Offensive Security Engineer

Experian's Offensive Security team charges itself with improving the organisation's security posture through clarifying risk and verifying the efficacy of our technical, people, physical and process controls from an attacker perspective. The team perform regular Adversary Simulation (Red Team) testing and a range of Ad-Hoc and Tactical Assessments based on changes to the threat landscape and organisational needs.

To succeed in this role, you have breadth and depth of knowledge in security. This knowledge will include operating systems, networking and protocols, firewalls, databases, and middleware applications. Additionally, you will have expertise in forensics, scripting and programming, vulnerabilities, and the usage of GenAI / social engineering techniques.

This is a Hybrid, Nottingham or London based role (40% in office) reporting to the Head of Offensive Security.

Responsibilities

• Collaborate with other teams within the Cyber Fusion Centre and the wider organisation. This ensures that we understand and articulate Cyber Risks in a threat-informed manner. The ultimate goal is to contribute to the successful defense of the organisation.
• Support Offensive Security's engagement at multiple organizational levels, from senior leaders to technical analysts to help improve risk understanding and verify the efficacy of remediation/mitigative actions.
• Participate in performing physical exploitation, network exploitation and social engineering assessments against authorized targets.
• Use CyberThreat Intelligence, Offensive Security Research, previous Adversary Simulation (Red Team) findings and internal risk intelligence to develop test cases demonstrating TTP effectiveness against Experian's control environment.
• Research and stay up to date with the latest cyber threats, attack vectors and attacker methodologies.
• Develop scripts, tools and methodologies to increase Offensive Security's capabilities and educate other team members around automation and AI.
• Use MITRE ATT&CK Framework and other structured attack analysis tools to describe and classify attacker methodology and significance.

Qualifications

What your core background is

• Background in offensive security and adversary simulation.
• Detailed knowledge of global cyber threats and the procedures used by cyber adversaries.
• Two or more of the following skills:

• Network penetration testing and manipulation of network infrastructure
• Web application penetration testing assessments
• Email, phone, or physical social-engineering assessments
• Development, extension, or modifying of exploits, shecode or exploit tools
• Covert physical intrusion
• Cloud security or penetration testing (any major provider)
• AI Red Teaming/Testing and usage of Agentic AI for automation., The Canonical Security Operations team is hiring for a Senior or Staff engineer. The Security Operations team is responsible for designing, building, and operating a world-class Security Operations Center, and the successful candidate will provide leadership, mentorship,..., A cybersecurity firm is seeking a Senior Software Developer to tackle complex security challenges. Collaborating with researchers, you will deliver robust software solutions while reverse-engineering system internals across various platforms like Windows, Linux, Android,..., A leading technology company based in Reading is seeking an Offensive Security Engineer to lead the Product Security Team. You will be responsible for enhancing their penetration testing capabilities and ensuring that security practices are integrated into the dev..., Are you an experienced Security Engineer? Fancy making the step up to work with a leading Security company, maintaining and repairing systems throughout the local area? Do you want to work for a company thats small enough to care yet big enough to give you career stabiity..., Offensive Services Client Director Salary: £100,000 - £130,000 bens etc. Location: Fully Remote (UK-based) Penetration test - red team - exploitation - profession services I'm looking to talk to an experienced senior technical person, with a deep technical background and...

• Industry certifications such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, or GXPN or equivalent experience.

Specialist skills:

• Proficient in attacker tooling, including post-exploitation frameworks and tooling.
• Proficient in any of following programming languages (C, C++, C#, Python, PowerShell, Bash, or Ruby)
• Proficient in Social Engineering techniques across OSINT, phishing, vishing and impersonation.
• Knowledge of current cloud attack methodologies and mitigations.
• Experience of Windows Operating System architecture and internals and use thereof in an enterprise environment.
• Core Information Technology concepts such as TCP/IP networking, Windows & Active Directory, Unix/Linux, Mainframe, Cloud Service Providers, Relational Databases, Data Warehouses, and filesystems
• Knowledge of IT technologies and methods to secure them i.e. databases, SharePoint, storage area networks and cloud-based storage., Offensive Services Client Director Salary: £100,000 - £130,000 bens etc. Location: Fully Remote (UK-based) Penetration test - red team - exploitation - profession services I'm looking to talk to an experienced senior technical person, with a deep technical background and..., Senior Security Engineer (Incident Response SIEM SOAR AWS) Remote UK to £115k Are you a tech savvy Senior Security Engineer with strong Incident Response experience? You could be progressing your career in a senior, hands-on Senior Security Engineer role as part of a...

• Great compensation package and discretionary bonus plan
• Core benefits include pension, bupa healthcare, sharesave scheme and more
• 25 days annual leave with 8 bank holidays and 3 volunteering days. You can purchase additional annual leave.

Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is an important part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.

Experian Careers - Creating a better tomorrow together

Find out what its like to work for Experian by clicking here, Senior Security Engineer/Architect - Perm - Up to £110,000 + benefits Must already hold or be eligible for SC level security clearance Remote first or Hybrid - London based office An established organisation is seeking a Senior Security Engineer to help shape and enhance...

Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realize their financial goals and help them save time and money. We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com., Company Description Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper..., About GitHub GitHub is the world's leading platform for agentic software development - powered by Copilot to build, scale, and deliver secure software. Over 180 million developers, including more than 90% of the Fortune 100 companies, use GitHub to collaborate, and more..., Get AI-powered advice on this job and more exclusive features. Teya is a payment and software service provider, headquartered in London serving small, local businesses across Europe. Founded in 2019, we build easy to use, integrated tools that enable our members to accept..., Sporty Group Partnered with some of the World's greatest Champions including Real Madrid FC, Michael Essien and Eder Militao, we're on the lookout for some Champions of our own to be a part of the 'Top Ranked Fastest Growing and Most Successful Online Gaming Brand in the...