Penetration Tester at Engine by Starling | Southampton

Starling BankSouthampton, England, United Kingdom

Hybrid Full-time

Clicking Apply Now takes you to AutoApply where you can tailor your resume and apply.

Experience Level

Experience

Qualifications

To be successful in this role, you should possess:Proven experience in penetration testing with a strong understanding of Cloud and Application Security. A collaborative spirit and willingness to work alongside various teams to address security challenges. Experience in developing and implementing security testing frameworks. Ability to communicate complex security concepts clearly to technical and non-technical stakeholders. Strong analytical and problem-solving skills. Continuous learning mindset to stay abreast of emerging threats and technologies.

About the job

Join us at Engine by Starling, where we are dedicated to partnering with forward-thinking banks globally to create fast-growing businesses using our cutting-edge technology.

As a subsidiary of Starling Bank, Engine is our software-as-a-service (SaaS) division, designed to deliver the powerful technology that fueled Starling Bank's exceptional growth. A year ago, we transitioned into an independent entity.

Starling Bank's remarkable success can be attributed to our innovative technology, developed from the ground up. This SaaS platform is now accessible to banks and financial institutions worldwide, empowering them with the advanced digital features and streamlined back-office operations that have driven our accomplishments.

At Engine, we cultivate a culture of collaboration and hands-on involvement to achieve outstanding results for our clients. We are an engineering-focused organization, and we seek a passionate individual eager to harness Engine’s technology to revolutionize banking across diverse markets.

Hybrid Work Environment

Our hybrid work model encourages employees to be within a commutable distance from one of our offices, facilitating in-person collaboration and engagement.

Role Overview

We are in search of a skilled Penetration Tester who can effectively connect technical exploitation with real-world business risks. This role extends beyond executing scans and delivering reports; it requires a deep understanding of our systems and services to identify potential vulnerabilities.

As a member of the Information Security team, you will collaborate closely with Infrastructure Engineers, Software Developers, and all aspects of the Information Security division. Your goal will be to move beyond merely identifying 'bugs' and assist teams in constructing inherently resilient systems.

As an early member of our internal penetration testing capability, you'll not only follow existing protocols but also contribute to their development. Key responsibilities include:

Collaborating with team members to design a continuous testing framework that adapts with our technology stack.
Sharing insights with the broader technical team to enhance our overall security posture.

We recognize the importance of staying updated with the latest knowledge and expertise, and you will play a vital role in advancing our penetration testing efforts through research, design, and the implementation of innovative solutions, including automation.

About Starling Bank

Engine by Starling is committed to transforming the banking landscape through innovative technology solutions. As a fast-growing SaaS provider, we empower banks and financial institutions worldwide to leverage our state-of-the-art platform for enhanced operational efficiency and customer experience.

Similar jobs

Browse all companies, explore by city & role, or SEO search pages. View directory listings: all jobs, search results, location & role pages.

1 - 20 of 2,683 Jobs

Search for Application Security Penetration Tester Consultant

2,683 results

Select all on this page (20)

Apply

Application Security Penetration Tester Consultant

Coalfire

Full-time|On-site|United Kingdom

Join Coalfire as a Consultant specializing in Application Security Penetration Testing. In this critical role, you will be responsible for identifying vulnerabilities and providing actionable insights to enhance the security posture of our clients’ applications. You will collaborate with a talented team of security experts to develop and implement testing me…

Jan 9, 2026

Apply

IT/OT Penetration Tester

PA Consulting Group

Full-time|On-site|London

Join PA Consulting Group as an IT/OT Penetration Tester, where you will play a vital role in safeguarding our clients' critical infrastructure. You will work on innovative strategies to identify vulnerabilities in operational technology systems and develop comprehensive security solutions.

