Senior Penetration Tester

2 weeks ago

Hampshire South East Southampton, Hampshire, United Kingdom H M Revenue & Customs Full time

Security Testing Consultant

Hybrid Working from one of our Regional Centres

Active SC Clearance required and you must have related Industry accreditations such as CREST, Offensive Security, SANS/GIAC or equivalent recognised qualifications with relevant IT Security experience.


The Team

HMRC Security are part of HMRCs Chief Digital Information office (CDIO) and support HMRC to assess business and reputational risks in one of the largest IT estates in Europe.

Cyber Security Technical Services (CSTS) and the Government Security Centre for Cyber (Cyber GSEC) are integral part of HMRC Security. We are responsible for ensuring everyone has capability to fulfil their security responsibilities and develop individual capability to detect, prevent and respond to security risks and threats.

Our vision is to be a recognised Centre of Excellence, delivering a holistic, customer-centric set of technical services to HMRC and wider HMG. We continually adapt and evolve our services to emerging technologies and the ever-changing threat and risk landscape to meet HMRC/HMG business needs.

This is an exciting time to be part of our active and encouraging cyber security community, within HMRC and across HMG.

The Role

As a Senior Cyber Security Professional working within Security Testing, you will play a leading role in providing security testing, vulnerability assessment and continual security compliance capabilities in order to secure HMRCs services and to ensure the best possible technical security risk-based advice is given to our customers.

As part of the role you will lead packages of work and contribute to wider CSTS services as required.

You will work collaboratively with key business & technical stakeholders, to deliver appropriate security testing risk based technical security advice and guidance, to enable the secure delivery of HMRC solutions and services.

This is an exciting time to join us and the chance to work on services that matter and affect the lives of millions of citizens.

Responsibilities can include:

This consultant will be able to perform non-CHECK penetration testing, but with relevant and equivalent experience and qualifications

Contribute to the development of Security Principles, Policies and Technical Standards

Engage with HMRC project teams as required to identify, estimate, and complete agreed security testing activities.

Support internal testing, to build team capabilities, and establish testing methodologies for varying test types

Creation of required process, playbooks and document sets to support Security Testing capability

For each test, the testers will produce a formal technical proposal and report utilising HMRC standard templates

Provide testing guidance and advice to projects

Review scopes and where CHECK testing required manage engagement with 3rd party pen testers

Create scope/proposals/reports for internal testing work

Aid with the development of Security Testing Strategy and production of outputs

Help develop Secure by design framework for security testing, documenting testing approaches against control sets

Scope, conduct and support security assessments, pen testing and other non-functional security testing, appropriately recording and sharing any findings.

Provide Vulnerability management and continual security compliance expertise across on premise and cloud-based solutions.

Work collaboratively with project managers and programme leads to provide subject matter expertise on a range of security testing requirements

Act as escalation point to deal with security testing related incidents

Lead assessments of threats and vulnerabilities determine deviations from acceptable/defined baselines.

Communicate threat, vulnerabilities, and risk information to stakeholders in a clear and concise manner.

Assist in the development and delivery of Security testing documentation sets.

Research and assess new threats and security/vulnerability alerts, and recommend remedial actions

Essential Criteria

At application and interview, you must demonstrate intensive experience of:

  • Understanding and experience of how technical security is applied in real life environments, technical security controls, threats, and vulnerabilities (incl. threat vectors) and current IT and security best practice approaches.
  • Passion for security testing and continual development within this area.
  • Related Industry accreditations such as CREST, Offensive Security, SANS/GIAC or equivalent recognised qualifications with relevant IT Security experience.
  • Experience at managing and/or conducting a wide range of testing in different environments with different complexity.
  • Using vulnerability management/scanning tooling, compiling reports, and conducting regular scanning and assessment activities.
  • Building relationships with stakeholders, using strong communication skills to communicate effectively at all levels to technical and non-technical audiences.
  • Internal team engagement, working collaboratively, sharing knowledge, advising, and training colleagues.

Please ensure your CV clearly demonstrates how you meet this essential criteria

Desirable Qualifications

Ideally you will also have knowledge, understanding and/or experience of:

  • Detailed understanding of penetration testing tools and techniques.
  • Compiling Security testing reports, with the ability to work with stakeholders to determine real impact and probability of exploits being successful.
  • Developing and delivering change and successful delivery of technical security aspects of projects.
  • IT infrastructure (hardware, databases, operating systems, local area networks etc.) and application architectures.


