CrawlJobs Logo
Barclays Logo Barclays · IT - Software Development

Penetration Tester

United States, Whippany Employment contract 125000.00 - 170000.00 USD / Year · Job Posted June 08, 2026
Apply Position
Job Link Share

Job Description

Embark on a transformative journey as a Penetration Tester - AVP. At Barclays, our vision is clear –to redefine the future of banking and help craft innovative solutions. Penetration Testing team provide a core cyber assurance service. Services are provided via a global internal team and preferred suppliers. We provide Security Assurance capabilities which are aligned to the 'lifecycle' of a service or application. In this role, you will play a critical role in the delivery of security assurance across annual lifecycle testing and change/project engagements. This will be across a range of different technologies (e.g. web application, API, infrastructure, virtualization/containers, mobile, cloud, AI). In addition to BAU pen testing, there will be close collaboration with teams such as vulnerability management, application security, and CTEM to ensure proactive security.

Job Responsibility

  • Development and execution of assessments, audits, and threat models to identify vulnerabilities within the banks systems, applications and servers using penetration tools and techniques, and communicate key findings and recommendations to stakeholders
  • Collaboration with stakeholders and IT teams to identify emerging cyber-attack techniques, tools and technologies and to support the development of penetration testing methodologies
  • Development and maintenance of comprehensive documents and reports for senior stakeholders on penetration test findings, and remediation guidance
  • Collaboration with stakeholders to understand their security requirements and controls in business processes, application/services, to enhance overall security posture and assurance
  • Identification of emerging vulnerabilities, exploit codes and cyber-attacks to develop testing methodologies and assurance activities

Requirements

  • Practical experience for delivery experience in penetration testing or related fields
  • Proficiency in Penetration testing in following technical domains, Web based Applications, Network/Infrastructure, APIs, Mobile Apps, Thick clients, MCPs/AI Agents/LLMs, Cloud environments
  • Understanding of the security mechanisms associated with Applications, Operating Systems, Networks, Databases, Virtualization, Cloud technologies, AI
  • Familiarity with cloud-native environments, container security, and infrastructure-as-code
  • Excellent communication and collaboration skills

Nice to have

  • CREST/OSCP/SANS or equivalent pen testing certifications
  • Red/Purple team experience
  • Considerable understanding of attack paths and adversary emulation
  • Enterprise vulnerability management experience (vulnerability research, scanning, operational process)
  • Wider SDL activities such as threat/attack modelling and design review
  • Familiarity and experience with key industry frameworks such as OWASP, MITRE ATT&CK/CTID, CISA Secure-by-Design, NIST CSF 2.0/CRI Profile, DORA/FFIEC

What we offer

  • medical, dental and vision coverage
  • 401(k)
  • life insurance
  • other paid leave for qualifying circumstances
  • incentive award
  • competitive holiday allowance
  • private medical care
  • pension contribution
Barclays - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Penetration Tester

8 matching positions

Penetration Tester

Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to work independently and manage multiple projects within remote environment
  • Demonstrates a strong ability to engage with various stakeholders, have a team-based approach and work towards share goals and outcomes
  • Ability to think outside the box and a passion to improve your skills and drive innovation
  • Ability to compromise systems and demonstrate ways to laterally move post compromise
  • In-depth knowledge of common security assessment methodologies, such as OWASP, PTES, or NIST SP 800-115
  • Strong understanding of various operating systems, network protocols, and application security
  • Proficiency in using penetration testing tools and frameworks, such as Metasploit, Burp Suite, Nmap, and Wireshark
  • Knowledge of security assessment tools and technologies used to evaluate web applications, databases, and network infrastructure
  • Excellent analytical and problem-solving skills to identify and exploit vulnerabilities effectively
  • Strong written and verbal communication skills to deliver clear and concise reports and recommendations to stakeholders
Job Responsibility
Job Responsibility
  • Plans, executes and manages complex penetration testing engagements on various IT assets, including networks, applications and databases
  • Conducts simulated cyber-attacks, including social engineering, to identify vulnerabilities and assesses the organization's resilience to cyber threats
  • Performs penetration tests against internal and external facing systems
  • Analyses and interprets penetration test results and provides detailed reports to relevant stakeholders
  • Provides input to improve the quality and effectiveness of tests in a highly scaled and global environment
  • Articulates complex technical risks through creation of reports and delivering presentations to key stakeholders
  • Works with Security DevOps teams to test the orchestration and automation processes and platforms, feed results into a testing program
  • Supports the assessment risk and the development and/or recommends appropriate mitigation countermeasures based on empirical testing
  • Provides comprehensive technical expertise with web, application and database vulnerability testing
  • Supports the development of the security automation framework and the implementation roadmap
  • Fulltime
Read More
Arrow Right

