Offensive Security Engineer

We are seeking an Offensive Security Engineer to establish and guide our Product Security Team. The successful candidate will drive our penetration testing capability, our secure software development practices, oversee vulnerability remediation, and build automated offensive security capabilities integrated into our agile CI/CD environment. Working within the SCRUM methodology, the Offensive Security Engineer will ensure that security is embedded into every sprint, release, and product lifecycle stage. As our SaaS products are primarily developed in Java-based web applications, the ideal candidate will bring hands-on experience in software development and a strong understanding of secure coding practices in Java and modern web technologies., * Establish secure coding standards, reusable libraries, and best practices for Java web application development.

• Collaborate with product owners and developers to integrate security requirements into user stories.
• Provide guidance on threat modeling and secure design during sprint planning.
• Ensure security tasks are prioritized alongside functional requirements in the agile backlog.

Offensive security & testing

• Build and oversee internal penetration testing capabilities for web applications and APIs.
• Ensure each release in the CI/CD chain undergoes automated and manual security testing.
• Expand testing scope to infrastructure and cloud environments as maturity grows.
• Continuously simulate attacker techniques to validate product resilience.
• Drive adoption of SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) solutions, with emphasis on Java and web application frameworks.
• Integrate automated security testing into CI/CD pipelines.
• Oversee development of unit test frameworks with embedded security checks.

Compliance & reporting

• Align product security practices with compliance frameworks (ISO27001, SOC2, NIS2, EU AI Act, etc.).
• Collaborate with Compliance and IT Security teams to maintain certifications and audit readiness.
• Provide leadership with clear reporting on product security posture, vulnerabilities, and remediation progress.
• Define backlog items related to security improvements, vulnerability remediation, and testing initiatives.
• Facilitate sprint planning, daily stand-ups, retrospectives, and ensure delivery of security objectives.
• Mentor and coach team members, fostering a culture of collaboration and continuous improvement., A leading technology company based in Reading is seeking an Offensive Security Engineer to lead the Product Security Team. You will be responsible for enhancing their penetration testing capabilities and ensuring that security practices are integrated into the dev..., Salary: Up to £80,000 + benefits Location: Hybrid - 3 days per week in Guildford This is an excellent opportunity to shape and mature a growing security capability within a forward-thinking, cloud-first environment. Security & Infrastructure Engineer My client is..., Job Title:Safety and Security Engineer Location: Reading Salary: Competitive Type: Permanent Sector: Public Sector Job Description Our Fire and Security engineering team, is at the heart of our business. Multi-skilled across multiple technologies and product ranges,..., Fire and Security Engineer - Berkshire (covering West London) Salary £44,000 - £50,000 basic Are you a skilled Fire and Security Engineer looking to join a reputable and rapidly expanding company? This award-winning fire and security business is known for delivering..., DevOps Engineer Reading/Leeds, UK Permanent Role The DevOps engineer will be required to contribute to version-controlled configuration assets within a DevOps team's existing fully automated continuous deployment solution, to diagnose and troubleshoot infrastructure and..., Security Engineer (Field Based / Access Control) All potential candidates should read through the following details of this job with care before making an application. £45,000 - £50,000 + Door-to-Door Pay + £60k-£65k OTE + Travel Expenses Paid + Training + Progression +...

• Strong knowledge of secure development practices, threat modeling, and vulnerability management.
• Hands-on experience with SAST/DAST tools and CI/CD integration.
• Excellent communication skills to engage developers, auditors, and executives.
• Proven experience leading teams in agile/SCRUM environments., * Bachelor's or Master's degree in Software Engineering, Cybersecurity, or related field.
• 8+ years of experience in software development and application security, with hands-on exposure to Java web applications.
• Certifications such as OSCP or CISSP, CISM.
• Experience in SaaS environments and cloud-native security.
• Familiarity with compliance frameworks (ISO27001, SOC2, NIS2, EU AI Act).
• Ability to balance strategic vision with hands-on technical leadership.

The selected candidate may be subject to the provision of an up-to-date (not older than 3 months) criminal record certificate.

Fire & Security Role: Are you a Fire & Security Service & Small Works Engineer working with fire systems? Paying up to £44k + D2D travel Door to door travel ~ Open, growth-oriented company culture ~ Supportive of training and development ~ Strong fire systems experience...

CHAMP Cargosystems provides the most comprehensive range of integrated IT solutions and distribution services for the air cargo transport chain. Our portfolio spans core management systems, messaging services, and eCargo solutions. These include applications designed to meet customs and security requirements, quality optimization, as well as e-freight and mobility needs. Our products and services are recognized globally under the Cargospot and Traxon brands. We serve over 200 airlines and GSAs, connecting them with approximately 3,000 forwarders and GHAs worldwide. Our solutions help customers, and their clients, adapt to the critical and ongoing changes in air transport logistics and meet the demands of global trade. Headquartered in Luxembourg, CHAMP Cargosystems operates offices in Reading, Zurich, Frankfurt, Manila, Singapore, and Atlanta., We believe happy employees create thriving work environments. With over 500 team members from 32 countries, speaking over 30 languages, CHAMP is a uniquely diverse and welcoming place to work. Our globally minded staff collaborates with clients and vendors worldwide from our offices in London, Zürich, Manila, Atlanta, Singapore, and our Headquarters in the Grand Duchy of Luxembourg., A global technology provider in Reading seeks an Offensive Security Engineer to lead their Product Security Team. The role involves driving penetration testing, establishing secure development practices, and integrating security into the CI/CD environment. Ideal candidates..., World Wide Technology (WWT) is a global technology integrator and supply chain solutions provider. Through our culture of innovation, we inspire, build, and deliver business results, from idea to outcome. The following information aims to provide potential candidates with..., About KPMG International Together with more than 276,000 colleagues in 138 countries throughout our member firms, people at KPMG imagine big ideas and bring solutions to life for clients both big and small. A role with KPMG International will open a world of opportunity in...