1 to 25 of 39 Offensive Security Jobs in England

intelligence, and commercial applications. We are trusted by our customers to protect their mission-critical information in the face of advanced persistent threats. Our offensive security engineers emulate these real-world threats and provide critical signal on attack vectors to help improve our security posture. This role … will be hands-on and requires a deep understanding of micro-service architecture, multi-tenancy vulnerabilities, cloud security, and web application security. In this role you'll dive deep into the security of our products and more: Conduct security assessments. You'll learn how our products work … then try to break them. This includes everything in our current and future product and service portfolio from Apollo to Foundry. You'll document security findings and work with AppSec and product engineers to develop mitigations. Build offensive testing tooling and automation. Scale offensive security testing More ❯

another. As part of One team, One Kroll, you'll contribute to a supportive and collaborative work environment that empowers you to excel. Our Offensive Security professionals are on a mission to make the world a safer place, one company at a time. We believe that our work … to help our clients discover and remediate their unique security risks makes every one of us safer. Our clients trust us to use cutting-edge offensive security tools, creativity, imagination, and expert knowledge to find cybersecurity risks in their networks, systems, and software. We're looking to … grow our team of penetration testers in the UK. We test web and mobile applications, computer networks, cloud infrastructure, hardware devices, security awareness through social engineering, organizations through red and purple team exercises, and more. At Kroll, your work will help deliver clarity to our clients' most complex governance More ❯

Birmingham, United Kingdom Principal Consultant - Cyber Security We are searching for an experienced Principal Consultant - Cyber Security. Make an Impact at RSM UK Consulting brings together multiple teams across Transactions, Risk & Consulting, ABA, and Outsourcing to provide client-centric solutions for RSM's current and future clients within the … service and identification of further work opportunities. The role will involve managing the delivery of agreed work activities with a primary focus on technical security including offensive security services. You'll benefit from ongoing coaching, career mentoring, and be supported by our career pathway. You will have … to develop market-leading skills across our different capabilities and advance your professional development. You will make an impact by: Planning and delivering cyber security engagements, from scoping through to delivery, debriefs, and report writing. Contributing towards the development of exciting new market-facing offensive security cyber More ❯

from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps … pipelines and Infrastructure as Code (IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing … structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring More ❯

Principal Security Engineer, AWS Security Job ID: Amazon Web Services Australia Pty Ltd This position can also be based in Sydney, Australia. We are looking for an experienced Principal Security Engineer to join the Security team in Australia. You will be on a team responsible for … conducting both pre and post launch testing, offensive campaigns, emergent threat testing, creating/maintaining automated threat emulation solutions, and helping security and service teams add offensive insight to their development, deployment, monitoring, and response processes. This team partners with the larger Security organization and Service … teams to continuously validate security throughout the service/system lifecycle. You will be an expert across multiple domains such as cyber security; threat, vulnerability and risk assessments (TVRA), security tools (e.g. Splunk, Crowstrike, etc.), application of security frameworks (e.g. ISM, NIST, etc.) and/or More ❯

SOFTWARE APPLICATION SECURITY ENGINEER £90,000 + 15% Bonus + Excellent Staff Benefits including Strong Pension, Life Assurance Hybrid Working ( 2 Days per Week Onsite ) An interesting opportunity has presented itself within one of the UKs largest Independent Software Based Organisations who are one of a major driving forces … behind Innovative Development of Enterprise-Led Internet Technology. They are now looking for an Application Security Engineer to join their existing & high performing In - House Security Team of 35 Staff including SOC & Cyber Analysts through to Experienced Cyber Security Engineers & Security Architects. As an AppSec Engineer … you will focus on the technical side of IT Security, specifically looking at Application Security & Code Analysis, ensuring their Applications are Built Securely. The Information & Cyber Security Team deal with the Security of Closed-Sourced, Open-Source & In-House Developed Applications ensuring that All Systems & Services More ❯

their strategic goals and empower our people to make an impact and develop their own unique career path. We are seeking an enthusiastic Cyber Security Consultant to join our team. Working alongside our experienced team of specialists, you'll be delivering offensive security services including digital footprint … reconnaissance, social engineering, penetration testing and vulnerability assessments to high profile clients across all industries. The purpose of this role is to deliver our offensive security services including digital footprint reconnaissance, social engineering, vulnerability assessments, penetration testing, threat modelling, cyber-attack simulation exercises, and more to high profile … role is perfect for you! We value diverse experiences and perspectives. Here's what we're looking for in our ideal candidate: Experience in offensive security and penetration testing. Demonstrable experience in infrastructure and web application testing; experience in API testing is desirable. Demonstrable experience using common pentesting More ❯

