Senior Vulnerability Management Engineer Location: Pontefract, West Yorkshire Permanent £50,000 £65,000 3 days in the office, 1 day/month in Enderby (expenses covered) We are partnering with a leading organisation to recruit a Senior Vulnerability Management Engineer to join their Information Security team . This hands-on role focuses on Vulnerability and Threat Management across the business, with emphasis on the Warehouse environment . You ll proactively spot potential threats, combine threat hunting and vulnerability scanning (red team style), and help ensure the organisation is fully prepared for any risks. The team uses Qualys for vulnerability scanning. Key Responsibilities: Manage and maintain vulnerability scanning tools, including Qualys. Identify, triage, and assign vulnerabilities, providing mitigation guidance. Conduct proactive threat hunting across the business. Assist Incident Response with investigations and resolution. Review threat intelligence and validate against people, processes, and technology. Prepare reports for stakeholders and lead mitigation efforts. Maintain documentation, metrics, and procedures to a high standard. Act as SME and mentor less experienced team members. Key Skills & Experience: Strong experience with vulnerability management tools, preferably Qualys . In-depth InfoSec knowledge, including malware, attacks, and vulnerabilities. IT knowledge: network protocols, server infrastructure, Windows Server, Linux. Experience with threat hunting and spotting potential business-wide threats. Familiarity with frameworks: CVSS, CVE, CWE, OWASP, MITRE. OT vulnerability scanning and CTI monitoring experience. Strong analytical, prioritisation, communication, and reporting skills. Desirable: PCI-DSS/ISO27001, retail, cloud, DevOps/code scanning, SCADA/PLC, TIP management, offensive security, custom AI usage. Apply in confidence with Phoebe Rees at VIQU IT: (phone number removed) (url removed) Know someone great? Earn up to £1,000 if your referral is successful (terms apply). Follow us on IT Recruitment.
Jan 15, 2026
Full time
Senior Vulnerability Management Engineer Location: Pontefract, West Yorkshire Permanent £50,000 £65,000 3 days in the office, 1 day/month in Enderby (expenses covered) We are partnering with a leading organisation to recruit a Senior Vulnerability Management Engineer to join their Information Security team . This hands-on role focuses on Vulnerability and Threat Management across the business, with emphasis on the Warehouse environment . You ll proactively spot potential threats, combine threat hunting and vulnerability scanning (red team style), and help ensure the organisation is fully prepared for any risks. The team uses Qualys for vulnerability scanning. Key Responsibilities: Manage and maintain vulnerability scanning tools, including Qualys. Identify, triage, and assign vulnerabilities, providing mitigation guidance. Conduct proactive threat hunting across the business. Assist Incident Response with investigations and resolution. Review threat intelligence and validate against people, processes, and technology. Prepare reports for stakeholders and lead mitigation efforts. Maintain documentation, metrics, and procedures to a high standard. Act as SME and mentor less experienced team members. Key Skills & Experience: Strong experience with vulnerability management tools, preferably Qualys . In-depth InfoSec knowledge, including malware, attacks, and vulnerabilities. IT knowledge: network protocols, server infrastructure, Windows Server, Linux. Experience with threat hunting and spotting potential business-wide threats. Familiarity with frameworks: CVSS, CVE, CWE, OWASP, MITRE. OT vulnerability scanning and CTI monitoring experience. Strong analytical, prioritisation, communication, and reporting skills. Desirable: PCI-DSS/ISO27001, retail, cloud, DevOps/code scanning, SCADA/PLC, TIP management, offensive security, custom AI usage. Apply in confidence with Phoebe Rees at VIQU IT: (phone number removed) (url removed) Know someone great? Earn up to £1,000 if your referral is successful (terms apply). Follow us on IT Recruitment.
A global data and technology company is seeking an experienced offensive security professional for a fully remote position. The role involves conducting various security assessments, including penetration testing and social engineering. Candidates should possess in-depth knowledge of cyber threats and essential programming skills. This position offers a competitive compensation package, core benefits, and annual leave. Join the team to contribute to improving the organization's security posture.
