1 to 25 of 76 Offensive Security Jobs

Offensive Service Team Lead Manager UK Remote Salary: £100,000 - £140,000 bens, share options. Location: Fully Remote (UK-based) Are you an experienced offensive security leader, with a deep technical background and strong commercial acumen? Do you understand how clients buy cyber services and how to … translate advanced red teaming and penetration testing into business value? We are seeking a strategic and technically aware Offensive Security Team Lead/Manager to drive offensive operations, External Attack Services, engage with clients, and interface with a globally distributed team. This is a rare opportunity to … combine technical expertise, leadership, and commercial insight in a high-impact role. What You'll Be Doing: Lead and manage a skilled team of offensive security professionals. Oversee red teaming, penetration testing, and offensive consulting engagements . Engage with clients, developers, and cyber researchers , translating technical findings More ❯

intelligence, and commercial applications. We are trusted by our customers to protect their mission-critical information in the face of advanced persistent threats. Our offensive security engineers emulate these real-world threats and provide critical signal on attack vectors to help improve our security posture. This role … will be hands-on and requires a deep understanding of micro-service architecture, multi-tenancy vulnerabilities, cloud security, and web application security. In this role you'll dive deep into the security of our products and more: Conduct security assessments. You'll learn how our products work … then try to break them. This includes everything in our current and future product and service portfolio from Apollo to Foundry. You'll document security findings and work with AppSec and product engineers to develop mitigations. Build offensive testing tooling and automation. Scale offensive security testing More ❯

another. As part of One team, One Kroll, you'll contribute to a supportive and collaborative work environment that empowers you to excel. Our Offensive Security professionals are on a mission to make the world a safer place, one company at a time. We believe that our work … to help our clients discover and remediate their unique security risks makes every one of us safer. Our clients trust us to use cutting-edge offensive security tools, creativity, imagination, and expert knowledge to find cybersecurity risks in their networks, systems, and software. We're looking to … grow our team of penetration testers in the UK. We test web and mobile applications, computer networks, cloud infrastructure, hardware devices, security awareness through social engineering, organizations through red and purple team exercises, and more. At Kroll, your work will help deliver clarity to our clients' most complex governance More ❯

Birmingham, United Kingdom Principal Consultant - Cyber Security We are searching for an experienced Principal Consultant - Cyber Security. Make an Impact at RSM UK Consulting brings together multiple teams across Transactions, Risk & Consulting, ABA, and Outsourcing to provide client-centric solutions for RSM's current and future clients within the … service and identification of further work opportunities. The role will involve managing the delivery of agreed work activities with a primary focus on technical security including offensive security services. You'll benefit from ongoing coaching, career mentoring, and be supported by our career pathway. You will have … to develop market-leading skills across our different capabilities and advance your professional development. You will make an impact by: Planning and delivering cyber security engagements, from scoping through to delivery, debriefs, and report writing. Contributing towards the development of exciting new market-facing offensive security cyber More ❯

from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps … pipelines and Infrastructure as Code (IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing … structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring More ❯

from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps … pipelines and Infrastructure as Code (IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing … structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring More ❯

Senior Security Engineer (Vulnerability Management) - Workvivo What you can expect We’re looking for a Vulnerability Management Engineer to strengthen our vulnerability lifecycle for the Workvivo SaaS platform. You’ll triage and drive remediation of technical vulnerabilities, with a focus on risk, prioritization, and working closely with developers. You … ll partner with engineering and DevOps to make sure security issues are not just found, but fixed. This isn’t a red teaming role, but you’ll work closely with red teamers and bug bounty researchers to turn their insights into action. The focus is on visibility, clear priorities … collaboration, and driving innovation in businesses and individual interactions. In this position, you’ll have the opportunity to make a meaningful impact on the security of both Workvivo and Zoom. Responsibilities Managing vulnerability intake and triage by serving as a central point for reports from internal offensive security More ❯

