Senior Offensive Security Analyst

About us:

Amach is an industry-leading technology driven company with headquarters located in Dublin and remote teams in UK and Europe.

Our blended teams of local and nearshore talent are optimised to deliver high quality and collaborative solutions.

Established in 2013, we specialise in cloud migration and development, digital transformation including agile software development, DevOps, automation, data and machine learning...

We're hiring a Senior Offensive Security Analyst with deep expertise in API Security, OAuth, and web application penetration testing. The role will exclusively focus on identifying weaknesses in authentication and authorisation implementations across multiple teams, ensuring consistency and strong security practices within APIs and services.

Please note: This role is fully remote and open to candidates located anywhere within the UK.

Required Experience:

  • Strong background in web application penetration testing
  • Deep, hands-on expertise in API Security, OAuth, JWT, and token-based authentication/authorisation
  • Ability to evaluate systems both at the application layer and within the underlying code
  • Strong experience with modern authentication patterns and common implementation pitfalls
  • Excellent problem-solving skills and the ability to articulate findings clearly to technical and non-technical stakeholders

Key responsibilities & duties include:

  • Perform in-depth penetration testing on APIs with a primary focus on OAuth, JSON Web Tokens (JWT), token validation, and permission handling
  • Assess services both from the perspective of an external attacker and through code review, analysing the logic and patterns behind how authentication/authorisation has been implemented
  • Identify weaknesses and inconsistencies in how different teams have implemented authentication flows
  • Provide clear, actionable findings that will feed directly into broader security improvement initiatives
  • Collaborate with internal security and engineering teams to support the standardisation of API security practices across the organisation

Desirable skills:

  • Experience working in the aviation industry or on aviation-related security projects

What's in it for you:

  • An opportunity to join a fast-growing company
  • Options for career advancement
  • Learning and development opportunities
  • Flexible working environment
  • Competitive salaries based on experience

Equal Opportunity Employer:

Amach is an equal opportunity employer and makes employment decisions on the basis of merit. We celebrate diversity and are committed to creating an inclusive environment for all employees. This job description is intended to convey essential responsibilities and qualifications for this role, but it is not an exhaustive list of tasks that an employee may be required to perform.

If you are passionate about driving customer success, advising on strategic solutions, and contributing to product innovation, we would love to hear from you!

Not for you?

Check out all of our open positions in our careers page and follow us on LinkedIn for future opportunities.

P.S. Share this with friends and co-workers! Don't be afraid they'll steal it from you, if you're amazing and smart we'll find a role for you. We are growing fast and we are always looking for talented people.

At Amach, we strive to be an inclusive community of open-minded individuals with different backgrounds and we are committed to fostering, cultivating and preserving a culture of diversity, equity and inclusion. We strongly believe that a diversity of experience and background is essential to create a fulfilling environment and better solutions for our people and our customers. All Amach employees and contractors are expected to honour this policy and act to ensure that every individual is respected in the workplace.

Your personal data

Amach will process your personal information in accordance with the EU's General Data Protection Regulation (GDPR). We will comply with data protection law and principles, which means that your data will be:

  • Used lawfully, fairly and in a transparent way
  • Collected only for valid purposes and not used in any way that is incompatible with those purposes
  • Relevant to the purposes we have told you about and limited only to those purposes
  • Accurate and kept up to date
  • Kept only as long as necessary for the purposes we have told you about
  • Kept securely

If you would like to contact us about your data, please use the following address: info@amach.com

Apply Now
Apply Now

Job Details

Company
Amach
Location
Nottingham, UK
Hybrid / Remote Options
Employment Type
Full-time
Posted