Jan 15, 2026
Full time
A global data and technology company is seeking an experienced offensive security professional for a fully remote position. The role involves conducting various security assessments, including penetration testing and social engineering. Candidates should possess in-depth knowledge of cyber threats and essential programming skills. This position offers a competitive compensation package, core benefits, and annual leave. Join the team to contribute to improving the organization's security posture.
Experian's Offensive Security team charges itself with improving the organisation's security posture through clarifying risk and verifying the efficacy of our technical, people, physical and process controls from an attacker perspective. The team perform regular Adversary Simulation (Red Team) testing and a range of Ad-Hoc and Tactical Assessments based on changes to the threat landscape and organisational needs. To succeed in this role, you have breadth and depth of knowledge in security. This knowledge will include operating systems, networking and protocols, firewalls, databases, and middleware applications. Additionally, you will have expertise in forensics, scripting and programming, vulnerabilities, and the usage of GenAI / social engineering techniques. This is a fully remote, UK-based position reporting to the Head of Offensive Security. Responsibilities Collaborate with other teams within the Cyber Fusion Centre and the wider organisation. This ensures that we understand and articulate Cyber Risks in a threat-informed manner. The ultimate goal is to contribute to the successful defense of the organisation. Support Offensive Security's engagement at multiple organizational levels, from senior leaders to technical analysts to help improve risk understanding and verify the efficacy of remediation/mitigative actions. Participate in performing physical exploitation, network exploitation and social engineering assessments against authorized targets. Use CyberThreat Intelligence, Offensive Security Research, previous Adversary Simulation (Red Team) findings and internal risk intelligence to develop test cases demonstrating TTP effectiveness against Experian's control environment. Research and stay up to date with the latest cyber threats, attack vectors and attacker methodologies. Develop scripts, tools and methodologies to increase Offensive Security's capabilities and educate other team members around automation and AI. Use MITRE ATT&CK Framework and other structured attack analysis tools to describe and classify attacker methodology and significance. About Experian Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realize their financial goals and help them save time and money. We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at Experience and Skills What your core background is Background in offensive security and adversary simulation. Detailed knowledge of global cyber threats and the procedures used by cyber adversaries. Network penetration testing and manipulation of network infrastructure. Web application penetration testing assessments. Email, phone, or physical social-engineering assessments. Development, extension, or modifying of exploits, shecode or exploit tools. Covert physical intrusion. Cloud security or penetration testing (any major provider). AI Red Teaming/Testing and usage of Agentic AI for automation. Industry certifications such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, or GXPN or equivalent experience. Specialist skills Proficient in attacker tooling, including post-exploitation frameworks and tooling. Proficient in any of following programming languages (C, C++, C#, Python, PowerShell, Bash, or Ruby) Proficient in Social Engineering techniques across OSINT, phishing, vishing and impersonation. Knowledge of current cloud attack methodologies and mitigations. Experience of Windows Operating System architecture and internals and use thereof in an enterprise environment. Core Information Technology concepts such as TCP/IP networking, Windows & Active Directory, Unix/Linux, Mainframe, Cloud Service Providers, Relational Databases, Data Warehouses, and filesystems Knowledge of IT technologies and methods to secure them i.e. databases, SharePoint, storage area networks and cloud-based storage. Benefits package includes Great compensation package and discretionary bonus plan Core benefits include pension, bupa healthcare, sharesave scheme and more 25 days annual leave with 8 bank holidays and 3 volunteering days. You can purchase additional annual leave. Experian is proud to be an Equal Opportunity and affirmative action employer. Innovation is an important part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity. Experian Careers - Creating a better tomorrow together
Jan 15, 2026
Full time