Penetration Tester

We’re Fever, the world’s leading tech platform for culture and live entertainmen...
Location
Location
Argentina
Salary
Salary:
Not provided
https://feverup.com/fe Logo
Fever
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master’s Degree in Computer Science, Information Security, or another similar relevant degree (or equivalent experience in a Cybersecurity role)
  • 4+ years of hands-on experience in the Offensive Security area, such as penetration testing
  • Strong knowledge about cloud security environments (AWS, microservices, SaaS applications, cryptography, etc)
  • Detailed knowledge of global cyber threats, including tactics, techniques, and procedures used by cyber adversaries
  • Solid understanding of hardware, web, network protocols, APIs, security issues, common attacks (OWASP Top 10), etc
  • Experience in developing security tooling and automation
  • Professional proficiency in English
  • Analytical skills, autonomy, and accountability
  • Good communication skills
Job Responsibility
Job Responsibility
  • Conducting high-quality application and infrastructure penetration tests independently, or as part of a team
  • Perform technical reviews and assessments of new systems and features
  • Document and communicate findings, including identified vulnerabilities, exploitation techniques, and recommended remediation steps in clear and concise reports
  • Coordinate and monitor the remediation of penetration testing findings
  • Effectively communicate findings at both the technical and executive levels
  • Configure and safely use hacking tools, tactics, and procedures against authorized targets
  • Contributing to team tooling, innovation, and improvements
What we offer
What we offer
  • Attractive compensation package consisting of base salary and the potential to earn a significant bonus for top performance
  • Stock options
  • Opportunity to have a real impact in a high-growth global category leader
  • 40% discount on all Fever events and experiences
  • Osde 410 as medical insurance
  • Home office friendly
  • Responsibility from day one, and professional and personal growth
  • Great work environment with a young, international team of talented people to work with
  • English Lessons
  • Gympass
  • Fulltime
Read More
Arrow Right

Penetration Tester

We are looking for an experienced Penetration Tester to join our team. This role...
Location
Location
United States , Charleston
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 3–5 years of hands-on experience in penetration testing across various platforms and systems
  • Strong understanding of network security principles, application security, and common attack methods
  • Proficiency with tools like Burp Suite, Nmap, Metasploit, and other standard penetration testing frameworks
  • Expertise in Active Directory assessments and internal environment security
  • Solid knowledge of authentication protocols, encryption practices, and secure software development
  • Familiarity with CI/CD processes and integrating security measures into development workflows
  • Excellent communication skills, with the ability to present findings effectively to diverse audiences
  • Commitment to staying informed about the latest cybersecurity trends and technologies
Job Responsibility
Job Responsibility
  • Conduct comprehensive penetration tests on internal networks, external systems, web applications, mobile platforms, and APIs
  • Identify and analyze security vulnerabilities, providing actionable recommendations to mitigate risks
  • Utilize industry-standard tools such as Burp Suite, Nmap, Metasploit, and MobSF to perform assessments
  • Perform in-depth evaluations of Active Directory structures, including privilege escalation and lateral movement strategies
  • Assess authentication mechanisms and encryption methods to ensure secure coding practices are in place
  • Collaborate with development teams to integrate security testing tools into CI/CD pipelines
  • Prepare detailed reports on findings, presenting technical information to both technical and non-technical stakeholders
  • Stay updated on emerging attack vectors and security techniques to enhance testing methodologies
  • Assist in developing strategies to improve overall security frameworks and protocols
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • company 401(k) plan
Read More
Arrow Right