Feb 6, 2026

Apply

Senior Penetration Tester

Starling Bank

Full-time|Hybrid|Southampton, England, United Kingdom

At Starling Bank, the UK's pioneering digital bank, we are on a mission to revolutionize banking! Our innovative approach leverages technology to empower individuals in managing their finances seamlessly. Discover more about Our Story.As a fully licensed UK bank, we embody the dynamic spirit of a tech company, offering a fairer, more user-friendly banking experience designed to demystify financial management for everyone. With over 3,000 employees spread across our offices in London, Southampton, Cardiff, and Manchester, we prioritize a culture of innovation and collaboration.Our technology team is at the core of Starling, working in an agile environment that encourages creativity and the development of cutting-edge fintech solutions. We maintain a flat organizational structure, empowering you to make impactful decisions. In our open culture, support is always available from your team and across the organization—together, we thrive!To succeed at Starling, you must be proactive and take ownership of your work. This includes building solutions, sharing insights, and ensuring efficient processes to deliver outstanding results for our customers. Our mission is grounded in five core values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness.Hybrid WorkingWe embrace a hybrid working model at Starling, with a preference for employees to be within a commutable distance from our offices to facilitate in-person collaboration.About the RoleIn your role as a Senior Penetration Tester, you will collaborate with a team of skilled cybersecurity professionals to safeguard Starling's customers and assets using the latest technologies and methodologies.Your primary goal will be to partner with our engineering and operations teams to ensure that our services are designed, developed, and maintained securely. As a seasoned member of the penetration testing team, you will engage with various business sectors to understand requirements, establish testing scopes, conduct necessary research, and generate reports aligned with our risk framework.Recognizing the importance of staying current, you will support the ongoing improvement of our penetration testing practices through research, design, and the implementation of new automated solutions.

Feb 2, 2026

Apply

Penetration Tester at Sophos | United Kingdom

Sophos Ltd.

Full-time|On-site|United Kingdom

Sophos Ltd. is seeking a Penetration Tester to join its Cyber Security team in the United Kingdom. This position focuses on strengthening internal security by identifying and testing vulnerabilities across Sophos applications and infrastructure. The role involves close collaboration with other teams to ensure that assessment results translate into practical security improvements. What you will do Conduct penetration tests on Sophos applications and infrastructure to uncover vulnerabilities Work with colleagues to address findings and implement enhanced security measures Participate in all stages of the penetration testing process, from initial scoping through to detailed reporting Monitor and research current attack techniques and threat trends Apply new insights to help strengthen Sophos’s overall security posture Requirements Practical experience working in a Red Team environment Knowledge of each phase of penetration testing Strong motivation, attention to detail, and creative problem-solving skills Dedication to keeping up with emerging threats and testing techniques Location This role is based in the United Kingdom.

Apr 27, 2026

Apply

Penetration Tester at 3facesrecruitmentlimited | Malvern

3facesrecruitmentlimited

Full-time|£0/yr - £70K/yr|On-site|Malvern

Join a leading global organization specializing in expert advice, innovative technology, and service solutions primarily within the defense, security, and aerospace sectors. Our client leverages cutting-edge scientific knowledge and specialized facilities to deliver tailored products and services that cater to a diverse array of international clients.Salary: Up to £70,000 (based on experience)Location: MalvernEligibility: You must be eligible for UK SC clearance and possess a valid UK driving license.Duties & Responsibilities:Engage with a variety of clients, participating in all project phases from scoping and solutions design to testing.Conduct a wide range of tasks, including application and infrastructure testing, Red Teaming, and enhancing cyber resilience.Travel frequently to client sites, and communicate effectively at both management and technical levels.

Apr 16, 2019

Apply

Penetration Tester at Engine by Starling | Southampton

Starling Bank

Full-time|Hybrid|Southampton, England, United Kingdom

Join us at Engine by Starling, where we are dedicated to partnering with forward-thinking banks globally to create fast-growing businesses using our cutting-edge technology.As a subsidiary of Starling Bank, Engine is our software-as-a-service (SaaS) division, designed to deliver the powerful technology that fueled Starling Bank's exceptional growth. A year ago, we transitioned into an independent entity.Starling Bank's remarkable success can be attributed to our innovative technology, developed from the ground up. This SaaS platform is now accessible to banks and financial institutions worldwide, empowering them with the advanced digital features and streamlined back-office operations that have driven our accomplishments.At Engine, we cultivate a culture of collaboration and hands-on involvement to achieve outstanding results for our clients. We are an engineering-focused organization, and we seek a passionate individual eager to harness Engine’s technology to revolutionize banking across diverse markets.Hybrid Work EnvironmentOur hybrid work model encourages employees to be within a commutable distance from one of our offices, facilitating in-person collaboration and engagement.Role OverviewWe are in search of a skilled Penetration Tester who can effectively connect technical exploitation with real-world business risks. This role extends beyond executing scans and delivering reports; it requires a deep understanding of our systems and services to identify potential vulnerabilities.As a member of the Information Security team, you will collaborate closely with Infrastructure Engineers, Software Developers, and all aspects of the Information Security division. Your goal will be to move beyond merely identifying 'bugs' and assist teams in constructing inherently resilient systems.As an early member of our internal penetration testing capability, you'll not only follow existing protocols but also contribute to their development. Key responsibilities include:Collaborating with team members to design a continuous testing framework that adapts with our technology stack.Sharing insights with the broader technical team to enhance our overall security posture.We recognize the importance of staying updated with the latest knowledge and expertise, and you will play a vital role in advancing our penetration testing efforts through research, design, and the implementation of innovative solutions, including automation.

