Senior Penetration Tester

Berkshire
Full Time
Pen tester
Reference: SPT_1750930094

As a Senior Security Penetration Tester, you will be responsible for supporting the design, implementation, and maintenance of TVM (Threat & Vulnerability Management) solutions, controls and processes across the organisation. You will be liaising with Digital teams to ensure appropriate mitigation and remediation of vulnerabilities detected across our IT estate.

This role requires an understanding of TVM concepts, technologies, and best practices, as well as the ability to collaborate effectively with cross-functional teams. The ideal candidate will possess strong communication skills and will be committed to ensuring the highest level of security, compliance, and user experience.

What you'll be doing as a Senior Security Penetration Tester

  • Help support and develop an internal penetration testing function.
  • Conduct network, application penetration testing, code and security reviews.
  • Identify and exploit vulnerabilities through proof-of-concept testing.
  • Support vulnerability management across the enterprise, ensuring that a framework for identification, categorisation and mitigation exists and is implemented and maintained.
  • Responsible for supporting the creation of the operating model for vulnerability management, which is shared, agreed and operates effectively across the business.
  • Develop and maintain penetration testing documentation, policies, and procedures.
  • Integrate cybersecurity solutions (e.g. vulnerability scanning tools) with existing systems, applications, and infrastructure.
  • Evaluate and recommend technologies, tools, and vendors to meet business needs.
  • Investigate newly identified cybersecurity vulnerabilities and provide appropriate mitigation actions.
  • Liaise and coordinate with technology and business stakeholders in relation to cybersecurity patching and vulnerability management issues/actions.
  • Maintain a cyber threat assessment methodology, align with evolving industry standards and integrate into BAU and project-based business processes.
  • Support with proactive threat hunting for new and emerging cyber threats.
  • Develop and maintain dashboards with cybersecurity threat and vulnerability metrics.
  • Support compliance with relevant industry standards, regulations, and best practices, such as GDPR, NIS and ISO 27001.

What you should bring to the role

  • Strong knowledge of manual penetration testing techniques and confident with operating systems and tools such as Tenable, Burp Suite, Kalli Linux.
  • Exposure to remediating vulnerabilities and patch management in a complex business environment.
  • Experience in remediating cyber risks in the ever-changing digital estate.
  • 3 years of experience in a penetration testing enterprise environment.
  • Prepare detailed reports and have the ability to present findings to key stakeholders.
  • Cyber security industry certification(s) such as CSTM/ CRT/ OSCP/CTL.
  • Understanding of different patching management techniques and approaches for different technology stacks (e.g. SaaS, IaaS, End-User Computing, Server Estate, etc.).

Knowledge of TVM concepts, technologies, and best practices, including OSINT tools, vulnerability assessment, threat modelling, etc

GCS is acting as an Employment Agency in relation to this vacancy.

£60,000.00 - £62,000.00
Per annum
GBP60000 - GBP62000 per annum

Berkshire

Full Time

Added 26/06/2025
Reference: SPT_1750930094

Senior Penetration Tester

Berkshire
Full Time

Other similar jobs

Integration Tester (SC Cleared)

Added 06/06/2025

Hi,We are looking for a System Integration Tester to join the ISS project. Please find key details regarding the role below:Logistics:Location: The project is loosely based between Stoke and Birmingham, so candidates located in or near this area would be ideal. Occasional, ad-hoc travel to these locations will be required.Clearance: SC clearance is a mandatory requirement.Contract Duration: 2-3 monthsBudget: Up to £250 -300 per day IR35 Status: Inside IR35Role Overview:System-based testing rather than software development. The primary objective is to validate communication between systems (e.g., System A communicating effectively with System B), alongside business process verification.Key Skills:Strong experience with APIs...

Learn more

Integration Tester (SC Cleared)

Added 06/06/2025

Hi,We are looking for a System Integration Tester to join the ISS project. Please find key details regarding the role below:Logistics:Location: The project is loosely based between Stoke and Birmingham, so candidates located in or near this area would be ideal. Occasional, ad-hoc travel to these locations will be required.Clearance: SC clearance is a mandatory requirement.Contract Duration: 2-3 monthsBudget: Up to £250 -300 per day IR35 Status: Inside IR35Role Overview:System-based testing rather than software development. The primary objective is to validate communication between systems (e.g., System A communicating effectively with System B), alongside business process verification.Key Skills:Strong experience with APIs...

