analysis About You Proven experience in penetration testing and red teaming (internal, external, app, cloud, etc.) Strong understanding of attacker TTPs and detection evasion Familiarity with frameworks such as OWASP , MITRE ATT&CK , and NIST Experience with C2 frameworks (e.g., Cobalt Strike, PoshC2, Sliver) Certifications such as OSCP, CRTO, OSEP, or CREST CRT preferred (but not required) Please note that More ❯
analysis About You Proven experience in penetration testing and red teaming (internal, external, app, cloud, etc.) Strong understanding of attacker TTPs and detection evasion Familiarity with frameworks such as OWASP , MITRE ATT&CK , and NIST Experience with C2 frameworks (e.g., Cobalt Strike, PoshC2, Sliver) Certifications such as OSCP, CRTO, OSEP, or CREST CRT preferred (but not required) Please note that More ❯
field Passion for penetratioin testing, shown through either work experience, extra curricular activities or personal projects. Strong Technical understanding of toolings such as Burpsuite or Nessus Strong understanding of OWASP top 10 Sole british citizen This position is a fantastic chance for someone who wants to progress their career as a penetration tester, opportunities for study support towards certifications suh More ❯
Shape integration roadmaps, select appropriate patterns (REST or GraphQL APIs, event streams, microservices, ESB, iPaaS) and embed security controls such as OAuth 2.0, OIDC, mutual TLS and understand the OWASP API Top 10. Stakeholder engagement – Translate complex architecture into plain for product owners, finance leads and other non-technical colleagues, clarifying scope, timelines and resource needs. Governance and documentation – Produce More ❯
working with multi-disciplinary teams. • Knowledge and experience of applying best practice for handling personal data. E.g., GDPR. • Knowledge and experience of applying best practice for solution security. E.g., OWASP, NCSC cloud security principles. • Knowledge and experience of applying best practice within one or more specialist architecture domains. • Strong understanding and practical experience of working with multi-discipline teams to More ❯
to have: Experience working in a distributed team. Experience with Grafana or other monitoring platforms Awareness of common security issues in client-side development, such as those in the OWASP top ten, and how to mitigate them Even if you don't meet all the requirements listed above, but feel you could still be a great fit, please still apply. More ❯
attack techniques and relate these to normal and observed digital system behaviour and recommend how to defend against them. Interpret and demonstrate use of external source of vulnerabilities (e.g. OWASP, intelligence sharing initiatives, open source) Undertake security risk assessments for simple systems without direct supervision and propose basic remediation advice in the context of the employer Source and analyse securityMore ❯
About You Proven experience in penetration testing and red teaming (internal, external, application, cloud, etc.) Strong understanding of attacker TTPs and detection evasion techniques Familiarity with frameworks such as OWASP, MITRE ATT&CK, and NIST Experience with C2 frameworks like Cobalt Strike, PoshC2, or Sliver Certifications such as OSCP, CRTO, OSEP, or CREST CRT are preferred but not mandatory #J More ❯
Andover, Hampshire, South East, United Kingdom Hybrid / WFH Options
Data Careers
Enterprise Architect Permanent Location: Home/Hampshire (Hybrid) Salary: £100,000 - £110,000 (+ benefits) Skills: TOGAF, Zachman, Sparx, OWASP, NCSC Are you a seasoned Enterprise Architect with a passion for designing modular, scalable, and future-ready technology solutions? We're working with a leading technology consultancy delivering a high-impact transformation programme within central government. This is an opportunity More ❯
reports. Security Recommendations: Provide actionable guidance to mitigate risks and improve the organization's security posture. Compliance and Standards: Ensure testing aligns with industry regulations and security standards (e.g., OWASP, PCI-DSS). Continuous Research: Stay updated on emerging threats, tools, and techniques to enhance testing methodologies. Skills and Experience Required: Must have graduated/currently studying at a Russell More ❯
London, England, United Kingdom Hybrid / WFH Options
Metro Bank Plc
and analysis skills. Skilled with industry standard vulnerability scanning tools (Qualys/Tenable). Proven experience in coordinating security and vulnerability Management programs (Regular vulnerability scans). Knowledge of OWASP Top 10, SANS Top 20 and industry standard security best practice. Process knowledge familiarity including communication and change management. Relevant Information Security certifications (CEH, ECSA, LPT, CISA). Our promise More ❯
with proven experience leading teams. Secondary Expertise: Knowledge and experience in network security, including firewalls, micro-segmentation, DDoS protection, WAF, and NAC. Familiarity with open-source frameworks such as OWASP, CVSS, etc. Experience with security products like Qualys, AlgoSec, Fortinet, Guardicore, Akamai, and Forescout. Salary: Up to £80,000 Basic Salary + 10% bonus + 4k car 13% pension Location More ❯
servers infrastructure, e.g. CDN, Cloudflare or similar, web servers Experience developing secure frontend code (strong understanding of common security vulnerabilities like cross-site scripting, cross-site request forgery, other OWASP risks and best practices for testing & mitigating them) Interest in algorithmic trading Experience in client facing financial or other professional services products Rewards and Incentives Great base salaries and industry More ❯