Penetration Tester

Do you want to help secure some of Microsoft’s most critical and high‑impact onl...
Location
Location
United States , Redmond
Salary
Salary:
84200.00 - 165200.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field OR equivalent experience.
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 2+ years’ experience in security or related field OR equivalent experience.
  • Experience with one or more of the following is a plus: Penetration testing
  • Vulnerability research
  • Scripting/automation
  • Threat Hunting
  • Detection Engineering
Job Responsibility
Job Responsibility
  • Identify security vulnerabilities and variants across critical cloud services.
  • Perform source code reviews, dynamic analysis, and operational security assessments.
  • Validate software quality and adherence to security development practices.
  • Work with engineering and defense teams to improve detection, response, and operational awareness.
  • Contribute to static and runtime analysis capabilities to detect software security issues.
  • Help design automated analysis workflows for managed code and modern web services.
  • Explore and prototype automation that improves consistency, speed, and depth of security assessments.
  • Stay current on offensive security tactics, penetration testing tools, and defensive techniques.
  • Conduct research that supports training and awareness for internal engineering teams.
  • Support innovation efforts across MSC Security, including tooling, methodology improvements, and knowledge sharing.
  • Fulltime
Read More
Arrow Right

Penetration Tester

If you are looking for a permanent role as a pen tester, we are looking for a Pe...
Location
Location
United Kingdom , Cardiff
Salary
Salary:
Not provided
admiralgroup.co.uk Logo
Admiral Group Plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Vulnerability writing skills
  • Familiarity with ‘standard’ penetration testing tools
  • Experience in penetration testing of Applications and Infrastructure
  • Familiarity with at least one cloud platform such as Microsoft Azure, Amazon AWS or Google GCP
  • Familiarity with testing AI and LLM solutions
  • Understanding of the Cyber Kill Chain, MITRE ATT&CK and other information security defence and intelligence frameworks
  • Programming or scripting skills in at least one modern computer language
  • Experience with BurpSuite, Kali and similar common manual penetration testing tools
Job Responsibility
Job Responsibility
  • Carry out detailed application, infrastructure, cloud and AI/LLM penetration test assignments either alone or in a small team
  • Produce high quality written findings
  • Work collaboratively with the wider Cyber Risk and Resilience teams
  • Assist with post incident reviews when required
What we offer
What we offer
  • Generous training budget
  • Up to £3,600 of free shares each year after one year of service
  • 33 days holiday (including bank holidays) when they join us, increasing the longer you stay with us, up to a maximum of 38 days (including bank holidays)
  • Option to buy or sell up to an additional five days of annual leave
  • Financial & Mortgage Advice
  • 24-Hour Ecare
  • Cycle to Work Scheme
  • Annual Holiday Allowance
  • Flexible Working
  • Simply Health
  • Fulltime
Read More
Arrow Right

Penetration Tester

The Penetration Tester role at NTT DATA involves assessing the security of infor...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent in Information Technology or Computer Science or related field
  • Security related certifications such as OSWE, OSEP, OSCP, OSCE, CRTP, GPEN, or CREST is desirable
  • Seasoned demonstrated penetration testing experience and ethical hacking gained within a similar global environment
  • Seasoned demonstrated experience with both commercial and open-source security tools and scripting languages
  • Seasoned demonstrated exposure to security testing scenarios e.g. Capture the Flag / Red Team / Blue Team is desirable
  • Seasoned demonstrated experience with various testing platforms e.g. Hack the Box / Vulnhub / PentesterLab is desirable
  • Ability to work independently and manage multiple projects within remote environment
  • Demonstrates a strong ability to engage with various stakeholders, have a team-based approach and work towards share goals and outcomes
  • Ability to think outside the box and a passion to improve your skills and drive innovation
  • Ability to compromise systems and demonstrate ways to laterally move post compromise
Job Responsibility
Job Responsibility
  • Plans, executes and manages complex penetration testing engagements on various IT assets, including networks, applications and databases
  • Conducts simulated cyber-attacks, including social engineering, to identify vulnerabilities and assesses the organization's resilience to cyber threats
  • Performs penetration tests against internal and external facing systems
  • Analyses and interprets penetration test results and provides detailed reports to relevant stakeholders
  • Provides input to improve the quality and effectiveness of tests in a highly scaled and global environment
  • Articulates complex technical risks through creation of reports and delivering presentations to key stakeholders
  • Works with Security DevOps teams to test the orchestration and automation processes and platforms, feed results into a testing program
  • Supports the assessment risk and the development and/or recommends appropriate mitigation countermeasures based on empirical testing
  • Provides comprehensive technical expertise with web, application and database vulnerability testing
  • Supports the development of the security automation framework and the implementation roadmap
What we offer
What we offer
  • Workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive
  • Fulltime
Read More
Arrow Right

