21 of 21 Offensive Security Jobs in London

Please Note: The deadline for applying is 23.59 the day before the job posting end date. Job Title: Offensive Security Senior Manager Business Function: Cyber Security Location: Kingston Head Office Unilever is one of the world's leading suppliers of Food, Home, and Personal Care products with sales in over 190 countries and reaching 3.4 billion consumers … diverse businesses and increasing representation of diverse groups in our advertising. Find out more about our commitment to equity, diversity, and inclusion on our website . Unilever's Cyber Security team is a global, product-led function aligned to the NIST Cyber Security Framework. We deliver capabilities across governance, protection, detection, response, and recovery to safeguard our people … operations, and digital assets. Operating alongside our Technology and Data teams, Cyber Security enables secure innovation and resilience across our global business. Our structure is built around product families and risk-based priorities, with teams embedded across regions and business units. JOB PURPOSE We are looking for a technically exceptional and visionary Senior Manager to lead our Offensive More ❯

a long history of creating magical moments for our customers! We're not about selling products - we want to solve problems and change lives through Monzo ️ At Monzo, our Offensive Security team is an integral part of our wider Security Collective, a passionate group dedicated to enhancing Monzo's security posture and ensuring a safer environment … advice to mitigate issues. We're also deeply committed to fostering diversity within our team, believing that a variety of perspectives makes us stronger. Leading and scaling our dynamic Offensive Security team Owning and continually improving our team's processes and methodologies Acting as the main point of contact for other teams, fostering collaboration and sharing offensive security knowledge Engaging in strategic planning for the team's long-term direction Reviewing bug bounty reports and making authoritative decisions as well as scaling the program beyond where it is now Performing hands-on security testing across a broad range of areas, from web applications to red teaming Mentoring junior team members, guiding their development and More ❯

As the Business Information Security Officer for Risk and Brokering (R&B) you will be a crucial asset to WTW’s cyber security efforts, ensuing robust cyber security practices are embedded across the business unit and are aligned with the organisation’s overall security strategy. This role is to serve as the global trusted information security partner to the business and technology teams, supporting them to ensure security items are appropriately managed. This role is part of the extended Information & Cyber Security Leadership Team and resides within Corporate IT, reporting to the Lead Business Information Security Officer. The Role Primary responsibly is the BISO for Risk and Brokering (R&B): Serve as … a leader within the Information & Cyber Security Team, as the trusted advisor to R&B leadership, providing strategic cybersecurity insights and recommendations to ensure a cohesive approach to cyber risk management. Ensure cybersecurity practices and security by design are integrated into business unit initiatives, motivating business units to adopt efficient security controls throughout their lifecycle. Oversight of More ❯

Are you a Cyber Security professional ready to take the next step in your career? Join a forward-thinking, award-winning London-based MSP that’s at the forefront of Cyber Security services and play a pivotal role in their journey to becoming a Cyber Essentials Plus Certification Body. We’re looking for a Cyber Security Assessor … to join my client's expanding Cyber Security Projects team. If you're passionate about security, skilled in Microsoft 365 and Azure, and experienced with audits and offensive security tools, we want to hear from you. What You’ll Be Doing Conducting Cyber Security Assessments and audits across Microsoft 365 and Azure environments Performing Cyber … Cyber Essentials PLUS audits in line with IASME standards Delivering vulnerability assessments, remediation, and penetration testing across infrastructure, networks, and applications Contributing to client reporting, assurance audits, and scoping security solutions Acting as an escalation point for security-related technical queries and pre-sales support To be considered for this role you’ll need At least 2 years More ❯

the right data to the people who need it, our platforms empower our partners to develop lifesaving drugs, forecast supply chain disruptions, locate missing children, and more. Our Product Security team works on secure-by-design and deep product partnership. We build strong relationships with other teams and help them build secure software. This includes reviewing early-stage designs … defense, intelligence, and commercial applications. We are trusted by our customers to protect their mission-critical information in the face of advanced persistent threats. The mission of the Application Security Team is to enable developers to be highly productive, agile, and produce the most secure software possible. Given the mission critical work that Palantir does, investments in application security have never been more important. As an Application Security Engineer, you will be hands-on and have wide-ranging impact for the security of Palantir: • Product security reviews . You will perform full-scope security reviews of our current and future product and service portfolio. This includes whitebox, greybox, and blackbox assessments. You will work More ❯