Principal Security Engineer, AWS Security Job ID: 2780049 | Amazon Web Services Australia Pty Ltd This position can also be based in Sydney, Australia. We are looking for an experienced Principal Security Engineer to join the Security team in Australia. You will be on a team responsible … for conducting both pre and post launch testing, offensive campaigns, emergent threat testing, creating/maintaining automated threat emulation solutions, and helping security and service teams add offensive insight to their development, deployment, monitoring, and response processes. This team partners with the larger Security organization and … Service teams to continuously validate security throughout the service/system lifecycle. You will be an expert across multiple domains such as cyber security; threat, vulnerability and risk assessments (TVRA), security tools (e.g. Splunk, Crowstrike, etc.), application of security frameworks (e.g. ISM, NIST, etc.) and/ More ❯

Sr. Security Engineer, Application Security In Amazon Stores, we ship some of the widest arrays of technology found at any company. From amazon.com to world-class machine learning pipelines, from digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe … ensure we keep our customers safe while developing these novel services. In a given day, you might be inspecting an application’s code for security issues, building a new framework to help our software developers build faster and more securely, or fine-tuning the design for a new service … software developers. The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security generalist with one or more areas of deep expertise. In their communication, they will clearly articulate risks to technical and non-technical audiences alike. More ❯

SOFTWARE APPLICATION SECURITY ENGINEER £90,000 + 15% Bonus + Excellent Staff Benefits including Strong Pension, Life Assurance Hybrid Working ( 2 Days per Week Onsite ) An interesting opportunity has presented itself within one of the UKs largest Independent Software Based Organisations who are one of a major driving forces … behind Innovative Development of Enterprise-Led Internet Technology. They are now looking for an Application Security Engineer to join their existing & high performing In - House Security Team of 35 Staff including SOC & Cyber Analysts through to Experienced Cyber Security Engineers & Security Architects. As an AppSec Engineer … you will focus on the technical side of IT Security, specifically looking at Application Security & Code Analysis, ensuring their Applications are Built Securely. The Information & Cyber Security Team deal with the Security of Closed-Sourced, Open-Source & In-House Developed Applications ensuring that All Systems & Services More ❯

their strategic goals and empower our people to make an impact and develop their own unique career path. We are seeking an enthusiastic Cyber Security Consultant to join our team. Working alongside our experienced team of specialists, you'll be delivering offensive security services including digital footprint … reconnaissance, social engineering, penetration testing and vulnerability assessments to high profile clients across all industries. The purpose of this role is to deliver our offensive security services including digital footprint reconnaissance, social engineering, vulnerability assessments, penetration testing, threat modelling, cyber-attack simulation exercises, and more to high profile … role is perfect for you! We value diverse experiences and perspectives. Here's what we're looking for in our ideal candidate: Experience in offensive security and penetration testing. Demonstrable experience in infrastructure and web application testing; experience in API testing is desirable. Demonstrable experience using common pentesting More ❯

Principal Security Engineer, AWS Security Job ID: Amazon Web Services Australia Pty Ltd This position can also be based in Sydney, Australia. We are looking for an experienced Principal Security Engineer to join the Security team in Australia. You will be on a team responsible for … conducting both pre and post launch testing, offensive campaigns, emergent threat testing, creating/maintaining automated threat emulation solutions, and helping security and service teams add offensive insight to their development, deployment, monitoring, and response processes. This team partners with the larger Security organization and Service … teams to continuously validate security throughout the service/system lifecycle. You will be an expert across multiple domains such as cyber security; threat, vulnerability and risk assessments (TVRA), security tools (e.g. Splunk, Crowstrike, etc.), application of security frameworks (e.g. ISM, NIST, etc.) and/or More ❯

Senior Security Engineer, Application Security Blockchain.com is the world's leading software platform for digital assets, powering the largest production blockchain platform globally. We are driven by a passion to code, create, and ultimately build an open, accessible, and fair financial future—one line of code at a … time. As we scale our platform to serve millions of people each day, we seek a Senior Application Security Engineer to join our dedicated security team. At Blockchain.com, security is more than a set of policies—it's a core mindset. As we continue to innovate in … the crypto space, you will tackle some of the most complex problems around securing a distributed financial platform. The Security team is responsible for guiding the design and implementation of secure systems across the company. Using a comprehensive range of tools and methodologies, we identify and mitigate security More ❯

