Principal Penetration Tester
Watford, England, United Kingdom
GBP 61K-85K (estimate) Senior-level Full Time
Tasks
- Act as senior technical point of reference and coach team
- Apply ATT&CK aligned offensive scenario design
- Apply EDR and antivirus evasion concepts
- Assess Java based backend systems
- Coordinate with external red team partners and turn findings into improvements
- Develop and mature internal purple team methodology
- Develop application security testing standards and playbooks
- Identify exploitation paths across hosts and applications
- Improve security testing methods and reporting consistency and scale
- Lead advanced penetration testing
- Perform binary exploitation and lower level analysis
- Perform security testing on AWS and container environments
- Plan offensive security simulations with cyber defence
- Provide release assurance and risk based sign off inputs
- Review SAST DAST outputs and triage risks
- Support specialist hardware and low level testing where needed
- Support threat modelling and design reviews
- Test authentication authorization and session handling
- Test token management and data exposure risks
- Use exploit chaining and post exploitation tradecraft
Perks/Benefits
Skills/Tech-stack
API Gateway | API Security | ATT&CK | AWS | Antivirus evasion | Application Security | Authentication | Authorization | Backend for Frontend | Binary exploitation | Business Logic | Business logic testing | Container Security | Credential Handling | Cross Layer Testing | DAST | EDR | Exploit Development | Exploit chaining | Input validation | Linux | Logic testing | Manual Security Testing | Microservices | Penetration Testing | Privilege escalation | Purple Teaming | REST | Red Teaming | SAST | Security Testing | Session management | Spring Boot | Threat Intelligence | Threat Modelling | Token Management | Vulnerability analysis | WAF | Web Security | Windows
Education
N/A
Related jobs
-
Digital Safety Penetration Tester GBP 44K-50KAPI Security | AWS | Azure | Bash | CI/CDFlexible benefits | Hybrid working | Life assurance | Pension contribution | Performance related schemesMid-level Full TimeUnited Kingdom-London-London Luton Airport1d ago
-
Mid-level Full TimeLondon, England, GB1d ago
-
Principal Engineer I GBP 90K-120KAWS | Apache Druid | Artificial Intelligence | Content Filtering | DNSSenior-level Full TimeEMEA - UK1d ago
-
Principal Product Security Engineer USD 120K-151K800-53 | AWS Security | Azure Security | CI/CD | CISSPCharitable giveback day | Medical/Dental/Vision insurance | Paid time off | Retirement benefitsSenior-level Full TimeBedford, United States2d ago
-
Professional Services Principal Consulant GBP 75K-95KCloud Security | Correlation rules | Data Migration | Detection engineering | EDRRemote work | Travel opportunitiesSenior-level Full TimeLondon, England2d ago
-
Principal Engineer - Product Security GBP 61K-61KCybersecurity | Design assurance | Engineering lifecycle | ISO 27001 | NISTHybrid working | Relocation supportSenior-level Full TimeGB-Various-Various-Various4d ago
-
Principal Systems Administrator (Onsite) USD 86K-165KACAS | Active Directory | Certificate-based authentication | Compliance | Eval-STIG401k match | Dental insurance | Employee assistance program | Employee scholar program | Flexible spending accountsSenior-level Full TimeUS-MA-ANDOVER-AN1 ~ 350 Lowell St ~ …6d ago
-
Principal Data Engineer GBP 80K-110KAWS | Airflow | Alerting | Argo Workflows | ArgoCDAnnual learning budget | Enhanced parental leave and childcare benefits | Equity participation | Home office budget | Hybrid work policySenior-level Full TimeLondon, England, United Kingdom7d ago
-
