Principal Penetration Tester
Watford, England, United Kingdom
GBP 61K-85K (estimate) Senior-level Full Time
Tasks
- Act as senior technical point of reference and coach team
- Apply ATT&CK aligned offensive scenario design
- Apply EDR and antivirus evasion concepts
- Assess Java based backend systems
- Coordinate with external red team partners and turn findings into improvements
- Develop and mature internal purple team methodology
- Develop application security testing standards and playbooks
- Identify exploitation paths across hosts and applications
- Improve security testing methods and reporting consistency and scale
- Lead advanced penetration testing
- Perform binary exploitation and lower level analysis
- Perform security testing on AWS and container environments
- Plan offensive security simulations with cyber defence
- Provide release assurance and risk based sign off inputs
- Review SAST DAST outputs and triage risks
- Support specialist hardware and low level testing where needed
- Support threat modelling and design reviews
- Test authentication authorization and session handling
- Test token management and data exposure risks
- Use exploit chaining and post exploitation tradecraft
Perks/Benefits
Skills/Tech-stack
API Gateway | API Security | ATT&CK | AWS | Antivirus evasion | Application Security | Authentication | Authorization | Backend for Frontend | Binary exploitation | Business Logic | Business logic testing | Container Security | Credential Handling | Cross Layer Testing | DAST | EDR | Exploit Development | Exploit chaining | Input validation | Linux | Logic testing | Manual Security Testing | Microservices | Penetration Testing | Privilege escalation | Purple Teaming | REST | Red Teaming | SAST | Security Testing | Session management | Spring Boot | Threat Intelligence | Threat Modelling | Token Management | Vulnerability analysis | WAF | Web Security | Windows
Education
N/A
Related jobs
-
Junior Cyber Security Consultant GBP 35K-40KApplication Testing | Burp Suite | C# | C++ | Computer ScienceCollaborative team | Freedom and trust | Generous holiday allowance | Knowledge sharing | Occasional office tripsEntry-level Full TimeBerkshire-Reading, UK1d ago
-
Application Security Researcher GBP 50K-70KAPI Security | Android Reversing | Android application | Android application testing | Application SecurityMid-level Full TimeLondon, England, GB2d ago
-
Active Directory | Ansible | Avi Networks | Cloud Foundation | Cloud strategySenior-level Full TimeHammersmith - 37.5 hrs, United Kingdom2d ago
-
Penetration Tester GBP 55K-60KApplication Security | Exploit Development | Mobile Application Security | Mobile application | Network SecurityMid-level Full TimeKnutsford, Radbroke Hall, United Kingdom2d ago
-
Principal Product Security Engineer GBP 90K-120KAI Act | AI Security | AWS | Access Control | Bug BountyCreativity and wellness benefit | Employee equity plan | Flexible vacation policy | Free lunches weekly | Gym membershipSenior-level Full TimeBerlin, London2d ago
-
Penetration Tester GBP 47K-53KBurp Suite | Detection Systems | Ethical Hacking | Firewalls | GDPREmployee wellbeing programs | Hybrid working | Mental health support champions | Wellbeing app accessEntry-level Full TimeLondon, GB3d ago
-
Security Analyst GBP 45K-65KApplication Security | CVSS | Cybersecurity | Incident Response | LinuxAnnual leave | Bank holidays | Employee assistance program | Employer pension | Enhanced maternity payMid-level Full TimeLondon6d ago
-
Principal Security Engineer GBP 72K-80KAKS | Access Management | Agile | Application gateways | Azure DevOpsAnnual leave | Flexible schedule | Hybrid working | Income protection | Life assuranceSenior-level Full TimeBexhill - 37, United Kingdom9d ago
-
Security Researcher GBP 50K-70KAPI Security | Dynamic analysis | Java | JavaScript | Network AnalysisMid-level Full TimeLondon, England, GB9d ago
-
Mid-level Full TimeFarnborough, England, United Kingdom10d ago
-
Offensive Security Engineer GBP 62K-75KAuthentication bypass | Bash | Bug Bounty | Business Logic | Business logic flawsFully remote | High autonomy | High trustMid-level Full TimeLondon, United Kingdom R13d ago
-
Principal Engineer - DevSecOps & AI GBP 80K-110KAWS | Artifact signing | Azure | Blue/green | Blue/green deploymentsHybrid work | Onsite work requiredSenior-level Full TimeGBR - London, Canada Square, United …15d ago
-
Technology Principal (Security) GBP 86K-100KAI Security | AI security governance | APIs | AWS | Access ManagementBike to work | Career mentorship | Educational assistance | Employee assistance programme | Employee discount schemeSenior-level Full TimeLondon, Birmingham, Manchester, Newcastle upon Tyne, …16d ago
-
Senior-level Full TimeLondon, England (Angel Lane), United Kingdom16d ago
-
Principal Security Engineer GBP 89K-120KAccess Management | Agentic Automation | CI/CD | Cloud Security | Data leakageCompassionate leave | Flexible hours | Paid leave | Pawternal leave | Performance-based bonusesSenior-level Full TimeUK, London17d ago
-
Principal Solutions Engineer - Application Security GBP 85K-105KAWS | Application Security | Application Security Posture Management | Azure | CI/CDSenior-level Full TimeRemote - United Kingdom R20d ago
-
Security Engineer, Offensive Security GBP 42K-55KAutomation | Best practices | Burp Suite | DNS | HTTPMid-level Full TimeMansfield, Nottingham22d ago
-
Principal Product Security Engineer USD 120K-151K800-53 | AI Security | AWS Security | Agile | Application SecurityCharitable giveback day | Medical/Dental/Vision insurance | Paid time off | Retirement benefitsSenior-level Full TimeBedford, United States30d ago
-
Adversarial Simulation | Attack chains | CBEST | Defensive security | FEERTravel up to 10 percentSenior-level Full TimeRemote, United Kingdom R1mo ago
-
Principal Product Security Engineer GBP 59K-63KAcceptance Testing | Access Management | Accreditation | Authority to Operate | Bill of Materials33 days holiday | Company pension | Cycle to work scheme | Health care cash plan | Life assuranceSenior-level Full TimeBristol, United Kingdom1mo ago
-
Manager, Red Team Services (Remote, GBR) GBP 62K-70KAdversary Emulation | Automation | Burp Suite | Cobalt Strike | Command and controlCompetitive vacation and holidays | Employee networks | Great Place to Work certification | Paid adoption leave | Paid parental leaveMid-level Full TimeGBR Remote, United Kingdom R1mo ago
-
Principal Product Specialist GBP 80K-105KAccess Management | Application access | Attack prevention | Browser Security | DLPEducation reimbursement | Health plans | Parental leave options | Retirement options | Time off plansSenior-level Full TimeRemote - UK R1mo ago
-
Principal Security Engineer GBP 48K-60KISO27001 | ISO27004 | ISO27005 | NIST | Penetration TestingAdditional flexi days | Bonus scheme | Coursera learning access | Dental coverage | Family coverSenior-level Full TimeGB - Bristol - Coldharbour Lane, …1mo ago
-
Principal Product Specialist (AI-SPM / DSPM) GBP 100K-130KAI Foundry | AWS | Amazon Bedrock | Azure AI | Azure AI FoundryEducation reimbursement | Health plans | In-office perks | Parental leave options | Remote workSenior-level Full TimeRemote - UK R1mo ago
-
Senior Penetration Tester GBP 66K-78KAWS | Android security | Application Security | Cloud Security | Code reviewBirthday day off | Cancer care | Holiday allowance | Hybrid office attendance flexibility | Hybrid workingSenior-level Full TimeLondon, England, United Kingdom1mo ago