Sr. Security Engineer, Application Security In Amazon Stores, we ship some of the widest arrays of technology found at any company. From to world-class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the … ensure we keep our customers safe while developing these novel services. In a given day, you might be inspecting an application's code for security issues, building a new framework to help our software developers build faster and more securely, or fine-tuning the design for a new service … software developers. The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security generalist with one or more areas of deep expertise. In their communication, they will clearly articulate risks to technical and non-technical audiences alike. More ❯

Principal Security Engineer, AWS Security Job ID: Amazon Web Services Australia Pty Ltd This position can also be based in Sydney, Australia. We are looking for an experienced Principal Security Engineer to join the Security team in Australia. You will be on a team responsible for … conducting both pre and post launch testing, offensive campaigns, emergent threat testing, creating/maintaining automated threat emulation solutions, and helping security and service teams add offensive insight to their development, deployment, monitoring, and response processes. This team partners with the larger Security organization and Service … teams to continuously validate security throughout the service/system lifecycle. You will be an expert across multiple domains such as cyber security; threat, vulnerability and risk assessments (TVRA), security tools (e.g. Splunk, Crowstrike, etc.), application of security frameworks (e.g. ISM, NIST, etc.) and/or More ❯

Sr. Security Engineer, AppSec - Amazon Stores Security Job ID: Amazon Development Centre (London) Limited At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's … products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores. In Amazon Stores, we ship some of the widest arrays of technology found at … healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment. As a Senior Security Engineer, you will collaborate with software development teams to ensure we keep our customers safe while developing these novel services. In a given day More ❯

Control Risks is seeking an experienced, technical cyber security Consultant to join its rapidly growing Digital Risks team. This is a unique opportunity that requires a motivated and diligent client-facing individual to join a highly successful team. The successful candidate will help deliver Control Risks' cyber security risk assessment engagements primarily across the EMEA region and act as a subject matter expert on cyber security technical solution development. The candidate will also need to demonstrate experience and expertise in designing cyber security architecture and implementation of technical security controls. The candidate will also … need to be a team-player who is passionate about delivering high quality cyber security advice to some of the world's largest organisations. Located in London, the successful candidate will be able to travel up to 20% of working time. Travel will primarily be in Europe but may More ❯

Security Consultant What we're offering (we know, everyone jumps to this section first!) Salary of £40,000 - £50,000 Share options so you benefit from our success 28 days paid holiday plus bank holidays, and an additional 5 unpaid if you want. Once you reach 3 years of … service, you get an extra day of paid holiday every year until 7 years at Intruder Flexible working - most of the Security team works from home, but we have the option of an office in Shoreditch if you ever feel like some human connection! A yearly off-site for … years promise more of the same, with plenty of growth opportunities for us and our teams! About this position: We are looking for a Security Consultant to facilitate the day-to-day running of the Intruder platform, and deliver Premium consultancy services including pentesting. This role is varied and More ❯

Security Consultant What we're offering: Salary of £40,000 - £50,000 Share options so you benefit from our success 28 days paid holiday plus bank holidays, and an additional 5 unpaid if you want. Once you reach 3 years of service, you get an extra day of paid … holiday every year until 7 years at Intruder. Flexible working - most of the Security team works from home, but we have the option of an office in Shoreditch if you ever feel like some human connection! A yearly off-site for the whole company. Last year we went to … years promise more of the same, with plenty of growth opportunities for us and our teams! About this position: We are looking for a Security Consultant to facilitate the day-to-day running of the Intruder platform and deliver Premium consultancy services including pentesting. This role is varied and More ❯

Description The Offensive Security Manager is responsible for the provision of penetration & red team testing services to the business, including leading teams, creating processes, and management of technologies & 3rd parties that make up the service. The role reports to the Director of Offensive Security. The position does … as organizational, leadership, relationship and supplier management skills are the key focuses of the role but will need to have a good understanding of security vulnerabilities and testing methodology to be able to understand the subject matter of the service and manage quality. The role will work closely alongside … the rest of the Cyber Team (e.g. Vulnerability Management), the wider Information & Cyber Security function (e.g. Project Assurance) and leaders in operational IT teams to ensure accurate detection, and the prioritized, timely and appropriate resolution of security vulnerabilities. We are looking for a collaborative team player, with a More ❯

