Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Allwyn UK

Security Tester

Allwyn UK

Hands-on Security Tester delivering security testing for web applications, APIs, and infrastructure. Supporting findings validation and remediation for Allwyn UK, a national lottery operator.

Posted 5/20/2026full-timeWatford • 🇬🇧 United KingdomMid-LevelSeniorWebsite

Tech Stack

Tools & technologies
AWSAzureCloud

About the role

Key responsibilities & impact
  • Deliver security testing across web applications, REST APIs, backend services, cloud-hosted workloads, internal infrastructure and network-facing services.
  • Support testing of AWS and Azure environments, including common configuration weaknesses, access-control issues, exposed services and baseline cloud security concerns.
  • Carry out testing across network and infrastructure layers, including host, service and exposure weaknesses where they affect enterprise risk.
  • Support application-focused testing across web applications, APIs and backend services, including common issues around authentication, authorisation, input validation, session handling and data exposure.
  • Use common security testing and validation tools to support manual testing, verification and basic assessment activity.
  • Investigate reported vulnerability findings where testing support is needed, help validate whether an issue is genuine, support teams with remediation advice, and retest fixes to confirm they are effective.
  • Support security incidents where testing input is required, including helping assess technical impact, validate weaknesses and support follow-up testing.
  • Produce clear, practical findings and support teams with remediation guidance that can be acted on.
  • Support retesting, evidence collection, findings validation and tracking so that issues can be properly closed out.

Requirements

What you’ll need
  • Hands-on experience in security testing across a mix of application, cloud, infrastructure or network environments.
  • Working knowledge of web application testing, API testing and common backend-service security issues.
  • Working knowledge of common application security frameworks and methodologies, including OWASP Top 10, OWASP API Security Top 10, secure authentication and authorisation patterns, and practical remediation approaches for common web and API weaknesses.
  • Understanding of broader security testing approaches across applications, cloud and infrastructure, including vulnerability assessment, manual verification, configuration review and risk-based testing methods.
  • Working knowledge of AWS and / or Azure, including common configuration and access-control risks.
  • Understanding of network and infrastructure security basics, including exposed services, host weaknesses and common enterprise network risks.
  • Ability to use common testing and validation tools and explain findings clearly.
  • Ability to work with engineering and platform teams to get findings understood, fixed and retested.
  • Familiarity with secure development and review practices, including the ability to support developers with remediation advice and explain issues clearly in the context of software delivery.
  • Experience with containerised workloads and cloud-hosted application platforms.
  • Exposure to mobile application testing or backend-service testing.
  • Experience interpreting SAST or DAST outputs.
  • Familiarity with wider application security references and standards such as OWASP ASVS, CWE, secure coding guidance, and common testing checklists used for web, API and cloud-hosted services.
  • Exposure to threat modelling inputs or secure design review activity, with the ability to use those outputs to help shape testing scope and coverage.
  • Experience in regulated, high-availability or transaction-critical environments.
  • Relevant certifications such as CREST, OSCP or equivalent hands-on experience

Benefits

Comp & perks
  • Company Bonus Scheme
  • Matched pension contributions up to 8.5%
  • 26 days annual leave + 2 Life Days (and bank holidays)
  • Single Private Health Cover
  • Complimentary Private Medical
  • Income Protection
  • Flexible Benefits – EV Scheme, Money Coach, Will Writing, Mortgage Advice, Dental and Eye Care Schemes.
  • Enhanced Family Leave (Maternity, Paternity, Adoption)
  • Wellness Allowance £500
  • Employee Assistance Programme
  • Discounted Health Assessments
  • Volunteering Days
  • Matched Funding

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
security testingweb application testingAPI testingbackend service securityvulnerability assessmentmanual verificationconfiguration reviewrisk-based testingcontainerized workloadsSAST
Soft Skills
clear communicationremediation guidancecollaboration with engineering teamsproblem-solvinganalytical thinking
Certifications
CRESTOSCP