Learn more

Senior TechOps Engineer

Added 27/06/2025

We are looking for a skilled and experienced Senior TechOps Engineer to join our technology team. You will play a critical role in managing and enhancing IT infrastructure, ensuring the performance, reliability, and security of both on-premise and cloud environments. This is a hands-on role, ideal for someone who thrives in a fast-paced, collaborative environment. Job Title: Senior TechOps Engineer Location: Dublin, Ireland (Hybrid)Type: Permanent role Key Responsibilities:Manage and maintain cloud and on-prem infrastructure, including servers, networking, and storage.Monitor system health, troubleshoot issues, and optimise performance.Apply and maintain security controls, in alignment with InfoSec policies and audit requirements.Lead and execute...

Learn more

Senior System Engineer

Added 25/06/2025

Freelance / ZZP Role for a Senior System Engineer Currently looking for a Senior System Engineer for a new freelance assignment. This would be for a client based in Amsterdam and would be looking for Hybrid working. We are searching for people experienced in: You have experience in programming and automationExperience of running Data platform on public cloud (preferably Azure)Experience with Azure Databricks is a plusExperience with running production environments on Azure is a plusYou are experienced with cloud environments and using desired state configuration to manage them (Terraform is preferred)Containerised workloads have no secrets for youYou have experience with...

Learn more

Senior DevSecOps Engineer - Fully Remote - Financial Services

Added 24/06/2025

The Role:12-month contract with potential for extensionFully remote working modelUp to 450 EurosImmediate StartI'm currently working with a Banking Client aiming to upskill their team with the introduction of an experienced Senior Engineer on a contract basis.As a Senior DevSecOps Engineer, you will be responsible for driving the Design, Implementation, and operational readiness of CI/CD Pipelines during the application migration, ensuring they are secure.Key ResponsibilitiesIndependently manage the full migration lifecycle, including build, test, and deployment automation.Validate systems for security, stability, and readiness for production deployment and sign-off.Assess current CI/CD pipelines and propose enhancements that align with industry standards, regulatory requirements,...

Learn more

Senior SOC Analyst

Added 23/06/2025

As a Senior Cyber Security Analyst, you will play a critical role in strengthening digital defences by maintaining and optimising security operations tools and processes. You'll focus on monitoring, analysing, and responding to cyber threats, while supporting the SOC team and ensuring effective incident management across the business.Your role will involve collaborating with technology and business stakeholders, investigating security alerts, enhancing tooling performance, and supporting the delivery of continuous improvement and risk reduction initiatives. You'll also contribute to readiness for significant incidents and play a key role in proactive threat hunting and compliance reporting.What you'll be doing as a Senior...

Learn more

Senior Control Assurance Assessor - 12 Month Contract - Remote

Added 18/06/2025

Senior Control Assurance Assessor - 12 Month Contract - Remote - Financial ServicesWhat's on offer:12-month contract with potential for extensionFully remote working modelWork with an experienced team on critical security assurance programsExposure to advanced security technologies, automation, and AI-driven testingWe are working with a major financial services organisation to find an experienced Senior Control Assurance Assessor for an initial 12-month contract. This role is fully remote, offering the chance to work on meaningful security programs within a dynamic, high-performing environment.Role Overview: As a Senior Control Assurance Assessor, you will play a key role in ensuring that security both on-prem and...

Learn more

Senior Manager - Data Governance & Analytics

Added 18/06/2025

Overview:Join a global distribution and supply chain leader undergoing a large-scale digital transformation, focused on building a data-driven enterprise. You'll drive data innovation, improve governance, and help deliver enterprise-wide analytics capabilities to empower self-service and informed decision-making. Role: Senior Manager - Data Governance & AnalyticsType: Permanent roleLocation: Dublin, Ireland (Hybrid) Key Responsibilities:Define and implement data strategy and governance frameworks.Support delivery of self-service analytics and data platforms.Drive adoption of cloud, AI/ML, and modern data tools.Align data initiatives with business goals and engage senior stakeholders. Requirements:5-8 years' experience in data governance or consulting in large organizations.Strong knowledge of data strategy, governance, and...

Learn more

Senior Software Engineer

Added 17/06/2025

Lead Software Engineer Permanent Role - Salary to circa £90,000Hybrid Working with 2 days a week on Client Site in Cheshire Currently looking to recruit a highly experienced Software Engineer for an established FS Client in Cheshire - In this role you will design, develop and improve software, utilising various engineering methodologies, that provides business, platform, and technology capabilities for our customers and colleagues. You will also collaborate with cross-functional teams to deliver solutions - Lead the development of reliable/scalable applications - Mentor Junior team members. Successful candidates will need experience in the following:Core language: Java/Spring Boot, TypeScript/React/Angular, Golang, or...