Feb 2, 2026

Apply

Application Security Specialist

hellokindred

Contract|On-site|Knutsford

Join our dynamic team at hellokindred as an Application Security Specialist. In this role, you will leverage your expertise to safeguard applications and protect sensitive data through rigorous security assessments and proactive threat modeling. Collaborate with cross-functional teams to implement best practices and ensure compliance with industry standards.

Mar 13, 2026

Apply

Application Security Engineer

Shawbrook

Full-time|On-site|Glasgow / Manchester or London

Join our dynamic team at Shawbrook as an Application Security Engineer. In this pivotal role, you will be responsible for safeguarding our applications by implementing robust security measures throughout the software development lifecycle. Your expertise will help identify vulnerabilities and enhance our overall security posture, ensuring our systems remain resilient against evolving threats.

Feb 17, 2026

Apply

Application Security Manager

Unily

Full-time|On-site|Lower Eashing, United Kingdom

Job PurposeAs Unily continues to strengthen its position in the rapidly evolving Employee Experience platform market, we are seeking an experienced Application Security Manager. This pivotal role will be responsible for designing and implementing a robust application security program that seamlessly integrates strategic management with practical technical execution. The Application Security Manager will ensure that security practices are ingrained throughout the software development lifecycle (SDLC), allowing Unily to deliver secure products efficiently.The Application Security Manager will establish and enforce secure development policies, advocate for privacy by design principles, and manage the risk and escalation process. Additionally, the role will involve active participation in technical assurance activities, including threat modeling, application testing, dependency analysis, cloud and container security assessments, and CI/CD pipeline hardening.This role serves as both a strategic partner to leadership and a trusted advisor to engineering teams, acting as a key point of contact for clients when necessary.

Mar 15, 2026

Apply

Lead Application Security Specialist

Prolific

Full-time|Remote|Remote, UK

Prolific seeks a Lead Application Security Specialist to strengthen the security of its applications and systems. This is a fully remote role open to candidates based in the UK. Key responsibilities Manage and mentor a team dedicated to application and system security. Detect vulnerabilities and implement solutions to address them. Maintain compliance with industry security standards. Role impact This position directly shapes the security practices behind Prolific’s products and services. The Lead Application Security Specialist plays a central part in managing risk and supporting the organization’s reputation for trustworthiness.

Apr 27, 2026

Apply

Application Security Engineer

Palantir Technologies

Full-time|On-site|London, United Kingdom

Join Palantir, a pioneering force in data-driven software solutions, as a Senior Application Security Engineer. Our mission is to empower organizations to make critical decisions that save lives, enhance security, and drive innovation. As part of our esteemed Product Security team, you will collaborate closely with cross-functional teams to implement secure-by-design principles across our product offerings. Your expertise will be crucial in conducting comprehensive security reviews, threat modeling, and guiding the architectural design to ensure robust security measures are integrated from the ground up. You will lead strategic security initiatives that enhance our entire product suite and help identify and mitigate potential vulnerabilities through advanced analysis techniques. This is an opportunity to make a significant impact in a company dedicated to transforming the world through technology.

Jun 25, 2018

Apply

Mobile Application Quality Assurance Tester

Procom Services

Contract|On-site|Falmouth

Join our dynamic team at Procom Services as a Mobile Application Quality Assurance Tester! In this role, you will be responsible for ensuring the highest quality standards for our mobile applications. Your keen attention to detail and analytical skills will help identify bugs and improve the user experience. This is an excellent opportunity for those looking to kickstart their career in technology.