Experian's Offensive Security team charges itself with improving the organisation's security posture through clarifying risk and verifying the efficacy of our technical, people, physical and process controls from an attacker perspective. The team perform regular Adversary Simulation (Red Team) testing and a range of Ad-Hoc and Tactical Assessments based on changes to the threat landscape and organisational needs. To succeed in this role, you have breadth and depth of knowledge in security. This knowledge will include operating systems, networking and protocols, firewalls, databases, and middleware applications. Additionally, you will have expertise in forensics, scripting and programming, vulnerabilities, and the usage of GenAI / social engineering techniques. This is a fully remote, UK-based position reporting to the Head of Offensive Security. Responsibilities Collaborate with other teams within the Cyber Fusion Centre and the wider organisation. This ensures that we understand and articulate Cyber Risks in a threat-informed manner. The ultimate goal is to contribute to the successful defense of the organisation. Support Offensive Security's engagement at multiple organizational levels, from senior leaders to technical analysts to help improve risk understanding and verify the efficacy of remediation/mitigative actions. Participate in performing physical exploitation, network exploitation and social engineering assessments against authorized targets. Use CyberThreat Intelligence, Offensive Security Research, previous Adversary Simulation (Red Team) findings and internal risk intelligence to develop test cases demonstrating TTP effectiveness against Experian's control environment. Research and stay up to date with the latest cyber threats, attack vectors and attacker methodologies. Develop scripts, tools and methodologies to increase Offensive Security's capabilities and educate other team members around automation and AI. Use MITRE ATT&CK Framework and other structured attack analysis tools to describe and classify attacker methodology and significance. About Experian Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realize their financial goals and help them save time and money. We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at Experience and Skills What your core background is Background in offensive security and adversary simulation. Detailed knowledge of global cyber threats and the procedures used by cyber adversaries. Network penetration testing and manipulation of network infrastructure. Web application penetration testing assessments. Email, phone, or physical social-engineering assessments. Development, extension, or modifying of exploits, shecode or exploit tools. Covert physical intrusion. Cloud security or penetration testing (any major provider). AI Red Teaming/Testing and usage of Agentic AI for automation. Industry certifications such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, or GXPN or equivalent experience. Specialist skills Proficient in attacker tooling, including post-exploitation frameworks and tooling. Proficient in any of following programming languages (C, C++, C#, Python, PowerShell, Bash, or Ruby) Proficient in Social Engineering techniques across OSINT, phishing, vishing and impersonation. Knowledge of current cloud attack methodologies and mitigations. Experience of Windows Operating System architecture and internals and use thereof in an enterprise environment. Core Information Technology concepts such as TCP/IP networking, Windows & Active Directory, Unix/Linux, Mainframe, Cloud Service Providers, Relational Databases, Data Warehouses, and filesystems Knowledge of IT technologies and methods to secure them i.e. databases, SharePoint, storage area networks and cloud-based storage. Benefits package includes Great compensation package and discretionary bonus plan Core benefits include pension, bupa healthcare, sharesave scheme and more 25 days annual leave with 8 bank holidays and 3 volunteering days. You can purchase additional annual leave. Experian is proud to be an Equal Opportunity and affirmative action employer. Innovation is an important part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity. Experian Careers - Creating a better tomorrow together
Senior Backend Engineer £70K - £85K UK - Fully Remote Excited by the challenge of working at a fast-growing cybersecurity startup? We're looking for a Senior Backend Engineer to join a high-impact team building the core systems behind an offensive security platform used by some of the world's largest enterprises click apply for full job details
Jan 14, 2026
Full time
Senior Backend Engineer £70K - £85K UK - Fully Remote Excited by the challenge of working at a fast-growing cybersecurity startup? We're looking for a Senior Backend Engineer to join a high-impact team building the core systems behind an offensive security platform used by some of the world's largest enterprises click apply for full job details
SENIOR OFFENSIVE SECURITY ENGINEERS - LONDON (REMOTE) £60k-£80k Fully Remote (UK-based) Cybersecurity Scale-Up A fast-growing cybersecurity company is seekingSenior Offensive Security Engineers to strengthen their offensive security capabilities. The Role: Conduct comprehensive penetration testing across web applications, infrastructure, APIs, and cloud environments Perform manual security assessmen click apply for full job details
Jan 14, 2026
Full time