Learn more

Senior Cyber Operations Analyst

Added 13/06/2025

Purpose of the role:To monitor the performance of operational controls, implement and manage security controls and consider lessons learnt in order to protect the bank from potential cyber-attacks and respond to threats. Accountabilities:* Management of security monitoring systems, including intrusive prevention and detection systems, to alert, detect and block potential cyber security incidents, and provide a prompt response to restore normal operations with minimised system damage. * Identification of emerging cyber security threats, attack techniques and technologies to detect/prevent incidents, and collaborate with networks and conferences to gain industry knowledge and expertise. * Management and analysis of security information and...

Learn more

Senior Information Security Administrator

Added 10/06/2025

My client is hiring an Information Security Lead to help shape and implement its cybersecurity operations, governance, and risk framework. Reporting to the IT Operations & Security Manager, this role is critical in maintaining the organisation's security posture, ensuring compliance, and supporting ongoing IT service resilience.Key ResponsibilitiesOversee third-party security tools and services (e.g. firewalls, IDS/IPS, endpoint protection) and monitor vendor SLA adherence.Conduct risk assessments, maintain the security risk register, and manage remediation activities.Lead incident response processes including detection, containment, investigation, and resolution.Develop, implement, and maintain information security policies, procedures, and standards.Ensure compliance with ISO 27001, NIS2, and other regulatory requirements;...

Learn more

Senior Data Protection Advisor

Added 10/06/2025

My client is hiring a Senior Data Protection Advisor to deliver expert data protection and privacy compliance services across a wide range of client organisations. This role involves leading advisory projects, ensuring GDPR and broader regulatory compliance, and supporting internal teams with practical, risk-based guidance. Reporting to a Service Manager or Practice Lead, the successful candidate will play a key role in managing data protection strategy, risk assessments, and client relationships.Key Responsibilities * Independently deliver client advisory work, including privacy notices, briefing papers, consent models, and policy reviews. * Conduct data protection impact assessments (DPIAs), gap and risk analyses, and...

Learn more

Senior Information Security Advisor

Added 10/06/2025

My client is looking for a Senior Information Security Advisor to deliver technical information security services to clients across Europe. This role focuses on improving client security posture through risk management, policy development, compliance assessments, and training. You will also support internal initiatives, mentor junior colleagues, and contribute to my clients security leadership.Key Responsibilities * Lead delivery of information security services to clients, including risk identification, remediation, and compliance with regulatory and data protection standards. * Develop, implement, and review security policies, frameworks, and operational procedures. * Conduct ISMS assessments, internal audits, and compliance gap analyses against recognised standards. *...

Learn more

Senior DevOps Engineer - JFrog Artifactory SME - fully remote

Added 06/06/2025

Senior DevOps Engineer - JFrog Artifactory SME - 6 month contract - Fully remote6 month contract - Fully remote About the RoleWe're looking for a Senior DevOps Engineer with deep expertise in JFrog Artifactory to join our growing DevOps team. This role is ideal for someone who thrives in high-availability environments and has hands-on experience architecting and managing active-active HA clusters, federated repositories, and edge nodes in a single-domain setup.You'll be our go-to SME for everything JFrog, working closely with engineering, security, and release teams to ensure efficient artifact management, developer enablement, and policy enforcement across our CI/CD pipelines. Key...

Learn more

Senior Business Analyst (D365)

Added 06/06/2025

Senior Business Analyst An exciting opportunity has arisen for a Senior Business Analyst (D365 CE) to join a market-leading organisation. In this pivotal role, you'll work on impactful CRM projects in a flexible, hybrid work environment. Occasional travel to client sites across Europe may be required.Key ResponsibilitiesCollaborate with stakeholders to understand business requirements and address challenges.Translate business needs into detailed documentation, including user stories and process flows.Conduct gap analyses to assess current processes and recommend solutions.Configure and customise Dynamics 365 CE applications as necessary.Facilitate workshops and meetings to advise on D365 CE solutions.Skills & ExperienceRequired:Proven experience with end-to-end D365 CRM...

Learn more

Apply for...

Added
COMPETITIVE SALARY

Your file must be a doc, docx or pdf. No larger than 5MB.

In compliance with GDPR, you have the right to request a copy of the data entered on this form or to request its deletion at any time. The data is stored securely and can be accessed by emailing us. Please refer to our Privacy Policy for further information about how we process data. If you are happy to proceed, please confirm your consent below.

Required for two factor authentication
At least 8 characters, 1 uppercase, 1 lowercase and 1 special character or number
Your file must be a doc, docx or pdf. No larger than 5MB

Let us know you agree to cookies

We use cookies to provide you with the best possible browsing experience on our website. You can find out more here.