product Security Test & Incident Management, and work across test benches and vehicles to execute cybersecurity testing, support homologation, and contribute to the development lifecycle of secure automotive systems. What's on Offer: Attractive hourly rate (outside IR35) Current end date 31/01/2026 - with extension (Project is until Feb 2027) 35 hours … week Hybrid - 2 days on site per week (flexible on days) Possible international travel, driving licence essential Key Responsibilities: Prepare and maintain test environments (benches and vehicles) for cybersecurity testing Develop and execute test cases aligned with UNECE R.155, GB 44495, and other standards Produce detailed test reports and support global compliance testing Coordinate product security testing More ❯

Contract Opportunity: CyberSecurity Test Engineer - Automotive | Hybrid Cyber Security Test Engineer on a contract basis to support the testing and validation of cybersecurity features in cutting-edge automotive products. This role is pivotal in ensuring compliance with global regulations including UNECE R.155 and China GB 44495, helping our client deliver secure and compliant vehicles to markets worldwide. You’ll … report to the Functional Manager - Product Security Test & Incident Management, and work across test benches and vehicles to execute cybersecurity testing, support homologation, and contribute to the development lifecycle of secure automotive systems. What's on Offer: Attractive hourly rate (outside IR35) Current end date 31/01/2026 - with extension (Project is until Feb 2027) 35 hours … week Hybrid - 2 days on site per week (flexible on days) Possible international travel, driving licence essential Key Responsibilities: Prepare and maintain test environments (benches and vehicles) for cybersecurity testing Develop and execute test cases aligned with UNECE R.155, GB 44495, and other standards Produce detailed test reports and support global compliance testing Coordinate product security testing More ❯

Job Title: Senior Penetration Tester (Infrastructure Focus) Location: London (Hybrid/Flexible) Salary: Up to £80,000 + Bonus + Benefits Employment Type: Permanent Overview We are seeking an experienced Senior Penetration Tester with a strong background in infrastructure security testing to join a growing offensive security team. The ideal candidate will have deep technical expertise, the … role in strengthening the organisation's security posture by conducting infrastructure-focused assessments, mentoring junior testers, and influencing remediation strategies. Key Responsibilities Deliver internal and external network and infrastructure penetration tests , including on-premises and cloud-hosted environments Perform testing of Windows & Linux infrastructure, Active Directory, network services, and security appliances Conduct vulnerability exploitation , privilege escalation, and lateral … debriefs Contribute to tooling, methodology enhancement, and internal research initiatives Stay up-to-date with emerging vulnerabilities, exploits, and attacker techniques Required Skills & Experience 3-5+ years' professional penetration testing/offensive security experience Strong understanding of enterprise infrastructure, AD security, networking, and protocols Proficiency with tools such as Nmap, Nessus, Metasploit, BloodHound, Burp Suite, Kali/ More ❯

detection/prevention systems (IDS/IPS), antivirus, anti-malware, SIEM (Security Information and Event Management), vulnerability scanners, and data encryption solutions. Manage vulnerability management programs, including regular scanning, penetration testing, and remediation of identified weaknesses. Lead and manage security incident response, including detection, analysis, containment, eradication, recovery, and post-incident review. Develop and maintain robust disaster recovery More ❯

As a Senior Penetration Tester, you will focus on securing the Company's applications through best practice development lifecycle controls and perform penetration tests to assess the effectiveness of security measures. Full-time Closes 03/12/2025 The Information Security department deal with the security of closed sourced, open source and proprietary applications. The team ensure … applications are developed and implemented in a secure manner, as well as being responsible for identifying and remediating risks efficiently through penetration testing. Utilising your knowledge of Secure Development Lifecycles and code assessment, you will work with the Software Development teams to understand and mitigate application-based vulnerabilities. This role is based within the wider Information Security department, with … application security. This role is eligible for inclusion in the Company's hybrid working from home policy. Preferred Skills and Experience Excellent understanding and practical experience with manual security testing to find vulnerabilities and logical issues, in either web applications or infrastructure. Strong understanding of and demonstrable experience with automated, dynamic and static application security testing tools. Knowledge More ❯