Description: We are seeking a skilled and experienced Penetration Tester to join our cybersecurity team. The ideal candidate will have a strong background in offensive security practices, demonstrated by relevant certifications, and possess hands-on experience across various platforms. You will play a critical role in identifying vulnerabilities … and ensuring the security of our applications, APIs, and mobile platforms. Key Responsibilities: Conduct comprehensive penetration testing on web applications, APIs, and mobile applications (both Android and iOS) to identify potential security vulnerabilities. Perform threat modeling and risk assessment to provide actionable recommendations for remediation. Collaborate with development … and operations teams to enhance security measures across cloud environments and containerized applications. Develop and execute detailed penetration testing plans and strategies, ensuring thorough coverage of all attack vectors. Provide clear, concise, and detailed reports on findings, including risk assessments and suggested remediation strategies to stakeholders. Stay up-to More ❯

Control Risks is seeking an experienced, technical cyber security Consultant to join its rapidly growing Digital Risks team. This is a unique opportunity that requires a motivated and diligent client-facing individual to join a highly successful team. The successful candidate will help deliver Control Risks' cyber security risk assessment engagements primarily across the EMEA region and act as a subject matter expert on cyber security technical solution development. The candidate will also need to demonstrate experience and expertise in designing cyber security architecture and implementation of technical security controls. The candidate will also … need to be a team-player who is passionate about delivering high quality cyber security advice to some of the world's largest organisations. Located in London, the successful candidate will be able to travel up to 20% of working time. Travel will primarily be in Europe but may More ❯

Software Security Engineer Department: Tech - Security Employment Type: Permanent - Full Time Location: Oxford, UK Description Are you ready to raise the bar on cyber security and contribute to making our flagship products cyber resilient? We are looking for a Security Engineer to join our Information Security … at our inclusive and beautiful Oxford headquarters. You will be working across software engineering, modelling, and data science bringing your full self, including your security knowledge and expertise to the business. As a Security Engineer at Aurora Energy Research, you will enable our colleagues to improve our secure … hands of your colleagues. You enjoy working simultaneously on various initiatives and moving between teams. You will become part of a top-notch information security team who love solving difficult problems. By joining our Information Security team, you will be part of something big and meaningful: help protect More ❯

You will need to login before you can apply for a job. Sr. Security Engineer, AppSec - Amazon Stores Security Sector: Distribution and Warehouse, Technology Role: Professional Contract Type: Permanent Hours: Full Time DESCRIPTION At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. … Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment … healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment. As a Senior Security Engineer, you will collaborate with software development teams to ensure we keep our customers safe while developing these novel services. In a given day More ❯

Security Consultant What we're offering (we know, everyone jumps to this section first!) Salary of £40,000 - £50,000 Share options so you benefit from our success 28 days paid holiday plus bank holidays, and an additional 5 unpaid if you want. Once you reach 3 years of … service, you get an extra day of paid holiday every year until 7 years at Intruder Flexible working - most of the Security team works from home, but we have the option of an office in Shoreditch if you ever feel like some human connection! A yearly off-site for … years promise more of the same, with plenty of growth opportunities for us and our teams! About this position: We are looking for a Security Consultant to facilitate the day-to-day running of the Intruder platform, and deliver Premium consultancy services including pentesting. This role is varied and More ❯

+ benefits & bonus Location: Remote (UK-based with occasional travel) - Work from anywhere in the UK Looking for a highly skilled offensive security professional ready to lead cutting-edge red team operations. This is your chance to step into a pivotal leadership role, guiding a talented red team … and stay at the forefront of emerging attack methods. You'll lead a high-performing team, work on the most exciting and complex cyber security projects, and have the chance to drive real-world change for clients across various industries. The role also offers substantial career growth with access … attack methodologies and integrate the latest threat intelligence to stay ahead of attackers. Provide mentorship and leadership to red team members, sharing expertise in offensive security tactics and best practices. Collaborate with clients to ensure simulations deliver actionable insights and improvements to their security infrastructure. Contribute to More ❯

Hello, let us introduce ourselves! We are watchTowr, a VC-backed cyber security startup helping organisations continuously discover vulnerabilities in their Internet-facing attack surface. Cyber security veterans and technical experts, we are obsessed with building cybersecurity technology to help prevent breaches. With experience informed by years of … high and aggressive growth phase of our journey and are excited to continue adding colleagues to join our phorce of nature. Our vision for offensive security is continuous. But what's the role? We are seeking an ambitious Information Security Engineer to join our Platforms team to … focus on our internal security programme. Sounds great-what will I do? This role involves: Security Architecture in the Cloud : Designing and implementing secure cloud infrastructures, ensuring robust protection against potential threats. Endpoint Management and Administration : Overseeing the deployment, configuration, and maintenance of endpoint security solutions to More ❯