Senior Penetration Tester - CTL GBP 60K-66KApplication Testing | Customer communication | Infrastructure Security | Mobile Application Testing | Mobile applicationDeath in service coverage | Paid time off | Pension scheme | Private medical insurance | Training and developmentSenior-level Full TimeLondon, England, United Kingdom7d ago
-
Cyber Security | Docker | Linux | Mitre Attack | NetworkingAnnual leave | Birthday off | Critical illness cover | Cycle scheme | Enhanced parental leaveSenior-level Full TimeUnited Kingdom R8d ago
-
Principal Cloud DevOps Engineer GBP 71K-85KAWS | Ansible | Automation | CI/CD | DockerCareer growth opportunities | Flexible work options | Hybrid work options | On-site work options | Remote work optionsSenior-level Full TimeUnited Kingdom - London (Onfido)9d ago
-
Principal Product Security Engineer GBP 90K-120KAI Governance | AI Security | AWS | Access Control | Application SecurityBook Reimbursement | Employee equity plan | Flexible vacation | Free Lunches | Gym membershipSenior-level Full TimeBerlin, London11d ago
-
Application Security | Bash | Cloud Security | Code review | Network SecurityFlexible working | Hybrid working | Pension | Performance awardSenior-level Full TimeLeeds, United Kingdom R12d ago
-
Junior Penetration Tester (Cyber Analyst), Threat & Vulnerability Management – Cyber Security Division GBP 40K-45KApplication Security | Bash | Cloud Security | Governance Risk | Governance Risk and ComplianceAnnual leave | Career average pension | Flexible working | Hybrid working | Income protectionEntry-level Full TimeLeeds, United Kingdom R13d ago
-
Principal Engineer - Product Security GBP 61K-61KCybersecurity | ISO 27001 | Information security | NIST | Risk ManagementHybrid working | Relocation supportSenior-level Full TimeGB-Various-Various-Various14d ago
-
Ansible | Application Security | Bug Bounty | Cross-Site Scripting | Domain RecordsMid-level Full TimeUnited Kingdom - Remote (Mainland) R14d ago
-
Application Security | Assembly | Attack Surface Analysis | Attack surface | Black box testingSenior-level Full TimeUnited Kingdom - Remote (Mainland) R14d ago
-
Principal Software Engineer GBP 59K-63KAutomated testing | Behavior-Driven Development | C# | C++ | Continuous integrationAnnual bonus scheme | Cycle to work scheme | Flexible working hours | Life assurance | Paid time offSenior-level Full TimeMaidenhead (GBR), United Kingdom19d ago
-
Penetration Tester GBP 47K-53KBurp Suite | Detection Systems | Ethical Hacking | Firewalls | GDPREmployee wellbeing programs | Hybrid working | Mental health support champions | Wellbeing app accessEntry-level Full TimeLondon, GB23d ago
-
Principal Security Engineer GBP 72K-80KAKS | Access Management | Agile | Application gateways | Azure DevOpsAnnual leave | Flexible schedule | Hybrid working | Income protection | Life assuranceSenior-level Full TimeBexhill - 37, United Kingdom29d ago
-
Mid-level Full TimeFarnborough, England, United Kingdom30d ago
-
Principal Engineer - DevSecOps & AI GBP 80K-110KAWS | Artifact signing | Azure | Blue/green | Blue/green deploymentsHybrid work | Onsite work requiredSenior-level Full TimeGBR - London, Canada Square, United …1mo ago
-
Technology Principal (Security) GBP 86K-100KAI Security | AI security governance | APIs | AWS | Access ManagementBike to work | Career mentorship | Educational assistance | Employee assistance programme | Employee discount schemeSenior-level Full TimeLondon, Birmingham, Manchester, Newcastle upon Tyne, …1mo ago
-
Senior-level Full TimeLondon, England (Angel Lane), United Kingdom1mo ago
-
Principal Security Engineer GBP 89K-120KAccess Management | Agentic Automation | CI/CD | Cloud Security | Data leakageCompassionate leave | Flexible hours | Paid leave | Pawternal leave | Performance-based bonusesSenior-level Full TimeUK, London1mo ago