Base pay range
LOCATION(S): Leeds, Bristol, Manchester or Edinburgh
HOURS: Full-time
WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week currently, or 40% of our time, at one of our office locations.
About this opportunity
The Chief Security Office (CSO) plays a vital role in delivering Lloyds Banking Group's vision of putting customers at the heart of everything we do, helping Britain prosper, and protecting the Group and its customers and suppliers from security threats.
Key Responsibilities
* Plan, execute and report on penetration testing engagements against Web, API, Mobile or infrastructure assets
* Perform manual exploitation and post-exploitation activities
* Document and review findings from testing engagements to ensure accuracy and quality
* Design and implement repeatable detection mechanisms to identify recurring weaknesses at scale
Why Lloyds Banking Group
We\'re on an exciting journey to transform our Group and the way we\'re shaping finance for good. We\'re focusing on the future, investing in our technologies, workplaces, and colleagues to make our Group a great place for everyone. Including you.
What you\'ll need
* Significant experience as a penetration tester
* Strong experience in any three of the following areas - Web, API, Mobile, Infra and Cloud testing (incl. cloud native technologies), AI testing
* Relevant security testing certifications such as CREST (CRT, CCT), OSCP, OSCE, GPEN, GXPN
* Demonstrable knowledge of the common vulnerabilities (incl. OWASP Top 10)
* Strong analytical thinking, effective communication skills, and the ability to engage confidently with technical and non-technical customers
* A collaborative demeanour with a passion to mentor others and contribute to a culture of continuous improvement
Any experience of these would be really useful
* Experience testing applications hosted in cloud native and containerised environments
* Experience working with and testing against AI/LLM models
* Strong understanding of security testing practices and capabilities (VM, SAST/DAST, SCA etc.)
* Any relevant cloud related or other cyber security certifications
* Experience operating in a large and complex enterprise environment
* Experience in developing software and/or reviewing source code in various programming languages
About working for us
Our ambition is to be the leading UK business for diversity, equity and inclusion supporting our customers, colleagues and communities and we\'re committed to creating an environment in which everyone can thrive, learn and develop.
We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer Initiative.
We offer reasonable workplace adjustments for colleagues with disabilities, including flexibility in office attendance, location and working patterns. And, as a Disability Confident Leader, we guarantee interviews for a fair and proportionate number of applicants who meet the minimum criteria for the role with a disability, long-term health or neurodivergent condition through the Disability Confident Scheme.
We provide reasonable adjustments throughout the recruitment process to reduce or remove barriers. Just let us know what you need.
We also offer a wide-ranging benefits package, which includes
* A generous pension contribution of up to 15%
* An annual performance-related bonus
* Share schemes including free shares.
* Benefits you can adapt to your lifestyle, such as discounted shopping.
* 28 days\' holiday, with bank holidays on top
* A range of wellbeing initiatives and generous parental leave policies
Want to do amazing work, that\'s interesting and makes a difference to millions of people? Join our journey.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Data Security Software Products, Desktop Computing Software Products, and Embedded Software Products
Edinburgh, Scotland, United Kingdom
#J-18808-Ljbffr