Security Consultant What we're offering: Salary of £40,000 - £50,000 Share options so you benefit from our success 28 days paid holiday plus bank holidays, and an additional 5 unpaid if you want. Once you reach 3 years of service, you get an extra day of paid … holiday every year until 7 years at Intruder. Flexible working - most of the Security team works from home, but we have the option of an office in Shoreditch if you ever feel like some human connection! A yearly off-site for the whole company. Last year we went to … years promise more of the same, with plenty of growth opportunities for us and our teams! About this position: We are looking for a Security Consultant to facilitate the day-to-day running of the Intruder platform and deliver Premium consultancy services including pentesting. This role is varied and More ❯

Metasploit, Burp Suite, Nmap, Wireshark). Experience with reverse engineering, exploit development, and vulnerability research. Familiarity with operating systems (Windows, Linux, macOS) and their security mechanisms. Understanding of network protocols, firewalls, and intrusion detection/prevention systems. Knowledge of cloud security (AWS, Azure, GCP) and containerization (Docker, Kubernetes … years of experience in penetration testing, ethical hacking, or red teaming. Proven track record of identifying and exploiting critical vulnerabilities. Experience with web application security (OWASP Top 10, API security, etc.). Hands-on experience with malware analysis and forensic tools is a plus. Certifications (Preferred) : OSCP (Offensive Security Certified Professional) OSCE (Offensive Security Certified Expert) CEH (Certified Ethical Hacker) GPEN (GIAC Penetration Tester) CISSP (Certified Information Systems Security Professional) Soft Skills : Strong problem-solving and analytical skills. Excellent communication skills, with the ability to explain technical findings to non-technical stakeholders. A More ❯

in the most secure way possible. We want to provide them secure platforms and tools to build and interact with exciting applications. The Protocol Security team ensures the security of all onchain development at Coinbase. We partner closely with product teams to make sure that our users can … safely and confidently engage with the onchain world. What you'll be doing (ie. job duties): Perform threat modeling and security assessments of blockchain products and services. Propose, plan, and execute Red Team operations based on realistic threats. Write detailed reports covering the goals and outcomes of Red Team … significant observations and recommendations. Collaborate with partner teams to improve detection and response capabilities. Provide expert technical guidance to the team in building new security frameworks and analysis tools. Stay informed on current security trends, advisories, publications, and academic research. What we look for in you (ie. job More ❯

Business Development Manager - Offensive Security Remote UK - Some travel to clients across UK & Europe Are you a Cyber Security BD Manager with a focus on Offensive Security? I am working with an exciting scale up with a presence in Amsterdam and the UK who have … sales within the cybersecurity industry. Bachelor’s degree in business, IT, Cybersecurity, or a related field. Strong expertise in cybersecurity services, including penetration testing, security reviews, incident response, vulnerability assessments, and compliance consulting. Solid understanding of cybersecurity solutions, such as network security, cloud security, endpoint protection, and … business opportunities in the cybersecurity sector. Self-motivated, target-driven, and capable of working independently to achieve sales goals. Relevant certifications (CISSP, CISM, or security sales certifications) are a plus. If you are interested in finding out more about this position, please apply below and I will be in More ❯

Assessments & Exercises Director -- Strategy, Transformation, and Governance Lead Job Description Spearhead cutting-edge security strategies and resilience initiatives, shaping the future of cybersecurity. As an Assessments & Exercises Director in the Cyber and Tech Controls line of business, you will lead key efforts to enhance the firm's cybersecurity or … different systems, networks, and architectures. Your ability to analyze and articulate the inner workings of complex vulnerabilities will enable the firm to enhance its security strategy and mitigate cyber and resiliency risks. JPMC's Assurance Operations organization is seeking a dynamic and strategic leader to fill the organization's … and managing regulatory and audit requests. The Strategy Lead will provide strategic support and direction to the firm's internal team of highly skilled Offensive Security testers who conduct cybersecurity assessments (e.g. Red Team, Purple Team, Penetration Testing) to replicate cybersecurity threats targeting the firm. The Strategy Lead More ❯