Description
JOB TITLE: Senior Penetration Tester
SALARY: £70,929 - £78,810
LOCATION(S): Leeds, Bristol, Manchester or Edinburgh
HOURS: Full-time
WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week currently, or 40% of our time, at one of our office locations.
About this opportunity
The Chief Security Office (CSO) plays a vital role in delivering Lloyds Banking Group's vision of putting customers at the heart of everything we do, helping Britain prosper, and protecting the Group and its customers and suppliers from security threats.
Key Responsibilities
1. Plan, execute and report on complex penetration testing engagements against Web, API, Mobile, infrastructure and cloud assets
2. Design and implement repeatable and efficient testing mechanisms to identify weaknesses at scale
3. Review and QA findings from testing engagements to ensure accuracy and quality
4. Define appropriate scope, methodology and mechanism for security testing of the group's assets, including regulatory testing
5. Stay up to date on active and emerging threats faced by the UK financial service sector
6. Champion team development by mentoring and coaching junior team members
Why Lloyds Banking Group
We’re on an exciting journey to transform our Group and the way we’re shaping finance for good. We’re focusing on the future, investing in our technologies, workplaces, and colleagues to make our Group a great place for everyone. Including you.
What you’ll need
7. Extensive experience as a penetration tester including experience in a lead role
8. Be a subject matter expert in at least 2 of the following domains: Web, API, Mobile, Infra and Cloud testing
9. Relevant security testing certifications such as CREST (CRT, CCT), OSCP, OSCE, GPEN, GXPN
10. Demonstrable knowledge of the common vulnerabilities (OWASP) and attacker TTPs (MITRE ATT&CK)
11. Strong analytical thinking, effective communication skills, and the ability to engage confidently with senior stakeholders
12. A collaborative demeanour with a passion to mentor others and contribute to a culture of continuous improvement
13. Experience operating in a large and complex enterprise environment
Any experience of these would be really useful
14. Experience testing applications hosted in cloud native environments and containerised solutions
15. Experience working with and testing against AI/LLM models
16. Strong understanding of DevOps testing principles and different testing capabilities (SAST/DAST, SCA etc.)
17. Any relevant cloud or cyber security certifications (CCSP, CISM, CISSP etc.)
18. Experience in developing software and/or reviewing source code in various programming languages
19. Experience in threat modelling and red/purple team exercises
About working for us
Our ambition is to be the leading UK business for diversity, equity and inclusion supporting our customers, colleagues and communities and we’re committed to creating an environment in which everyone can thrive, learn and develop.
We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer Initiative.
We offer reasonable workplace adjustments for colleagues with disabilities, including flexibility in office attendance, location and working patterns. And, as a Disability Confident Leader, we guarantee interviews for a fair and proportionate number of applicants who meet the minimum criteria for the role with a disability, long-term health or neurodivergent condition through the Disability Confident Scheme.
We provide reasonable adjustments throughout the recruitment process to reduce or remove barriers. Just let us know what you need.
We also offer a wide-ranging benefits package, which includes
20. A generous pension contribution of up to 15%
21. An annual performance-related bonus
22. Share schemes including free shares.
23. Benefits you can adapt to your lifestyle, such as discounted shopping.
24. 30 days’ holiday, with bank holidays on top
25. A range of wellbeing initiatives and generous parental leave policies
Want to do amazing work, that’s interesting and makes a difference to millions of people? Join our journey.
At Lloyds Banking Group, we're driven by a clear purpose; to help Britain prosper. Across the Group, our colleagues are focused on making a difference to customers, businesses and communities. With us you'll have a key role to play in shaping the financial services of the future, whilst the scale and reach of our Group means you'll have many opportunities to learn, grow and develop.
We keep your data safe. So, we'll only ever ask you to provide confidential or sensitive information once you have formally been invited along to an interview or accepted a verbal offer to join us which is when we run our background checks. We'll always explain what we need and why, with any request coming from a trusted Lloyds Banking Group person.
We're focused on creating a values-led culture and are committed to building a workforce which reflects the diversity of the customers and communities we serve. Together we’re building a truly inclusive workplace where all of our colleagues have the opportunity to make a real difference.