Proactive Security Lead, UK Security Operations link Copy link corporate_fare Google place London, UK Mid Experience driving progress, solving problems, and mentoring more junior team members; deeper expertise and applied knowledge within relevant area. Apply link Copy link Bachelor's degree or equivalent practical experience. 5 years of experience in cybersecurity, with an offensive security (e.g., Red Teaming, Penetration Testing, or Adversary Simulation) or threat modeling. Experience in a Security Operations Centre (SOC) or similar environment, with modern threat landscapes and attack techniques. Experience in technical troubleshooting and writing code in one or more programming languages. Experience in threat modeling methodologies (e.g., STRIDE, PASTA, or attack trees) and secure system design principles. Eligibility … to obtain UK Developed Vetting (DV) security clearance; British Citizenship is required for this role. Preferred qualifications: Certifications in OSCE3, CRTP/CRTE, GIAC GCSA/Kubernetes-related, OSCP, OSCE, CRTO, CISSP, or GIAC (e.g., GPEN, GCTI, GWAPT). Experience designing or executing Purple Team exercises, combining offensive tactics with defensive feedback to drive continuous improvement. Experience with More ❯

environment. Maintain quality and consistency across PTaaS deliveries through standardization, process optimization, and internal knowledge sharing. Continuously refine delivery practices by learning from each engagement and staying current with offensive security trends and tools. Contribute to pre-sales technical scoping and product discussions as an experienced technical voice within the Solutions Engineering function. What you'll bring At … on penetration testing experience across domains such as web applications, APIs, infrastructure, and mobile. Proven ability to lead and deliver penetration testing engagements in a consulting, delivery, or internal security capacity. Strong communication skills, with the ability to tailor technical content to both technical and non-technical audiences. Familiarity with PTaaS models, bug bounty platforms, and crowdsourced testing is … with internal teams and external partners. Operate with strong independence and ownership, taking initiative to deliver value with limited oversight while navigating ambiguity and evolving priorities. Genuine passion for offensive security, with a growth mindset and eagerness to learn, adapt, and evolve. Relevant certifications are highly valued, including (but not limited to): CREST: CRT, CCT-INF, CCT-APP More ❯

have an Investors in People Gold accreditation. As a certification body for the Information Assurance for Small and Medium Enterprises Consortium (IASME), they are expanding their UK based Cyber Security Projects Team and are seeking a Cyber Security Assessor as part of their growth, with a view towards becoming a Cyber Essentials Plus Certification Plus Certification body. The … Cyber Security Assessor will be primarily responsible for assisting, preparing and undertaking Cyber Security Assessments and audits across Microsoft 365 and Azure for their clients. You will work closely with both the Cyber Security and PMO team to ensure that the delivery of Security Solutions and Work Packages remain on-track. Responsibilities will also include but … Undertaking penetration testing to include infrastructure, web applications and networks Assisting with client reporting and assurance audits Undertaking Cyber Essentials PLUS audits and assessments Providing an escalation point for security engineering tasks Assisting with presales and scoping for security audits and assessments Security solution scoping including analysis and investigation of new and existing solutions The successful candidate More ❯

have an Investors in People Gold accreditation. As a certification body for the Information Assurance for Small and Medium Enterprises Consortium (IASME), they are expanding their UK based Cyber Security Projects Team and are seeking a Cyber Security Assessor as part of their growth, with a view towards becoming a Cyber Essentials Plus Certification Plus Certification body. The … Cyber Security Assessor will be primarily responsible for assisting, preparing and undertaking Cyber Security Assessments and audits across Microsoft 365 and Azure for their clients. You will work closely with both the Cyber Security and PMO team to ensure that the delivery of Security Solutions and Work Packages remain on-track. Responsibilities will also include but … Undertaking penetration testing to include infrastructure, web applications and networks Assisting with client reporting and assurance audits Undertaking Cyber Essentials PLUS audits and assessments Providing an escalation point for security engineering tasks Assisting with presales and scoping for security audits and assessments Security solution scoping including analysis and investigation of new and existing solutions The successful candidate More ❯

have an Investors in People Gold accreditation. As a certification body for the Information Assurance for Small and Medium Enterprises Consortium (IASME), they are expanding their UK based Cyber Security Projects Team and are seeking a Cyber Security Assessor as part of their growth, with a view towards becoming a Cyber Essentials Plus Certification Plus Certification body. The … Cyber Security Assessor will be primarily responsible for assisting, preparing and undertaking Cyber Security Assessments and audits across Microsoft 365 and Azure for their clients. You will work closely with both the Cyber Security and PMO team to ensure that the delivery of Security Solutions and Work Packages remain on-track. Responsibilities will also include but … Undertaking penetration testing to include infrastructure, web applications and networks Assisting with client reporting and assurance audits Undertaking Cyber Essentials PLUS audits and assessments Providing an escalation point for security engineering tasks Assisting with presales and scoping for security audits and assessments Security solution scoping including analysis and investigation of new and existing solutions The successful candidate More ❯