Security Engineer What we're offering (we know, everyone jumps to this section first!): Salary of £50-70k Share options so you benefit from our success 28 days paid holiday plus bank holidays, and an additional 5 unpaid if you want. Once you reach 3 years of service … you get an extra day of paid holiday every year until 7 years at Intruder. Flexible working - most of the Security team works from home, but we have the option of an office in Shoreditch if you ever feel like some human connection! A yearly off-site for the … years promise more of the same, with plenty of growth opportunities for us and our teams! About the Role: We are looking for a Security Engineer to write new vulnerability checks for the latest critical vulnerabilities, research breaking vulnerabilities, and discover new weaknesses in well-known products. This role More ❯

engineering teams on a day-to-day basis to ensure applications and products have been developed and deployed securely. You will continue to champion security best practices, working closely with engineering teams and managers to ensure we develop secure products. . Reporting to the Head of DevSecOps, you will … be directly influencing the security posture of the applications and products across the company to ensure that security plays a key part in the development and engineering life cycles. The Role You will manage and develop a team of DevSecOps engineers, guiding them through the delivery of your … strategy. You'll help develop and drive the DevSecOps strategy, continuing to integrate security into the whole lifecycle of development. Whether it's software or infrastructure you'll be the go to expert on point. You'll be responsible for the DevSecOps engagement plan, to educate engineers by scaling More ❯

I'm hiring an Information Security Officer on behalf of a fast-growing leader in smart infrastructure and next-gen digital solutions, their mission is to secure the future while shaping it. They re seeking a passionate Information Security Officer to join their dynamic team and lead the … BSI IT-Grundschutz or NIS2. Providing expert guidance and support to leadership and departments on all aspects of information security. Drafting, maintaining, and refining security policies, procedures, and controls to safeguard organisational data. Performing comprehensive risk assessments, audits, and security evaluations. Promoting a strong security culture through … employee awareness programs and targeted training initiatives. Detecting, investigating, and responding to security incidents effectively. Coordinating with external auditors, regulatory bodies, and partners on security matters. Ensure adherence to legal and regulatory requirements, including GDPR, the IT Security Act, and related frameworks. This role is remote in More ❯

requirements and KPI's for the products you own. What you'll do: Provide technical cyber leadership across all of BA's defensive cyber security products. This includes m365, CrowdStrike, Defender, Snyk,ForcePoint. Produce product visions, strategies and roadmaps aligned with ourGroup and in support of new and emerging … use cases from the BA business. Evaluating, implementing, and communicating new protective tools and features to improve our security posture whilst supporting, consulting, and measuring the performance of new and existing tools. Create and maintain reference architectures, patterns and guidance for BA's security products. Develop hardening standards … and configuration baselines for security tools. Lead cyber reviews to ensure that our security tools work together to provide integrated layers of defence and a consistent level of protection globally. Support the BA Cyber Delivery Assurance Lead's, acting as a subject matter expert on all things related More ❯

Information Security Manager Durham Hybrid (1 - 2 twice a week) Up to £80k Need for UK Right to Work Bridge are delighted to be recruiting for one of our clients based in North East looking to recruit an experienced Information Security Manager role. Requirements: Previous experience as an … Information Security Manager leading cyber/data security & compliance teams in a medium size company Experience managing InfoSec gathering and reporting metrics. Experience spearheading offensive security activities. Certifications such as CISSP, CISM, CISA, or similar are highly preferred. Experience of Cyber Essentials, NIST, CAFM and ISO27002 More ❯

/Bucks Salary: £28,000 £35,000 (depending on experience) Training : Professional certifications such as Cyber Essentials Assessor, Cyber Essentials Plus Assessor Fortis Cyber Security Limited, a growing information security consultancy, is seeking a qualified, highly motivated and skilled Cyber Essentials/CE Plus Assessor to join our … that stays at the forefront of the constantly evolving field of Cybersecurity. This role also has the potential to lead/evolve into IT Security, Penetration Testing, and Information Governance specialisations. Key Responsibilities Conduct Cyber Essentials and Cyber Essentials Plus Assessment: Perform comprehensive assessments of organisations' cybersecurity practices, systems … and controls to ensure compliance to the Cyber Essentials Scheme. Conduct in-depth vulnerability assessments to identify potential security weaknesses. Verify the effectiveness of CE security controls through rigorous testing and analysis. Document CE and CE+ assessment findings, including detailed reports and recommendations. Provide Guidance and Recommendations: Offer More ❯

