Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct penetration testing on APIs and enhance security practices across teams.
- Company: Join Amach, a leading tech company with a focus on innovation and collaboration.
- Benefits: Enjoy flexible working, competitive salaries, and opportunities for career growth.
- Why this job: Make a real impact in security while working remotely with a diverse team.
- Qualifications: Expertise in API Security, OAuth, and web application penetration testing required.
- Other info: Be part of a fast-growing company committed to diversity and inclusion.
The predicted salary is between 36000 - 60000 ÂŁ per year.
About us: Amach is an industry‑leading technology driven company with headquarters located in Dublin and remote teams in UK and Europe. Our blended teams of local and nearshore talent are optimised to deliver high quality and collaborative solutions. Established in 2013, we specialise in cloud migration and development, digital transformation including agile software development, DevOps, automation, data and machine learning.
We’re hiring a Senior Offensive Security Analyst with deep expertise in API Security, OAuth, and web application penetration testing. The role will exclusively focus on identifying weaknesses in authentication and authorisation implementations across multiple teams, ensuring consistency and strong security practices within APIs and services. Please note: This role is fully remote and open to candidates located anywhere within the UK.
Required Experience
- Strong background in web application penetration testing
- Deep, hands‑on expertise in API Security, OAuth, JWT, and token‑based authentication/authorisation
- Ability to evaluate systems both at the application layer and within the underlying code
- Strong experience with modern authentication patterns and common implementation pitfalls
- Excellent problem‑solving skills and the ability to articulate findings clearly to technical and non‑technical stakeholders
Key responsibilities & duties include
- Perform in‑depth penetration testing on APIs with a primary focus on OAuth, JSON Web Tokens (JWT), token validation, and permission handling
- Assess services both from the perspective of an external attacker and through code review, analysing the logic and patterns behind how authentication/authorisation has been implemented
- Identify weaknesses and inconsistencies in how different teams have implemented authentication flows
- Provide clear, actionable findings that will feed directly into broader security improvement initiatives
- Collaborate with internal security and engineering teams to support the standardisation of API security practices across the organisation
Desirable skills
- Experience working in the aviation industry or on aviation‑related security projects
What’s in it for you
- An opportunity to join a fast‑growing company
- Options for career advancement
- Learning and development opportunities
- Flexible working environment
- Competitive salaries based on experience
Equal Opportunity Employer: Amach is an equal opportunity employer and makes employment decisions on the basis of merit. We celebrate diversity and are committed to creating an inclusive environment for all employees.
This job description is intended to convey essential responsibilities and qualifications for this role, but it is not an exhaustive list of tasks that an employee may be required to perform. If you are passionate about driving customer success, advising on strategic solutions, and contributing to product innovation, we would love to hear from you!
Senior Offensive Security Analyst employer: Amach
Contact Detail:
Amach Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Offensive Security Analyst
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those already at Amach. A friendly chat can open doors and give you insider info on what they’re really looking for.
✨Tip Number 2
Show off your skills! If you’ve got a portfolio or any projects that highlight your expertise in API Security and penetration testing, make sure to share them. It’s a great way to demonstrate your hands-on experience.
✨Tip Number 3
Prepare for the interview by brushing up on common pitfalls in authentication and authorisation. Be ready to discuss how you would tackle real-world scenarios. We want to see your problem-solving skills in action!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, keep an eye on our careers page for other roles that might suit you. We’re always on the lookout for talent!
We think you need these skills to ace Senior Offensive Security Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Senior Offensive Security Analyst role. Highlight your experience with API Security, OAuth, and penetration testing. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about security and how your background makes you a perfect fit for our team. We love hearing personal stories that connect to the role.
Showcase Your Problem-Solving Skills: In your application, don’t forget to mention specific examples of how you've tackled complex security challenges in the past. We’re all about clear communication, so make sure to articulate your findings well!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates. Plus, we can’t wait to hear from you!
How to prepare for a job interview at Amach
✨Know Your Stuff
Make sure you brush up on your knowledge of API Security, OAuth, and web application penetration testing. Be ready to discuss specific examples from your past work where you've identified weaknesses in authentication flows or improved security practices.
✨Showcase Problem-Solving Skills
Prepare to articulate how you've tackled complex security issues in the past. Think of scenarios where you had to evaluate systems at both the application layer and the underlying code, and be ready to explain your thought process clearly.
✨Communicate Clearly
Since you'll need to present findings to both technical and non-technical stakeholders, practice explaining your insights in a straightforward manner. Use simple language to convey complex ideas, ensuring everyone understands the implications of your findings.
✨Collaborate and Contribute
Emphasise your experience working with cross-functional teams. Be prepared to discuss how you've collaborated with internal security and engineering teams to standardise security practices, and share any initiatives you've led that improved overall security posture.