As a Senior Penetration Tester, you will focus on securing the Company's applications through best practice development lifecycle controls and perform penetration tests to assess the effectiveness of security measures. Full-time Closes 03/12/2025 The Information Security department deal with the security of closed sourced, open source and proprietary applications. The team ensure … applications are developed and implemented in a secure manner, as well as being responsible for identifying and remediating risks efficiently through penetration testing. Utilising your knowledge of Secure Development Lifecycles and code assessment, you will work with the Software Development teams to understand and mitigate application-based vulnerabilities. This role is based within the wider Information Security department, with … application security. This role is eligible for inclusion in the Company's hybrid working from home policy. Preferred Skills and Experience Excellent understanding and practical experience with manual security testing to find vulnerabilities and logical issues, in either web applications or infrastructure. Strong understanding of and demonstrable experience with automated, dynamic and static application security testing tools. Knowledge More ❯

adherence to regulatory standards. Consistently monitor and assess cloud environments for vulnerabilities and misconfigurations utilising tools like AWS Inspector, GuardDuty, and Security Hub, complemented by regular vulnerability scanning and penetration testing. Design, implement, and automate enterprise-level security systems and controls -including IAM, SIEM, DLP, firewalls, endpoint protection, and cloud-native guardrails-to safeguard assets across both cloud and … compliance initiatives. Strong understanding of networking protocols, systems architecture , and secure key management (e.g., PCI digital keys, security access modules). Hands-on experience with offensive security techniques , including penetration testing and phishing simulations. Proficiency in programming or scripting languages (such as Python, Bash, or PowerShell) for automation or tooling. Experience with Infrastructure as Code (IaC) and its More ❯

Lead or support incident response activities: investigation, containment, eradication, recovery, and reporting. Conduct root cause analysis and implement security hardening improvements. Vulnerability & Risk Management Run regular vulnerability scans and penetration testing activities; track remediation of findings. Evaluate risks and recommend security enhancements or compensating controls. Maintain asset inventories and ensure patching and configuration baselines are followed. Security Governance More ❯

Defender for Cloud, GuardDuty, CloudTrail, or CloudWatch. System administration on Unix, Linux, or Windows Network forensics, logging, and event management Defensive network infrastructure (operations or engineering) Vulnerability assessment and penetration testing concepts Malware analysis concepts, techniques, and reverse engineering In-depth knowledge of network and host security technologies and products (such as firewalls, network IDS, scanners) and improve More ❯

from our Crewe campus . In this role, you will report to the Functional Manager - Product Security Test & Incident Management and will be responsible for preparing and executing cybersecurity testing for automotive products in compliance with UNECE R . 155 and China GB 44495 regulations. This role plays a critical part in ensuring our vehicle systems are secure and … meet regulatory requirements across global markets. Responsibilities include: Manage and maintain test properties to ensure readiness for cybersecurity testing, including flashing, coding, debugging, analysis, and issue resolution on both test benches and vehicles. Develop cybersecurity test cases aligned with regulatory requirements (e.g., UNECE R155, GB 44495). Execute cybersecurity test cases and generate comprehensive test reports. Support cybersecurity homologation … and compliance testing activities for global regions. Coordinate and plan various levels of product security testing throughout the development lifecycle. About the Person The successful candidate will be a delivery-focused and results-driven cybersecurity test engineer , ideally with hands-on experience in product security testing within the automotive industry . They should possess strong technical skills More ❯

