At a Glance
- Tasks: Lead advanced penetration tests and engage in sophisticated Red Team projects.
- Company: Join Alice, a cutting-edge trust and security company for the AI era.
- Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
- Other info: Dynamic team environment with a focus on innovation and continuous learning.
- Why this job: Make a real impact by safeguarding technologies in a rapidly evolving landscape.
- Qualifications: 3+ years in application security, strong API testing skills, and coding proficiency.
The predicted salary is between 70000 - 90000 £ per year.
We are seeking a highly motivated and technically proficient Senior Penetration Tester to join our security research division. This role is dedicated to performing advanced offensive security assessments against the biggest companies in the world. You need to be independent, attentive to details, organized, eager to learn new things, and like to research and solve problems.
What you’ll do:
- Lead and execute comprehensive, technically rigorous penetration tests targeting complex web applications, modern API architectures, and enterprise systems for organizations with significant global presence.
- Engage in sophisticated Red Team projects, including the identification of undisclosed API endpoints, development of novel bypass techniques for established security controls, and lateral movement within target environments.
- Contribute substantively to the design, development, and maintenance of proprietary internal security tools and automation frameworks to enhance the efficacy and efficiency of offensive operations.
Requirements:
- Minimum of 3 years of proven, hands‑on experience in application security analysis, with a heavy emphasis on complex API penetration testing and a mastery of the OWASP Top 10 landscape.
- Proficiency in developing and automating tasks using at least one language like Python, JavaScript, or GoLang.
- Strong experience with static and dynamic analysis of Android and iOS applications, including hands‑on experience with techniques like detours, hooking, and runtime code manipulation.
- Deep, hands‑on knowledge of the latest tactics, techniques, and procedures (TTPs) used in advanced penetration testing and network analysis.
- Ability to author comprehensive and technically rigorous reports detailing identified vulnerabilities and research outcomes.
Nice to have:
- OSCP, OSWE, eWPTXv2, CRTP, or other high‑level offensive certifications.
- Hands‑on experience with industry‑standard reversing tools like JADX, Ghidra, or IDA Pro.
- Demonstrated online achievements, write‑ups, or contributions on platforms such as HackTheBox, Pwn2Own, TryHackMe, Bug Bounty programs, or published security research.
About Alice:
Alice is a trust, safety, and security company built for the AI era. We safeguard the communicative technologies people use to create, collaborate, and interact‑whether with each other or with machines. In a world where AI has fundamentally changed the nature of risk, Alice provides end‑to‑end coverage across the entire AI lifecycle. We support frontier model labs, enterprises, and UGC platforms with a comprehensive suite of solutions: from model hardening evaluations and pre‑deployment red‑teaming to runtime guardrails and ongoing drift detection.
Senior App Security Researcher & Red Team Lead employer: Alice
Alice is an exceptional employer that fosters a culture of innovation and continuous learning, making it an ideal place for a Senior App Security Researcher & Red Team Lead. With a focus on cutting-edge security solutions in the AI era, employees benefit from engaging in complex projects that challenge their skills while enjoying opportunities for professional growth and development. The collaborative work environment encourages creativity and problem-solving, ensuring that team members are not only valued but also empowered to make a significant impact in the field of cybersecurity.
StudySmarter Expert Advice🤫
We think this is how you could land Senior App Security Researcher & Red Team Lead
✨Tip Number 1
Network like a pro! Attend industry meetups, conferences, or online webinars where you can connect with fellow security enthusiasts. Don’t be shy to introduce yourself and share your passion for app security – you never know who might have a lead on your dream job!
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your penetration testing projects, write-ups, or any contributions to platforms like HackTheBox or Bug Bounty programs. This not only highlights your expertise but also gives potential employers a taste of what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on the latest TTPs in penetration testing. Be ready to discuss your hands-on experience with API security and how you've tackled complex challenges in the past. Confidence is key, so practice articulating your thought process clearly!
✨Tip Number 4
Don’t forget to apply through our website! We’re always on the lookout for talented individuals like you. Tailor your application to highlight your relevant experience and let us know why you’re excited about joining our team at Alice!
We think you need these skills to ace Senior App Security Researcher & Red Team Lead
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the role of Senior App Security Researcher & Red Team Lead. Highlight your experience with penetration testing, API security, and any relevant certifications. We want to see how your skills match what we're looking for!
Show Off Your Projects:If you've worked on any cool projects or have contributions on platforms like HackTheBox or Bug Bounty programs, don’t hold back! Share these in your application. It gives us a glimpse into your hands-on experience and passion for security.
Be Clear and Concise:When writing your application, keep it clear and concise. We appreciate well-structured information that gets straight to the point. Make it easy for us to see your qualifications and why you’d be a great fit for our team.
Apply Through Our Website:We encourage you to apply through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team at StudySmarter!
How to prepare for a job interview at Alice
✨Know Your Stuff
Make sure you brush up on your application security knowledge, especially the OWASP Top 10. Be ready to discuss your hands-on experience with complex API penetration testing and any relevant projects you've worked on.
✨Show Off Your Skills
Prepare to demonstrate your proficiency in programming languages like Python, JavaScript, or GoLang. Bring examples of how you've automated tasks or developed security tools, as this will showcase your technical prowess.
✨Be Ready for Technical Questions
Expect in-depth questions about advanced penetration testing tactics and techniques. Familiarise yourself with the latest TTPs and be prepared to explain how you've applied them in real-world scenarios.
✨Highlight Your Achievements
If you've contributed to platforms like HackTheBox or Bug Bounty programs, make sure to mention these experiences. Discuss any write-ups or published research to demonstrate your commitment to the field and your continuous learning.