Oct 1, 2014

Apply

Application Security Engineer

ElevenLabs

Full-time|On-site|United Kingdom

About ElevenLabsElevenLabs is at the forefront of AI innovation, dedicated to redefining human interaction with technology.Founded in January 2023, we introduced the first human-like AI voice model and have rapidly grown to serve millions of users and numerous organizations, including major enterprises like Deutsche Telekom and Meta. Backed by distinguished investors such as Andreessen Horowitz, ICONIQ Growth, and Sequoia, we have successfully raised $781 million in funding, achieving a valuation of $11 billion.Our expansion has led to three primary platforms:ElevenAgents provides businesses with the tools to create seamless and intelligent customer experiences, offering the necessary integration, testing, monitoring, and reliability for large-scale voice and chat agent deployment.ElevenCreative empowers creators and marketers to produce and edit audio, music, images, and videos in over 70 languages.ElevenAPI offers developers access to our advanced AI audio foundational models.Our achievements are driven by the creativity and dedication of our team - a diverse group of researchers, engineers, and operators, including IOI medalists and former founders. If you're passionate about making a significant impact and are ready to work hard, we want to connect with you.How We OperateAgile Environment: We prioritize rapid experimentation, lean teams, and minimal bureaucracy.Impact Matters: We focus on the contributions you make rather than job titles; no task is too small or too large.AI-Driven: Our use of AI enhances speed and quality across all departments, from engineering to operations.Commitment to Excellence: Every output must reflect the high standards of our AI models.Global Talent: We value your skills over your geographic location.What We ProvideDynamic Culture: Join us in a generational opportunity to shape the future of AI, collaborating with a team that is continually pushing boundaries.Opportunities for Growth: Be part of a vibrant team with endless chances to make an impact beyond your immediate role.Professional Development: We are committed to your continuous learning and growth.

Feb 4, 2026

Apply

Application Security Engineer

ion

Full-time|On-site|London

Join our dynamic team at ion as an Application Security Engineer, where you will play a crucial role in safeguarding our applications and data. You will collaborate with development teams to identify vulnerabilities and implement security best practices, ensuring that our software is resilient against threats.Your expertise will help us create secure coding standards and guidelines, conduct security assessments, and perform code reviews. You will be at the forefront of enhancing our security posture and contributing to the overall success of our projects.

Apr 1, 2026

Apply

Senior Applications Consultant

Sword Group

Full-time|On-site|Bellshill, Scotland, United Kingdom

Sword Group is at the forefront of delivering innovative business technology solutions across the Energy, Public, and Finance sectors, facilitating transformative changes for our clients. We leverage cutting-edge technology, specialized teams, and extensive domain knowledge to establish robust technical infrastructures spanning platforms, data, and business applications. Our commitment to harnessing technology to address business challenges drives us to partner with clients in achieving their objectives.About the Role:We are on the lookout for a skilled Senior Applications Consultant to offer expert guidance and hands-on support in the exploration, design, execution, and enhancement of critical IT applications within the Energy sector. This role involves collaborating closely with our clients to comprehend their operational requirements and delivering customized solutions that significantly improve performance and reliability.Key Responsibilities:Evaluate applications architecture, formulate strategy, and develop a comprehensive roadmapDesign an application landscape and establish a transitional roadmapIdentify essential applications and prioritize them accordinglyAssist in system implementation, configuration, and integration projectsProvide technical insights to ensure adherence to security and operational standardsFacilitate training and knowledge transfer to client teamsEngage in continuous improvement initiatives and the development of best practices

Jan 13, 2026

Apply

Senior Application Security Engineer at Prolific | Remote, UK

Prolific

Full-time|Remote|Remote, UK

Prolific seeks a Senior Application Security Engineer to help protect its applications and user data. This position is fully remote within the UK. Key responsibilities Evaluate application security and spot potential risks Collaborate with engineering and product teams to design secure software architectures Improve security practices throughout the development lifecycle Support efforts to safeguard user data and maintain trust in the Prolific platform Role focus This role centers on working closely with technical teams to build security into every stage of software development. The Senior Application Security Engineer will play a part in shaping secure solutions and reinforcing Prolific’s commitment to protecting its users. Location This is a remote role open to candidates based in the UK.

