Be at the heart of actionFly remote-controlled drones into enemy territory to gather vital information.

Apply Now

Penetration Tester

lloyds banking group
Manchester
6 days ago
Create job alert
Job details

End Date: Friday 26 September 2025

Salary Range: £47,790 - £53,100

Flexible Working Options: Hybrid Working, Job Share

We support flexible working

We support flexible working options. Details available from the employer.

Job Description

Job Title: Penetration Tester

Location: Leeds, Bristol, Manchester or Edinburgh

Hours: Full-time

Working Pattern: Our work style is hybrid, which involves spending at least two days per week currently, or 40% of our time, at one of our office locations.

About this opportunity

The Chief Security Office (CSO) plays a vital role in delivering Lloyds Banking Group's vision of putting customers at the heart of everything we do, helping Britain prosper, and protecting the Group and its customers and suppliers from security threats.

Key Responsibilities
  • Plan, execute and report on penetration testing engagements against Web, API, Mobile or infrastructure assets
  • Perform manual exploitation and post-exploitation activities
  • Document and review findings from testing engagements to ensure accuracy and quality
  • Design and implement repeatable detection mechanisms to identify recurring weaknesses at scale
Why Lloyds Banking Group

We’re on an exciting journey to transform our Group and the way we’re shaping finance for good. We’re focusing on the future, investing in our technologies, workplaces, and colleagues to make our Group a great place for everyone. Including you.

What you’ll need
  • Significant experience as a penetration tester
  • Strong experience in any three of the following areas - Web, API, Mobile, Infra and Cloud testing (incl. cloud native technologies), AI testing
  • Relevant security testing certifications such as CREST (CRT, CCT), OSCP, OSCE, GPEN, GXPN
  • Demonstratable knowledge of the common vulnerabilities (incl. OWASP Top 10)
  • Strong analytical thinking, effective communication skills, and the ability to engage confidently with technical and non-technical customers
  • A collaborative demeanour with a passion to mentor others and contribute to a culture of continuous improvement
Any experience of these would be really useful
  • Experience testing applications hosted in cloud native and containerised environments
  • Experience working with and testing against AI/LLM models
  • Strong understanding of security testing practices and capabilities (VM, SAST/DAST, SCA etc.)
  • Any relevant cloud related or other cyber security certifications
  • Experience operating in a large and complex enterprise environment
  • Experience in developing software and/or reviewing source code in various programming languages
About working for us

Our ambition is to be the leading UK business for diversity, equity and inclusion supporting our customers, colleagues and communities and we’re committed to creating an environment in which everyone can thrive, learn and develop.

We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer Initiative.

We offer reasonable workplace adjustments for colleagues with disabilities, including flexibility in office attendance, location and working patterns. And, as a Disability Confident Leader, we guarantee interviews for a fair and proportionate number of applicants who meet the minimum criteria for the role with a disability, long-term health or neurodivergent condition through the Disability Confident Scheme.

We provide reasonable adjustments throughout the recruitment process to reduce or remove barriers. Just let us know what you need.

Benefits
  • A generous pension contribution of up to 15%
  • An annual performance-related bonus
  • Share schemes including free shares
  • Benefits you can adapt to your lifestyle, such as discounted shopping
  • 28 days’ holiday, with bank holidays on top
  • A range of wellbeing initiatives and generous parental leave policies

Want to do amazing work, that’s interesting and makes a difference to millions of people? Join our journey.

At Lloyds Banking Group, we’re driven by a clear purpose; to help Britain prosper. Across the Group, our colleagues are focused on making a difference to customers, businesses and communities. With us you’ll have a key role to play in shaping the financial services of the future, whilst the scale and reach of our Group means you’ll have many opportunities to learn, grow and develop.

We keep your data safe. We’ll only ever ask you to provide confidential or sensitive information once you have formally been invited along to an interview or accepted a verbal offer to join us which is when we run our background checks. We’ll always explain what we need and why, with any request coming from a trusted Lloyds Banking Group person.

We’re focused on creating a values-led culture and are committed to building a workforce which reflects the diversity of the customers and communities we serve. Together we’re building a truly inclusive workplace where all of our colleagues have the opportunity to make a real difference.


#J-18808-Ljbffr

Related Jobs

View all jobs

Penetration Tester

Penetration Tester

Penetration Tester

Penetration Tester

Penetration Tester

Penetration Tester

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Cyber Security Recruitment Trends 2025 (UK): What Job Seekers Must Know About Today’s Hiring Process

Summary: UK cyber security hiring has shifted from title‑led CV screens to capability‑driven assessments that emphasise incident readiness, cloud & identity security, detection engineering, governance/risk/compliance (GRC), measurable MTTR/coverage gains & secure‑by‑default engineering. This guide explains what’s changed, what to expect in interviews, & how to prepare—especially for SOC analysts, detection engineers, blue/purple teamers, penetration testers, cloud security engineers, DFIR, AppSec, GRC & security architecture. Who this is for: SOC & detection engineers, security operations leads, DFIR analysts, penetration testers/red teamers, purple teamers, AppSec/DevSecOps engineers, security architects, cloud security engineers, identity/IAM engineers, vulnerability managers, GRC/compliance specialists, product security & security programme managers targeting roles in the UK.

Why Cyber Security Careers in the UK Are Becoming More Multidisciplinary

Cyber security used to be viewed primarily as a technical discipline: firewalls, encryption, intrusion detection, penetration testing. In the UK today, it’s far broader. Organisations now face complex legal frameworks, ethical dilemmas, human-behaviour risks, communication challenges & usability hurdles. This shift means cyber security careers are becoming more multidisciplinary. From protecting NHS patient records to defending financial services, securing supply chains & safeguarding national infrastructure, cyber security now touches every sector. Employers increasingly want professionals who understand law, ethics, psychology, linguistics & design alongside traditional technical skills. In this article, we’ll explore why UK cyber security careers are expanding in this way, how these five disciplines shape the profession, and what job-seekers & employers need to know to thrive in this new landscape.

Cyber Security Team Structures Explained: Who Does What in a Modern Cyber Security Department

Cyber security has become a top priority for UK organisations of all sizes. From small businesses to financial institutions, healthcare providers, and government bodies, the risk of cyber attack is now a constant concern. Threats are more sophisticated, regulations more demanding, and customers more aware of data privacy than ever before. But defending against cyber threats isn’t simply about having the right tools — it’s about having the right team. A modern cyber security department relies on clearly defined roles and responsibilities to ensure that defences are proactive, incidents are managed swiftly, and compliance is maintained. This article explains the structure of a modern cyber security team, the roles you’ll typically find within it, how they collaborate, and what skills, qualifications, and salaries are expected in the UK job market.