SENIOR OFFENSIVE SECURITY ENGINEERS - LONDON (REMOTE) £60k-£80k Fully Remote (UK-based) Cybersecurity Scale-Up A fast-growing cybersecurity company is seekingSenior Offensive Security Engineers to strengthen their offensive security capabilities. The Role: Conduct comprehensive penetration testing across web applications, infrastructure, APIs, and cloud environments Perform manual security assessmen click apply for full job details
Select how often (in days) to receive an alert: Location: UK - Mobile England Job-ID: 215877 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests: Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis: Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication: Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current: Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing: Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Cloud security (Entra ID/Azure) IoT physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us Computacenter is a leading independent provider of IT infrastructure services, with about 20,000 employees worldwide. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
Jan 11, 2026
Full time
Select how often (in days) to receive an alert: Location: UK - Mobile England Job-ID: 215877 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests: Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis: Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication: Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current: Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing: Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Cloud security (Entra ID/Azure) IoT physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us Computacenter is a leading independent provider of IT infrastructure services, with about 20,000 employees worldwide. We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers' infrastructures. We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance. Interested in joining a company with a strong sense of community? We're growing. We're hiring. We encourage. We empower. We support.
SENIOR OFFENSIVE SECURITY ENGINEERS - LONDON (REMOTE) £60k-£80k Fully Remote (UK-based) Cybersecurity Scale-Up A fast-growing cybersecurity company is seeking Senior Offensive Security Engineers to strengthen their offensive security capabilities. The Role: Conduct comprehensive penetration testing across web applications, infrastructure, APIs, and cloud environments Perform manual security assessments and exploitation Deliver client-facing penetration testing engagements Write detailed technical reports for various stakeholders Collaborate with internal teams on security improvements Essential Requirements: UK Bachelor's degree in Computer Science, Cybersecurity or related subject (or UK Master's as alternative) 3-5 years commercial penetration testing experience Strong understanding of offensive security techniques, OWASP Top 10, MITRE ATT&CK Deep knowledge of operating systems, networking protocols, and system architecture Experience with penetration testing tools (Burp Suite, Metasploit, custom scripts) Excellent communication and report writing skills Desirable: OSCP, CREST certifications Bug bounty participation Red team experience Cloud security testing (AWS, Azure, GCP) Active involvement in security community (CTFs, conferences, research) Company Culture: Technical excellence and deep fundamentals valued over credentials Graduate-focused environment Continuous learning and passion for technology expected Looking for candidates who demonstrate genuine interest in offensive security Location: Fully remote within UK, optional hybrid working from London office
Jan 09, 2026
Full time
SENIOR OFFENSIVE SECURITY ENGINEERS - LONDON (REMOTE) £60k-£80k Fully Remote (UK-based) Cybersecurity Scale-Up A fast-growing cybersecurity company is seeking Senior Offensive Security Engineers to strengthen their offensive security capabilities. The Role: Conduct comprehensive penetration testing across web applications, infrastructure, APIs, and cloud environments Perform manual security assessments and exploitation Deliver client-facing penetration testing engagements Write detailed technical reports for various stakeholders Collaborate with internal teams on security improvements Essential Requirements: UK Bachelor's degree in Computer Science, Cybersecurity or related subject (or UK Master's as alternative) 3-5 years commercial penetration testing experience Strong understanding of offensive security techniques, OWASP Top 10, MITRE ATT&CK Deep knowledge of operating systems, networking protocols, and system architecture Experience with penetration testing tools (Burp Suite, Metasploit, custom scripts) Excellent communication and report writing skills Desirable: OSCP, CREST certifications Bug bounty participation Red team experience Cloud security testing (AWS, Azure, GCP) Active involvement in security community (CTFs, conferences, research) Company Culture: Technical excellence and deep fundamentals valued over credentials Graduate-focused environment Continuous learning and passion for technology expected Looking for candidates who demonstrate genuine interest in offensive security Location: Fully remote within UK, optional hybrid working from London office