Apr 27, 2026

Apply

Staff Application Security Engineer

Ivanti

Full-time|Remote|EMEA; Italy, Remote; Netherlands, Remote; Poland, Remote; Scotland, Remote; United Kingdom, Remote

Are you a seasoned Staff Application Security Engineer eager to implement innovative security solutions and uphold technical excellence? At Ivanti, you will be instrumental in shaping the future of secure digital workplaces by designing and enhancing top-tier products utilized globally. Join our vibrant, collaborative team and make a significant impact—helping organizations securely navigate the fast-paced digital landscape. Your expertise will protect countless users while fostering innovation at every level. Why This Role Matters As a Staff Application Security Engineer at Ivanti, your role is vital in protecting our products and users from emerging threats. Your contributions will ensure trust and resilience in our technology, enabling organizations around the world to operate securely and innovate with confidence. What You’ll Do: Oversee the integration of security best practices across all stages of the software development lifecycle, guaranteeing robust protection for Ivanti's products, services, and IT assets. Develop innovative and scalable security tools, processes, and solutions to proactively identify, remediate, and mitigate vulnerabilities in extensive and complex codebases. Design secure architectures, conduct thorough threat modeling, and lead penetration testing and code reviews for both web and mobile applications to uphold the highest security standards. Collaborate with development, operations, and architecture teams to deeply embed security into DevOps practices and promote a culture of continuous security awareness throughout the organization. Lead security education initiatives by providing clear, actionable training and documentation to cross-functional teams, driving vulnerability remediation efforts with stakeholders of varying technical expertise. Work with global product and engineering teams, business leaders, and third-party security vendors to interpret vulnerability reports and coordinate effective security solutions and disclosure programs. Advise stakeholders on prioritizing vulnerabilities, enforcing secure coding standards, applying cryptographic techniques, and adopting industry-leading security protocols and compliance practices.

Apr 10, 2026

Apply

Senior Cyber Security Consultant

dev2

Full-time|On-site|Wales

Join our dynamic team at dev2 as a Senior Cyber Security Consultant. In this pivotal role, you will enhance our cybersecurity strategies and risk management practices. You will work closely with clients to assess their security needs and implement robust solutions to protect their digital assets. If you are passionate about cybersecurity and have a proven track record in this field, we want to hear from you!

Jan 22, 2023

Apply

Security Consultant

Version 1

Full-time|On-site|London, Birmingham, Manchester, Newcastle upon Tyne, Edinburgh, Belfast

Role overview Version 1 is looking for a Security Consultant to help clients strengthen their security across digital, data, and cloud projects. This full-time position focuses on assessing risks, shaping effective security strategies, and putting practical measures in place to protect important data and systems. What you will do Review client environments to find security risks and vulnerabilities Create and recommend security strategies that fit each client's needs Implement solutions to protect data, applications, and infrastructure Collaborate with teams in Digital, Data, and Cloud to build strong security practices into projects Locations This Security Consultant position is available in London, Birmingham, Manchester, Newcastle upon Tyne, Edinburgh, and Belfast.

Apr 28, 2026

Apply

Principal Solutions Engineer - Application Security

Wiz Inc.

Full-time|Remote|Remote - United Kingdom

Wiz Inc. works at the center of cloud security, helping organizations protect their cloud environments and support business growth. The company’s platform scans and secures over 230 billion files every day, serving a global customer base that includes more than half of the Fortune 100. Wiz’s team brings together professionals from over 20 countries, collaborating to safeguard the infrastructure of some of the world’s largest companies. Security teams worldwide rely on Wiz’s expertise and solutions. Role overview The Principal Solutions Engineer - Application Security will play a key part in supporting Wiz’s customers as they secure their cloud applications. This role offers the chance to work with a diverse team and contribute to the protection of critical cloud infrastructure. What makes Wiz unique Trusted by security teams at leading global companies Handles security for a significant share of the Fortune 100 Processes and protects massive volumes of data daily Encourages creative approaches and values each team member’s expertise More information about Wiz’s growth can be found here.

Apr 30, 2026

Create account — see all 2,683 results

Browse all companies, explore by city & role, or SEO search pages. View directory listings: all jobs, search results, or location & role pages.