The team you'll be working with: Consultant - Offensive Security Testing Role Overview: We are seeking a highly skilled and experienced Offensive Security Consultant with a strong focus on threat intelligence and attack methods. The ideal candidate will manage and conduct advanced penetration testing engagements, leveraging threat intelligence to simulate real-world attacks across various environments … applications, cloud infrastructure, and APIs. This role requires a deep understanding of adversarial tactics, excellent communication skills, and the ability to provide strategic, actionable recommendations to enhance our clients' security posture. What you'll be doing: Responsibilities: Lead and manage the full lifecycle of complex penetration testing engagements, applying a threat intelligence-led approach. Execute advanced penetration tests across … and schedule testing engagements based on threat assessments and client needs. Produce clear, detailed reports with technical findings, business impact, and strategic remediation recommendations for diverse audiences. Communicate complex security concepts and threat insights effectively to technical and non-technical stakeholders. Collaborate with client IT and cybersecurity teams to improve security protocols and address vulnerabilities. Monitor remediation efforts More ❯

largest live entertainment company, composed of global market leaders: Ticketmaster, Live Nation Concerts, and Live Nation Media & Sponsorship. With 550 million fans and operations in over 40 countries, our security mission is to ensure those experiences remain uninterrupted and safe. The Detection and Response Team (DART) plays a key role in maintaining that trust, security, and resilience. Job … Purpose As a Senior DART Analyst , you will support the detection and response mission by leading complex investigations, guiding junior analysts, and ensuring timely response to security incidents. Reporting to the DART Lead, you will assist in operational execution across shifts, ensure adherence to best practices, and contribute to the development of tools, playbooks, and detection logic. This role … combines technical depth, mentorship, and reliability during critical security events. Key Responsibilities Security Monitoring & Incident Response Monitor and triage alerts from SIEM, EDR, and NDR platforms, escalating or investigating as appropriate. Conduct thorough investigations to determine scope, impact, and root cause of security events. Collaborate with cross-functional teams during containment and remediation efforts. Document findings clearly More ❯

A global quantitative trading firm specializing in algorithmic and high-frequency trading (HFT) is hiring a Cyber Security Engineer (2-4 years' experience) to operate in a broad, vendor-agnostic security environment. This fully onsite role (5 days per week) offers exposure to cutting-edge security challenges across multiple domains. This is an opportunity to deep-dive … into security engineering, incident response, and automation in a high-impact role. If you're a technically strong, hands-on engineer looking for broad exposure and real security challenges, we want to hear from you! Responsibilities Owning security projects end to end - from design to execution Engineering, automating, and securing infrastructure, networks, and cloud environments Hands-on … engagement in Incident Response, security assessments, and remediation Working across networking, firewalls, and security (Palo Alto, Fortinet, all major cloud providers) Building and automating with Terraform, Ansible, Golang, Python, HashiCorp Leveraging offensive security knowledge (OSCP, Hack The Box, pentesting, SQL injection, homelabbing) Collaborating with multiple teams and communicating effectively across the business Skills & Requirements Security More ❯

for electrifying their homes, shifting usage to off-peak hours, and supporting grid stability-critical for scaling AI and energy-intensive industries. We're looking for a Chief Information Security Officer (CISO) to lead our company-wide security strategy. You'll protect our infrastructure, digital assets, and customer data while enabling fast, secure growth. Key Responsibilities Security Strategy & Leadership Define and lead Fuse's security strategy across infrastructure, applications, and data. Lead hands-on development of security roadmaps, maturity models, and control frameworks tailored to Fuse's risk profile. Directly contribute to architecture reviews, threat modelling sessions, and key design decisions across product and platform teams. Build and mentor a high-performing security team, including hiring, coaching, and managing performance. Develop KPIs and reporting structures to measure and communicate security posture to leadership and the board. Advise the executive team on security risks, regulatory exposure, and investment priorities to support long-term growth. Governance & Compliance Own company-wide security governance, including data protection, access control, and insider risk. Ensure More ❯

their capabilities. Our Penetration Testers work with organisations of all sizes and types to detect and remediate vulnerabilities. They help identify areas lacking sufficient protection. The team tests the security of infrastructure and applications, conducts IT Health Checks, reviews IT configurations, identifies gaps that threat actors could exploit, and makes recommendations to safeguard assets. What you'll be doing … consultancy to internal and external stakeholders. Leading the delivery of PGI's infrastructure penetration testing. Collaborating on the design and delivery of new and existing service lines related to offensive security assessments. Supporting and often leading technical pre-sales, proposal writing, and client engagements. Coaching and supervising junior team members, including resource management, development planning, mentoring, and knowledge … transfer. Analyzing security data to identify patterns, threats, and vulnerabilities. Producing high-quality technical reports that explain vulnerabilities in non-technical language for stakeholders. Performing quality assurance and peer reviews of project reports. Collaborating with colleagues on internal or client projects. Contributing to technical training and development materials. Supporting technical delivery projects to ensure successful outcomes. Mentoring security More ❯

