925 IT & Software Developer jobs in the UK
Be among the first 5 applicants!
Pentester
£38,500 - 70,500
Queen Square Recruitment Limited
Queen Square 18, South East London
£38,500 - 70,500
Requirements
Must:
We are looking for a skilled Internal Pentester with 3-7 years of experience in penetration testing, red teaming, or offensive security. You should possess strong application security knowledge, particularly the OWASP Top 10 and API security. Proven end-to-end pentest experience across internal, external, cloud, Active Directory, web applications, and APIs is essential. Familiarity with pentest reporting formats, such as CVSS and MITRE ATT&CK mapping, is important. You should be comfortable working in NDA-restricted, compliance-driven, sensitive environments and have excellent reporting skills for both technical and executive audiences. Proficiency in scripting for automation and exploit development (Python, Shell, Bash) is required, alongside expertise in Windows, Linux, Active Directory, Entra ID/Azure AD, VPNs, and VLANs. Experience in both waterfall and agile delivery environments is a plus.
Responsibilities
In this role, you will conduct full-scope penetration tests on applications, APIs, internal infrastructure, networks, and cloud environments (AWS, Azure, GCP). You will identify and exploit security flaws, including insecure authentication, authorization bypass, input validation issues, cloud misconfigurations, and Active Directory misuse. You'll perform internal and external network testing, AD enumeration, and privilege escalation while automating security testing where possible by integrating Infrastructure as Code (IaC) and ServiceNow workflows. Simulating real-world attacks using the same techniques and tools as malicious actors will be part of your daily tasks. Additionally, you'll produce detailed, actionable reports with executive summaries and technical findings, collaborating with development, cloud, and infrastructure teams on remediation efforts. Staying up to date with the latest vulnerabilities, exploit techniques, and pentesting tools is also expected.
Description
Nice to have certifications include OSCP, OSWA, OSEP, OSCE, CRTP, CRTE, GPEN, GXPN, eCPPT, or equivalents, as well as cloud security certifications (AWS/Azure) and advanced AD/cloud/red teaming training from organizations such as SANS or HackTheBox Pro Labs. We value strong analytical, problem-solving, troubleshooting, and customer engagement skills. Experience in agile, cross-functional teams, documenting findings, and supporting remediation cycles is highly regarded. If you are ready to take on your next challenging role in offensive security, please send us your CV, and we’ll be in touch.
Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️
You can find QA, Test Engineer salaries in the UK here.
How many QA, Test Engineer jobs are in the UK?
Currently, there are 925 QA, Test openings. Check also: Selenium jobs, Cypress jobs, Cucumber jobs - all with salary brackets.
Is the UK a good place for QA, Test Engineers?
The UK is one of the best countries to work as a QA, Test Engineer. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.
Which companies are hiring for QA, Test Engineer jobs in the UK?
Core-Asset Consulting, ApplianSys, u-blox, Serac Group, Mas & Pas Limited, BAE Systems, HM Land Registry among others, are currently hiring for QA, Test roles in the UK.
The company with most openings is Ascendion as they are hiring for 23 different QA, Test Engineer jobs in the UK. They are probably quite committed to find good QA, Test Engineers.
The company with most openings is Ascendion as they are hiring for 23 different QA, Test Engineer jobs in the UK. They are probably quite committed to find good QA, Test Engineers.