Please note that SC Clearance is required for this position.

  • Penetration Tester

    2 weeks ago

    Cheshire East, United Kingdom Tomgandhi Consulting Ltd Full time

    Job Title: Penetration TesterLocation: Radbroke, UKWorkplace Type: HybridEmployment Type: ContractJob Description::The ideal candidate has extensive and in-depth understanding of secure software development life cycle in a continuous integration and deployment environment. Key project deliverables include:Assessing and scoping application security...

  • Penetration Tester

    2 weeks ago

    Cheshire East, United Kingdom Tomgandhi Consulting Ltd Full time

    Job Title: Penetration TesterLocation: Radbroke, UKWorkplace Type: HybridEmployment Type: ContractJob Description::The ideal candidate has extensive and in-depth understanding of secure software development life cycle in a continuous integration and deployment environment. Key project deliverables include:Assessing and scoping application security...

  • Penetration Tester

    2 weeks ago

    Cheshire East, United Kingdom Tomgandhi Consulting Ltd Full time

    Job Title: Penetration TesterLocation: Radbroke, UKWorkplace Type: HybridEmployment Type: ContractJob Description::The ideal candidate has extensive and in-depth understanding of secure software development life cycle in a continuous integration and deployment environment. Key project deliverables include:Assessing and scoping application security...

  • Penetration Tester

    2 weeks ago

    Cheshire East, Cheshire, United Kingdom Tomgandhi Consulting Ltd Full time

    Job Title: Penetration Tester Location: Radbroke, UK Workplace Type: Hybrid Employment Type: Contract Job Description:: The ideal candidate has extensive and in-depth understanding of secure software development life cycle in a continuous integration and deployment environment. Key project deliverables include: Assessing and scoping application...

  • Senior Automation Tester

    4 weeks ago

    South West, United Kingdom People Source Consulting Full time

    Job Title: Senior Automation TesterJob Description:We are seeking a skilled Senior Automation Tester to join our team at People Source Consulting. As a Senior Automation Tester, you will be responsible for creating and implementing automation frameworks from scratch, creating testing strategies and plans, and championing quality within the team. You will...

  • Penetration Tester

    4 weeks ago

    South East, London, United Kingdom Sky Full time

    We believe in better. And we make it happen. Better content. Better products. And better careers. Working in Tech, Product or Data at Sky is about building the next and the new. From broadband to broadcast, streaming to mobile,SkyQto Sky Glass, we never stand still. We optimise and innovate. We turn big ideas into the products, content and services millions...

  • Senior Information Security Specialist

    3 weeks ago

    North East, United Kingdom CyberNorth Full time

    Job Summary:The Senior Penetration Tester will lead and execute comprehensive penetration testing activities across various digital platforms and environments, including web applications, APIs, mobile applications, network infrastructure, and cloud platforms (AWS and Azure).Key Responsibilities:Conduct penetration tests on web applications, APIs, and mobile...

  • Junior Penetration Tester

    2 weeks ago

    Cheshire East, Cheshire, United Kingdom Tomgandhi Consulting Ltd Full time

    Workplace Type: Hybrid Employment Type: Contract The ideal candidate has extensive and in-depth understanding of secure software development life cycle in a continuous integration and deployment environment. Key project deliverables include: Identifying technology and control risks Conducting Web/API/Mobile/Thick client/Network penetration...

  • Senior C#.NET Automation Tester

    2 weeks ago

    South West, United Kingdom Experis Full time

    Role: Remote Senior Automation Tester | 12 months | C#, .NET, Selenium, Gherkin, Nunit, Visual Studio, CI/CD, Azure, SQL, Playwright, TypescriptRate: £450 - £570p/d DOELocation: RemoteDuration: 12 months rollingStart date: ASAP - 1 monthIR35: Inside IR35Client: Public SectorExperis are working with a Public Sector organisation looking for a Senior...

  • Security Testing Coordinator

    6 months ago

    East of England, United Kingdom La Fosse Associates Full time

    **Location**: - East of England - **Disciplines**: - Information Security Technology - **Job types**: - Contract Inside IR35 - **Industry**: - IT Services - **Salary**: £650 - £750 per day **Functions**: - QA Tester Security Analyst Security Compliance Test Analyst Test Manager - **Seniority**: - Mid-level - **Job...