on threat intel and adversary emulation. Deep understanding of OT/IT systems, common vulnerabilities, network protocols, cryptography, and attack vectors. Proficiency in tools and frameworks used in both offensive security and threat intelligence. Proven ability to scope, manage, and deliver complex engagements with excellent communication across technical and non-technical stakeholders. CREST CRT/CHECK (or higher … Clearance. Desirable Skills: Experience with Breach Attack Simulation tools and vulnerability management processes. Familiarity with ISO 27001, risk management frameworks, and compliance-oriented testing. Hands-on knowledge of cloud security in AWS, Azure, or GCP. Advanced cybersecurity certifications such as CISM, CISSP, CREST CCT, or ECSA. Location: London-Based Hybrid/Remote Options Available Benefits: Work in a high … impact role where your expertise directly influences the resilience of major organisations. Join a collaborative, technically elite team focused on cutting-edge offensive techniques and driving genuine security improvements. Salary: Up to £90,000 Per Annum (Basic More ❯

Executive Principal Security Consultant - Technical Assurance page is loaded Executive Principal Security Consultant - Technical Assurance Apply locations Manchester Cheltenham London time type Full time posted on Posted 3 Days Ago time left to apply End Date: August 31, 2025 (22 days left to apply) job requisition id R9599 Executive Principal Consultant - Red Team Cheltenham/Manchester/London … Our role: As an Executive Principal Consultant within the Red Teaming practice, you'll take a leading role in delivering high-end adversary simulation engagements for clients with mature security postures and critical risk profiles. You'll operate across the entire attack lifecycle from initial access and evasion of EDR, through lateral movement and objective completion while ensuring the … safety, confidentiality, and operational integrity of every engagement. This role is central to advancing NCC Group's offensive security capability while helping our clients understand, detect, and respond to sophisticated threats in real-world scenarios. Day to day You'll lead the design, planning, and execution of Red Team and adversary simulation engagements across critical sectors such as More ❯

in which we work and live. It is personal to all of us." - Julie Sweet, Accenture CEO In our team you will: Gain exposure to diverse industries and advanced security architectures, as you lead sophisticated simulated cyber-attacks against our globally renowned clients, employing the very latest threat actor tools and techniques. Work closely with top-tier security experts in our threat intelligence and incident response teams, strengthening your already strong offensive security skills and pushing the boundaries of cybersecurity innovation. Engage in ongoing training, certification and conferences to stay at the forefront of the cyber security landscape, equipped with the latest tools and methodologies. Contribute to enhancing the cybersecurity resilience of some of … CBEST, TIBER, iCAST or similar assessments. Qualification Set yourself apart: Prior experience in a consultancy role would be advantageous, but not essential. Experience of leading and managing teams of security professionals. Experience in blue team, purple team or defensive security roles is also beneficial. What's in it for you At Accenture in addition to a competitive basic More ❯

HackerOne is a global leader in offensive security solutions. Our HackerOne Platform combines AI with the ingenuity of the largest community of security researchers to find and fix security, privacy, and AI vulnerabilities across the software development lifecycle. The platform offers bug bounty, vulnerability disclosure, pentesting, AI red teaming, and code security. We are trusted by More ❯

HackerOne is a global leader in offensive security solutions. Our HackerOne Platform combines AI with the ingenuity of the largest community of security researchers to find and fix security, privacy, and AI vulnerabilities across the software development lifecycle. The platform offers bug bounty, vulnerability disclosure, pentesting, AI red teaming, and code security. We are trusted by … are not leading a project, you are a collaborative and effective software engineer and team member. You will interact with one of the world's most vibrant communities of security researchers and hackers and use this experience to build delightful features and products for them and the thousands of companies who trust HackerOne with their cybersecurity posture. As a More ❯

and strategic advisory efforts. Additional responsibilities include authoring and reviewing high-visibility technical assessments, mentoring senior researchers, informing detection engineering across host- and network-based systems, identifying trends in offensive security tooling and tactics, and generating original research leads that inform Insikt Group's intelligence production. As a principal researcher, you will be expected to operate autonomously across … reverse engineering for Windows, macOS, or Linux Highly Desirable Skills/Experience (not required): BA/BS or MA/MS degree or equivalent experience in Computer Science, Information Security, Cybersecurity, or a related field 7+ years of experience in static and dynamic malware analysis 7+ years of experience in network analysis tools Programming experience in C, C++, or More ❯