or looking to move into another area of Cyber Security. Our industry-renowned and awarded training program will teach you to perform web application security assessment, network and infrastructure testing, applied research, consultancy skills, and more. You will propel your career and be on the fast track to becoming a full fledge Penetration Tester (aka Security Consultant). … from client communication to report writing You’ll work through real-world scenarios using tools like Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through the programme, you’ll deliver a … gaining CRT or CSTM, you will apply to NCSC for CHECK Team Member accreditation. Transition into client-facing delivery work with confidence and credibility Build a strong foundation in penetration testing and consultancy, ready to specialise or broaden into other areas of cyber security. A successful Associate Has a good level of English command, both written and spoken More ❯

or looking to move into another area of Cyber Security. Our industry-renowned and awarded training program will teach you to perform web application security assessment, network and infrastructure testing, applied research, consultancy skills, and more. You will propel your career and be on the fast track to becoming a full fledge Penetration Tester (aka Security Consultant). … from client communication to report writing You’ll work through real-world scenarios using tools like Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through the programme, you’ll deliver a … gaining CRT or CSTM, you will apply to NCSC for CHECK Team Member accreditation. Transition into client-facing delivery work with confidence and credibility Build a strong foundation in penetration testing and consultancy, ready to specialise or broaden into other areas of cyber security. A successful Associate Has a good level of English command, both written and spoken More ❯

secure, innovative solutions across industries. We foster collaboration, inclusion, and continuous growth, with networks supporting diversity, equity, and belonging. What You'll do: Lead and manage threat intelligence-led penetration tests across applications, infrastructure, cloud (AWS/Azure/O365), APIs, and OT Develop advanced test plans, identify critical assets, and deliver detailed, actionable reports for technical and business … team capabilities Contribute to research on emerging threats and attack techniques to strengthen proactive security What You'll Bring: CREST CRT (or higher) certification - essential 5+ years' experience in penetration testing with strong understanding of adversarial tactics and threat intelligence Expertise across network, cryptography, vulnerabilities, and attack vectors Strong communication and reporting skills Experience with Breach Attack Simulation More ❯

customers across enterprise, public sector and fast growing scale ups. Its Security Practice protects clients through a powerful mix of Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a world class Security Advisory function. As a Senior SOC Analyst, you will take a leading role in identifying, investigating and responding More ❯

Teams VMware Server and Storage Hardware Microsoft Windows Operating Systems (Server 2012 to 2022 & Windows 7 to 11) Linux Operating Systems On-Premise Active Directory Networking - Cisco/Fortigate Penetration Testing & Vulnerability Management Applications Cloud based Web Proxy Anti-virus/Anti-malware tooling Disk/Data Encryption About You The right candidate for this role will behave More ❯

from containment to recovery. You’ll document incidents thoroughly, follow established playbooks, and help improve them over time. Automation will be key to streamlining investigations and enriching threat intelligence. Testing and Validation You’ll take part in cyber crisis simulations, penetration testing, and table-top exercises to ensure our defences are robust and response plans are effective. More ❯

from containment to recovery. You’ll document incidents thoroughly, follow established playbooks, and help improve them over time. Automation will be key to streamlining investigations and enriching threat intelligence. Testing and Validation You’ll take part in cyber crisis simulations, penetration testing, and table-top exercises to ensure our defences are robust and response plans are effective. More ❯

Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks and systems for threats; lead incident response efforts Perform root cause analysis and maintain incident response protocols Recommend enhancements to improve More ❯

services to customers across enterprise, public sector and fast growing scale ups. Its Security Practice protects clients through capabilities including Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a consulting led Security Advisory practice. As a Senior Security Engineer, you will be responsible for designing, implementing and maintaining the tools More ❯

Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks and systems for threats; lead incident response efforts Perform root cause analysis and maintain incident response protocols Recommend enhancements to improve More ❯

tools Operational (40%) Manage security environments across Azure and AWS infrastructure Coordinate security incident response and vulnerability remediation Oversee security monitoring, alerting, and detection capabilities Manage vulnerability assessment and penetration testing programs Maintain identity and access management controls Compliance & Assurance (30%) Maintain ISO27001 certification and manage audit cycles Ensure PCI/DSS compliance for payment processing systems Manage More ❯