I'm hiring a Penetration Tester on behalf of a cyber security firm who thrive on uncovering the unknown, breaking barriers, and staying five steps ahead of tomorrow's threats. Their Penetration Testers are more than ethical hackers-they're digital explorers with a license to legally break things … protect what matters most, you'll love it here. Ready to break in? In this role you will be responsible for: Identifying and assess security vulnerabilities across their web and cloud-based applications. Collaborating closely with digital product teams to recommend and implement effective security measures. Independently planning … executing, and reporting on penetration tests and security audits. Performing in-depth source code reviews to uncover potential security flaws. Supporting incident response efforts and contributing to ongoing cybersecurity enhancements. This role is remote in Germany. Essential: Relevant degree e.g. Computer Science, Cyber Security Several years professional More ❯

depending on experience) Training : Professional certifications such as Cyber Essentials Assessor, Cyber Essentials Plus Assessor Our client, a growing information security consultancy, is seeking a qualified, highly motivated and skilled Cyber Essentials/CE Plus Assessor to join their team. They require the applicant to have a minimum of … that stays at the forefront of the constantly evolving field of Cybersecurity. This role also has the potential to lead/evolve into IT Security, Penetration Testing, and Information Governance specialisations. Key Responsibilities Conduct Cyber Essentials and Cyber Essentials Plus Assessment: Perform comprehensive assessments of organisations' cybersecurity practices, systems … and controls to ensure compliance to the Cyber Essentials Scheme. Conduct in-depth vulnerability assessments to identify potential security weaknesses. Verify the effectiveness of CE security controls through rigorous testing and analysis. Document CE and CE+ assessment findings, including detailed reports and recommendations. Provide Guidance and Recommendations: Offer More ❯

depending on experience) Training : Professional certifications such as Cyber Essentials Assessor, Cyber Essentials Plus Assessor Our client, a growing information security consultancy, is seeking a qualified, highly motivated and skilled Cyber Essentials/CE Plus Assessor to join their team. They require the applicant to have a minimum of … that stays at the forefront of the constantly evolving field of Cybersecurity. This role also has the potential to lead/evolve into IT Security, Penetration Testing, and Information Governance specialisations. Key Responsibilities Conduct Cyber Essentials and Cyber Essentials Plus Assessment: Perform comprehensive assessments of organisations' cybersecurity practices, systems … and controls to ensure compliance to the Cyber Essentials Scheme. Conduct in-depth vulnerability assessments to identify potential security weaknesses. Verify the effectiveness of CE security controls through rigorous testing and analysis. Document CE and CE+ assessment findings, including detailed reports and recommendations. Provide Guidance and Recommendations: Offer More ❯

depending on experience) Training : Professional certifications such as Cyber Essentials Assessor, Cyber Essentials Plus Assessor Our client, a growing information security consultancy, is seeking a qualified, highly motivated and skilled Cyber Essentials/CE Plus Assessor to join their team. They require the applicant to have a minimum of … that stays at the forefront of the constantly evolving field of Cybersecurity. This role also has the potential to lead/evolve into IT Security, Penetration Testing, and Information Governance specialisations. Key Responsibilities Conduct Cyber Essentials and Cyber Essentials Plus Assessment: Perform comprehensive assessments of organisations' cybersecurity practices, systems … and controls to ensure compliance to the Cyber Essentials Scheme. Conduct in-depth vulnerability assessments to identify potential security weaknesses. Verify the effectiveness of CE security controls through rigorous testing and analysis. Document CE and CE+ assessment findings, including detailed reports and recommendations. Provide Guidance and Recommendations: Offer More ❯

My client a growing information security consultancy, is seeking a qualified, highly motivated and skilled Cyber Essentials/CE Plus Assessor to join our team. We require the applicant to have a minimum of 2 years experience working on CE. Must be able to get to Milton Keynes up … that stays at the forefront of the constantly evolving field of Cybersecurity. This role also has the potential to lead/evolve into IT Security, Penetration Testing, and Information Governance specialisations. Key Responsibilities: Conduct Cyber Essentials and Cyber Essentials Plus Assessment: Perform comprehensive assessments of organisations' cybersecurity practices, systems … and controls to ensure compliance to the Cyber Essentials Scheme Conduct in-depth vulnerability assessments to identify potential security weaknesses. Verify the effectiveness of CE security controls through rigorous testing and analysis. Document CE and CE+ assessment findings, including detailed reports and recommendations. Provide Guidance and Recommendations: Offer More ❯