Penetration tester

As a penetration tester on the Global Services team at Rapid7, you will help our...
Location
Location
United Kingdom
Salary
Salary:
Not provided
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in an active technical security role
  • Strong knowledge of Advanced Social engineering techniques and tactics
  • Strong knowledge of Infrastructure management and deployment (domain records, web servers, terraform, ansible, phishing website creation)
  • Strong knowledge of Modern penetration testing tools and methods
  • Strong knowledge of Network, wireless and web application security concepts
  • Experience using interpreted languages (Ruby, Python, PHP, etc.)
  • Knowledge of common regulatory structures and obligations and common I.T. governance
  • Bug Bounty experience, identifying novel vulnerabilities in arbitrary internet-facing attack surfaces
  • Certifications such as OSCP, OSCE, GXPN, OSEE, CREST
  • Experience with Red & Purple Teams
Job Responsibility
Job Responsibility
  • Deliver Rapid7’s Vector Command Continuous Red Teaming service
  • Design social engineering campaigns which function at scale, supporting numerous customers each month, emulating modern adversary TTPs
  • Deploy, configure, and maintain social engineering infrastructure to perform phishing operations at scale
  • Perform manual and automated reconnaissance at scale to identify targets for social engineering operations each month
  • Leverage external network vulnerabilities reported by Vector Command team members in targeted real-world social engineering attacks
  • Research the latest techniques in social engineering and implement them in monthly campaigns
  • Research and test methods to bypass social engineering defenses such as email filters, download restrictions, multi-factor authentication mechanisms, etc
  • Be an expert in sending phishing emails which make it to the client’s inbox
  • Design and execute vishing campaigns
  • Incorporate payloads provided by the Red Team lead into phishing and vishing operations
Read More
Arrow Right

Penetration Tester

We're looking for a Penetration Tester who lives to break things, ethically. You...
Location
Location
Sweden , Stockholm
Salary
Salary:
Not provided
lovable.dev Logo
Lovable
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of hands-on penetration testing experience across web, mobile, APIs, and cloud infrastructure
  • Deep expertise in offensive security techniques: OWASP, MITRE ATT&CK, exploit development, privilege escalation, and lateral movement
  • Experience attacking AI-native products or LLM-integrated systems, including prompt injection, model abuse, and data exfiltration vectors
  • Strong understanding of cloud environments (GCP, AWS, Cloudflare) and the attack surfaces they introduce
  • Ability to translate complex findings into clear, prioritised reports that engineering teams can act on immediately
  • Low ego, high output. You collaborate as naturally as you compete against systems
Job Responsibility
Job Responsibility
  • Own offensive security end-to-end: plan and execute penetration tests across Lovable's web platform, mobile surface, APIs, cloud infrastructure, and AI pipelines
  • Break our AI before others do: probe LLM integrations for prompt injection, jailbreaks, data leakage, and novel attack vectors unique to AI-generated code running in live products
  • Stress-test user-generated code at scale: identify systemic vulnerabilities introduced when millions of users create and deploy real applications on Lovable
  • Turn findings into action: work directly with engineering to prioritise, remediate, and verify fixes, closing the loop between discovery and resolution
  • Raise the security bar org-wide: run internal red team exercises, contribute to threat modelling, and embed an attacker's mindset across the engineering culture
  • Help make Lovable the most secure AI product in the market
  • Fulltime
Read More
Arrow Right