Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our Offensive Security team to manage vulnerabilities and conduct penetration testing.
- Company: Thrive, a leader in cybersecurity with a focus on client satisfaction.
- Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
- Other info: Dynamic team environment with a commitment to staying ahead of security threats.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge tools and technologies.
- Qualifications: Experience in penetration testing and strong communication skills are essential.
The predicted salary is between 50000 - 70000 £ per year.
Thrive is looking for a security engineer to join our Offensive Security team. This team focuses on advanced vulnerability management and Pentesting as a service and delivers strategic security insights to clients based on the findings of these services. This role will own the delivery of these services ensuring client satisfaction, timely and complete service delivery.
The Security Engineer will work closely with the team to ensure the services are being delivered to clients effectively, and stay on top of industry's best practices as well as new features available from the tools. Additionally, the Security Engineer will coordinate with internal teams at Thrive and be the primary contact for these services for clients. This role will meet with customers and explain the vulnerabilities found and/or exploited, and assist with steps for remediation. This Engineering position requires attention to detail and a commitment to maintaining high security standards and fostering client trust in our cybersecurity capabilities.
Primary Responsibilities- Execution and analysis of vulnerability scans and determining remediation steps.
- Execution and analysis of Penetration Tests (manual and autonomous), writing reports, and delivery of reports to client stakeholders.
- Lead client meetings, offering expert advice and guidance as needed.
- Collaborate with clients to understand their business needs and requirements to best align remediation requirements to business outcomes.
- Creation and ongoing upkeep of materials documenting our security processes, procedures, and technologies, along with the generation of automated reports for relevant stakeholders.
- Update client Security presentations and discuss findings with our clients.
- Maintain a leading edge on security events and techniques to keep our clients aware of new threats and attack techniques.
- Other duties as required.
- Solid understanding of network protocols, operating systems, application layer protocols, and security best practices.
- Understanding cybersecurity threats, and experience with incident response standards and procedures.
- Ability to communicate security information to non-technical people.
- Has a passion for Cyber Security.
- Demonstrates comprehension of good security practices.
- Knowledge of risk assessment tools, technologies and methods.
- Knowledge of penetration testing methodologies, frameworks, and tools.
- Ability to analyze a large amount of data from various sources and use this information to solve complex problems and make good decisions.
- Must be able to work effectively in a team environment and collaborate within the team and other stakeholders.
- Excellent Written and Verbal Communication Skills.
- Computer Networking & Security.
- Vulnerability Discovery and Analysis.
- Operating System Internals.
- Familiarity with TCP/IP network protocols, application layer protocols (e.g., HTTP, SMTP, DNS, etc.).
- 3-5 years of experience executing penetration tests, writing reports and delivering report debriefs to clients.
- Knowledge of common Windows and Linux/Unix system calls and APIs.
- Working knowledge of pentesting tools, such as Burpsuite, Metasploit framework, Caido.
- Knowledge of programming and/or scripting languages (i.e. Python).
- One or more of the following certifications or other relevant certifications: eJPT, PJPT, PenTest+, OSCP, GPEN, PNPT, CEH, Security+.
Security Engineer, Offensive Security employer: Thrive
Contact Detail:
Thrive Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Engineer, Offensive Security
✨Tip Number 1
Network with industry professionals! Attend cybersecurity meetups or conferences to connect with others in the field. This can lead to job opportunities and valuable insights into what companies like Thrive are looking for.
✨Tip Number 2
Showcase your skills through practical demonstrations. Create a portfolio of your pentesting projects or vulnerability assessments. This not only highlights your expertise but also gives potential employers a taste of what you can bring to their team.
✨Tip Number 3
Prepare for interviews by brushing up on your communication skills. You’ll need to explain complex security concepts to non-technical clients, so practice simplifying your language while still conveying your knowledge.
✨Tip Number 4
Don’t forget to apply through our website! We love seeing candidates who are genuinely interested in joining our team at Thrive. Plus, it’s a great way to ensure your application gets the attention it deserves.
We think you need these skills to ace Security Engineer, Offensive Security
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Security Engineer role. Highlight your experience with vulnerability management and penetration testing, and don’t forget to mention any relevant certifications you have. We want to see how your skills align with what we’re looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about cybersecurity and how your background makes you a great fit for our Offensive Security team. Keep it concise but impactful – we love a good story!
Show Off Your Communication Skills: Since you'll be explaining complex security concepts to clients, make sure your application showcases your ability to communicate clearly. Use straightforward language and avoid jargon where possible. We appreciate clarity just as much as technical expertise!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us you’re serious about joining our team at Thrive!
How to prepare for a job interview at Thrive
✨Know Your Stuff
Make sure you brush up on your knowledge of network protocols, operating systems, and security best practices. Be ready to discuss specific vulnerabilities and how you would approach remediation. This shows that you’re not just familiar with the theory but can apply it in real-world scenarios.
✨Communicate Clearly
Since you'll need to explain complex security concepts to non-technical clients, practice simplifying your language. Use analogies or relatable examples to make your points clear. This will demonstrate your ability to bridge the gap between technical jargon and client understanding.
✨Show Your Passion
Let your enthusiasm for cybersecurity shine through! Share any personal projects, certifications, or experiences that highlight your commitment to the field. Employers love to see candidates who are genuinely passionate about what they do.
✨Prepare for Client Scenarios
Think about potential client interactions you might face in this role. Prepare to discuss how you would handle a client meeting, present findings, and offer remediation advice. Role-playing these scenarios can help you feel more confident during the actual interview.