  • Senior Cyber Security Engineer

    4 weeks ago

    Southampton, United Kingdom GCS Full time

    My client is a leading UK-based consulting and administration business and their Cyber Security division is growing and are seeking an experienced and dynamic Senior Cyber Security Engineer to join their team.This role is ideal for someone with experience in web application security, web application firewalls, vulnerability management, and penetration...

  • Senior Software Test Engineer

    2 weeks ago

    Basingstoke, Hampshire, United Kingdom Spectrum IT Recruitment Full time

    We are seeking a talented Senior Software Tester to join an award-winning company providing clean water distribution across the globe. As the Senior Test Engineer you will be actively involved in all testing aspects of the Software Development Life Cycle, working alongside 3 software testers and a talented software team. Through modern technology, R&D and...

  • Senior Software Test Engineer

    2 weeks ago

    Basingstoke, Hampshire, United Kingdom Spectrum IT Recruitment Full time

    We are seeking a talented Senior Software Tester to join an award-winning company providing clean water distribution across the globe. As the Senior Test Engineer you will be actively involved in all testing aspects of the Software Development Life Cycle, working alongside 3 software testers and a talented software team. Through modern technology, R&D and...

  • Senior C# Developer Lead

    1 week ago

    East Liverpool, Ohio, United Kingdom Ascend Consulting Full time

    Unlock Your Potential as a Senior C# Developer LeadA great opportunity has arisen for an experienced Senior Developer to play a key role in our dynamic and growing Financial Services team at Ascend Consulting. The successful candidate will be supporting new business initiatives, leading and mentoring developers, testers, and other members of the information...

  • Senior Automotive Mechanic

    3 days ago

    South East England, United Kingdom Octane Recruitment Full time €42,000 - €60,000

    Hours: Monday - Friday, 8:00 - 5:30, Saturdays on Rota This role suits a Vehicle Technician looking for a long-term role. Fantastic benefits package that includes: Competitive starting salary. Company pension scheme. Progression Opportunities. Vehicle servicing & general maintenance. Brakes, suspension, clutches. Minimum 2 years' experience...

  • Senior Software Quality Assurance Engineer

    2 weeks ago

    South West, United Kingdom Experis Full time

    Job Title: Senior Automation TesterJob Summary:Experis is working with a Public Sector organisation looking for a Senior Automation Tester with Active SC Clearance, or willing to undergo it. The ideal candidate will have experience setting up test automation frameworks from scratch using C#, working on legacy systems, and upgrading testing within a project....

  • Vehicle Technician

    1 month ago

    Hampshire, United Kingdom Mechanics For Us Ltd Full time

    An opportunity to join a thriving independent garage in Winchester as a Vehicle Technician or a MOT Tester / Vehicle Technician. Salary GBP32,000 to GBP38,000 PLUS a reliable bonus circa GBP5,000 21 days leave + bank holidays + Xmas shut-down Extensive benefits package Training including MOT Tester and Electric Vehicles Free PPE, Parking and Tool Insurance...

  • Developer / Software Developer / Junior Software Developer (Permanent)

    4 weeks ago

    Fareham, Hampshire, United Kingdom Spectrum IT Recruitment Full time €30,000

    Are you a recent IT/Software graduate looking to kickstart your career in development and testing? If you’re eager to work with Java and modern technologies while learning hands-on, this is the role for you! As a Junior Developer/Tester, you'll support both development and quality assurance efforts. You'll help ensure our client's business systems, built...

  • Developer / Software Developer / Junior Software Developer (Permanent)

    4 weeks ago

    Fareham, Hampshire, United Kingdom Spectrum IT Recruitment Full time €30,000

    Are you a recent IT/Software graduate looking to kickstart your career in development and testing? If you’re eager to work with Java and modern technologies while learning hands-on, this is the role for you! As a Junior Developer/Tester, you'll support both development and quality assurance efforts. You'll help ensure our client's business systems, built...

  • Vehicle Mechanic

    2 weeks ago

    South East England, United Kingdom Octane Recruitment Full time €33,000

    Vehicle Technician / MOT Tester Hours: full Time This role suits a Vehicle Technician looking for a long-term role. 32 days annual holiday (includes 8 bank holiday days). * Discounted servicing & parts across the Group. * Annual staff social events. * Vehicle servicing & general maintenance. * Brakes, suspension, clutches. Minimum 2 years...