Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct hands-on penetration testing to identify risks in critical applications and platforms.
- Company: Join a leading firm focused on enhancing cybersecurity and resilience.
- Benefits: Competitive salary, health benefits, and opportunities for professional growth.
- Why this job: Make a real impact by protecting vital systems and learning from industry experts.
- Qualifications: 3+ years of penetration testing experience and strong cybersecurity knowledge.
- Other info: Collaborative environment with a focus on continuous improvement and innovation.
The predicted salary is between 48000 - 72000 £ per year.
As an Assessments & Exercises Senior Associate in the Penetration Testing team, you will contribute significantly to enhancing the firm's cybersecurity or resiliency posture by using industry-standard assessment methodologies and techniques to proactively identify risks and vulnerabilities in people, processes, and technology.
Your primary responsibility will be performing hands-on penetration testing of some of JPMC's most critical applications, platforms, and the perimeter. You will work with application developers to understand root causes and mitigate vulnerabilities, as well as identify where vulnerabilities can be detected earlier in the SDLC.
Successful candidates are expected to demonstrate an eagerness to learn, the drive to excel, excellent technical knowledge of security concepts, and proven expertise in penetration testing.
Job responsibilities:- Design and execute testing and simulations - such as penetration tests and contribute to the development and refinement of assessment methodologies, tools, and frameworks to ensure alignment with the firm's strategy and compliance with regulatory requirements.
- Evaluate controls for effectiveness and impact on operational risk, as well as opportunities to automate control evaluation.
- Collaborate closely with cross-functional teams to develop comprehensive assessment reports - including detailed findings, risk assessments, and remediation recommendations - making data-driven decisions that encourage continuous improvement.
- Utilize threat intelligence and security research to stay informed about emerging threats, vulnerabilities, industry best practices, and regulations. Apply this knowledge to enhance the firm's assessment strategy and risk management.
- Engage with peers and industry groups that share threat intelligence analytics.
- 3+ years of experience in conducting manual penetration tests against a wide variety of applications and technologies including web, mobile and thick clients, internal and external facing infrastructures and cloud.
- Foundational knowledge of cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering and threats and vulnerabilities, including incident response methodologies.
- Ability to identify systemic security or resiliency issues as they relate to threats, vulnerabilities, or risks, with a focus on recommendations for enhancements or remediation, and proficiency in multiple security assessment methodologies (e.g., OWASP Top Ten, NIST Cybersecurity Framework), offensive testing tools, or resiliency testing equivalents.
- Excellent communication, collaboration, and report writing skills, with the ability to influence and engage stakeholders across various functions and levels.
- Experience in testing Public cloud environments like AWS, Azure and GCP with proficiency in at least one platform.
- Experience in reverse engineering standalone, thick client and mobile applications.
- Proficiency in security concepts for both Windows and Unix-like Operating Systems.
- Experience in source code review and/or building software with multiple programming languages (i.e. Python, Java, Rust, etc.).
- Certifications like CREST (CRT, CCT), OSCP, OSCE, GXPN, GRE.
Senior Penetration Tester in London employer: JP Morgan
Contact Detail:
JP Morgan Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Penetration Tester in London
✨Tip Number 1
Network, network, network! Get out there and connect with professionals in the cybersecurity field. Attend meetups, webinars, or conferences where you can chat with others who share your passion for penetration testing. You never know who might have a lead on your next job!
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your penetration testing projects, including any simulations or assessments you've conducted. This will not only demonstrate your expertise but also give potential employers a taste of what you can bring to their team.
✨Tip Number 3
Don’t just apply for jobs; engage with the companies you’re interested in. Follow them on social media, comment on their posts, and participate in discussions. This shows your enthusiasm and can help you stand out from the crowd when it comes to interviews.
✨Tip Number 4
Finally, make sure to apply through our website! We’ve got loads of opportunities waiting for talented individuals like you. Plus, it’s a great way to ensure your application gets the attention it deserves. Let’s get you that dream job in penetration testing!
We think you need these skills to ace Senior Penetration Tester in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Senior Penetration Tester role. Highlight your experience with manual penetration tests and any relevant certifications. We want to see how your skills align with our needs!
Showcase Your Projects: Include specific examples of projects where you've identified vulnerabilities or improved security measures. This gives us a clear picture of your hands-on experience and problem-solving abilities.
Craft a Compelling Cover Letter: Your cover letter should reflect your passion for cybersecurity and your eagerness to learn. Share why you’re excited about this role at StudySmarter and how you can contribute to our team.
Apply Through Our Website: Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. We can’t wait to hear from you!
How to prepare for a job interview at JP Morgan
✨Know Your Stuff
Make sure you brush up on your technical knowledge, especially around penetration testing methodologies like OWASP and NIST. Be ready to discuss your hands-on experience with various applications and technologies, as well as any specific tools you've used in your previous roles.
✨Show Your Problem-Solving Skills
Prepare to share examples of how you've identified vulnerabilities and provided remediation recommendations in past projects. Think about specific instances where your insights led to significant improvements in security posture or risk management.
✨Communicate Clearly
Since you'll be collaborating with cross-functional teams, practice explaining complex security concepts in simple terms. Be ready to discuss how you would present your findings and recommendations in a comprehensive assessment report.
✨Stay Updated on Trends
Familiarise yourself with the latest threats and vulnerabilities in the cybersecurity landscape. Being able to discuss recent incidents or emerging trends will show your eagerness to learn and stay informed, which is crucial for this role.
