Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Identify security weaknesses in APIs and enhance authentication practices across teams.
- Company: Join Amach, a fast-growing tech company revolutionising air travel.
- Benefits: Flexible remote work, competitive salaries, and career advancement opportunities.
- Why this job: Make a real impact on aviation security while working with cutting-edge technology.
- Qualifications: Expertise in API Security, OAuth, and web application penetration testing required.
- Other info: Inclusive culture celebrating diversity and offering continuous learning.
The predicted salary is between 36000 - 60000 £ per year.
Join one of the world's fastest-growing technical teams, where innovation meets impact. We take the time to understand your skills, ambitions, and what truly drives you - because your journey matters.
Amach is an industry-leading technology driven company with headquarters located in Dublin and remote teams in the UK and Europe. Our blended teams of local and nearshore talent are optimized to deliver high quality and collaborative solutions. Established in 2013, we specialise in cloud migration and development, digital transformation including agile software development, DevOps, automation, data and machine learning.
We're hiring a Senior Offensive Security Analyst with deep expertise in API Security, OAuth, and web application penetration testing. The role will exclusively focus on identifying weaknesses in authentication and authorization implementations across multiple teams, ensuring consistency and strong security practices within APIs and services.
Please note: This role is fully remote and open to candidates located anywhere within the UK.
Required Experience- Strong background in web application penetration testing
- Deep, hands-on expertise in API Security, OAuth, JWT, and token based authentication/authorization
- Ability to evaluate systems both at the application layer and within the underlying code
- Strong experience with modern authentication patterns and common implementation pitfalls
- Excellent problem solving skills and the ability to articulate findings clearly to technical and non-technical stakeholders
- Perform in-depth penetration testing on APIs with a primary focus on OAuth, JSON Web Tokens (JWT), token validation, and permission handling
- Assess services from the perspective of an external attacker and through code review, analysing the logic and patterns behind how authentication/authorization has been implemented
- Identify weaknesses and inconsistencies in how different teams have implemented authentication flows
- Provide clear, actionable findings that will feed directly into broader security improvement initiatives
- Collaborate with internal security and engineering teams to support the standardisation of API security practices across the organisation
- Experience working in the aviation industry or on aviation related security projects
- An opportunity to join a fast growing company
- Options for career advancement
- Learning and development opportunities
- Flexible working environment
- Competitive salaries based on experience
Amach is an equal opportunity employer and makes employment decisions on the basis of merit. We celebrate diversity and are committed to creating an inclusive environment for all employees.
This job description is intended to convey essential responsibilities and qualifications for this role, but it is not an exhaustive list of tasks that an employee may be required to perform.
At Amach, we strive to be an inclusive community of open-minded individuals with different backgrounds and we are committed to fostering, cultivating and preserving a culture of diversity, equity and inclusion. We strongly believe that a diversity of experience and background is essential to create a fulfilling environment and better solutions for our people and our customers.
All Amach employees and contractors are expected to honour this policy and act to ensure that every individual is respected in the workplace.
Amach will process your personal information in accordance with the EU's General Data Protection Regulation (GDPR). We will comply with data protection law and principles, which means that your data will be:
- Used lawfully, fairly and in a transparent way
- Collected only for valid purposes and not used in any way that is incompatible with those purposes
- Relevant to the purposes we have told you about and limited only to those purposes
- Accurate and kept up to date
- Kept only as long as necessary for the purposes we have told you about
- Kept securely
Senior Offensive Security Analyst London, England, United Kingdom employer: Amach
Contact Detail:
Amach Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Offensive Security Analyst London, England, United Kingdom
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those already at Amach. A friendly chat can open doors and give you insider info on what they're really looking for.
✨Tip Number 2
Show off your skills! If you've got a portfolio or examples of your work, make sure to highlight them during interviews. We love seeing real-world applications of your expertise in API Security and penetration testing.
✨Tip Number 3
Prepare for technical challenges! Brush up on your problem-solving skills and be ready to tackle some real scenarios during interviews. We want to see how you think and approach security issues.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, you’ll find all our open positions there, so keep an eye out for roles that match your skills!
We think you need these skills to ace Senior Offensive Security Analyst London, England, United Kingdom
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Senior Offensive Security Analyst role. Highlight your experience with API Security, OAuth, and penetration testing. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about security and how your background makes you a perfect fit for our team. Let us know what drives you and why you want to join Amach.
Showcase Your Problem-Solving Skills: In your application, be sure to mention specific examples of how you've tackled complex security challenges in the past. We love seeing candidates who can articulate their thought process and findings clearly!
Apply Through Our Website: Don't forget to apply through our careers page! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, we’re always on the lookout for talented individuals like you!
How to prepare for a job interview at Amach
✨Know Your Stuff
Make sure you brush up on your knowledge of API Security, OAuth, and web application penetration testing. Be ready to discuss specific examples from your past experiences where you've identified weaknesses in authentication flows or improved security practices.
✨Speak Their Language
During the interview, use terminology that aligns with the aviation industry and the specific technologies mentioned in the job description. This shows that you understand the context of the role and can communicate effectively with both technical and non-technical stakeholders.
✨Prepare for Problem-Solving Questions
Expect to face scenario-based questions that assess your problem-solving skills. Think about how you would approach a penetration test on an API, what common pitfalls you might encounter, and how you would articulate your findings to different teams.
✨Show Your Collaborative Spirit
Emphasise your ability to work with cross-functional teams. Share examples of how you've collaborated with engineering and security teams in the past to standardise security practices or improve overall security posture. This will highlight your fit within their blended team environment.
