At a Glance
- Tasks: Identify and exploit security vulnerabilities to protect groundbreaking scientific research.
- Company: Join a leading organisation at the forefront of UK research and innovation.
- Benefits: Enjoy flexible working, 30 days annual leave, and a fantastic pension scheme.
- Other info: Dynamic role with opportunities for professional development and career growth.
- Why this job: Make a real impact in cybersecurity while collaborating with top engineers and researchers.
- Qualifications: Experience in penetration testing and strong technical skills in diverse environments.
The predicted salary is between 46743 - 46743 £ per year.
Step into the world where science meets robust information security. Protect the technology that powers groundbreaking discoveries and be part of the team that safeguards the future of Big Science. Here, you’ll collaborate with leading engineers, researchers, and technologists to tackle the most pressing security challenges in a fast-paced, innovative environment. Every day offers you the chance to defend vital data and systems, ensuring that the pursuit of scientific excellence continues securely and seamlessly. Discover the difference you can make when you bring your expertise in information security to an organisation at the forefront of global research - working alongside some of the brightest minds and most advanced facilities in the world.
Security clearance
As a minimum, due to the nature of this role, candidates must be eligible for clearance in line with UK National vetting guidelines and willing to undertake the process. Candidates not meeting this level of clearance will not be considered. The level of clearance required is security check.
About the role
The UKRI CIO Group plays a pivotal role in managing and optimising the organisations critical enterprise technical services that underpin and enable UKRI’s business capabilities. Within the group a team of Information Security Experts support the delivery of modern, secure, resilient and scalable services across a larger federated team of Digital, Data and Technology professionals to deliver impact across the organisation and the wider UK research and innovation system. Join us for this rare opportunity to apply your experience in offensive security and threat intelligence in a dynamic, fast-paced security operational and strategic role in an organisation at the heart of research and innovation in the UK.
Your broad remit is to identify real-world risks to diverse technical landscapes, uncovering security vulnerabilities, actively exploiting findings, assessing additional impacts through post-exploitation, and providing proactive advice to teams on the most effective remediation strategies. The role encompasses the full scope and delivery of penetration testing, including zero-knowledge network assessments, insider threat evaluations, credentialed application exploitation, and rigorous testing of human and physical security controls across the UKRI estate. In addition to these offensive security responsibilities, the specialist manages the external penetration testing call-off contract to ensure that UKRI receives high-quality, tailored assessments both internally and externally, supporting a continuous programme of security improvement.
Your responsibilities
- Complete targeted penetration tests and red team exercises to identify exploitable vulnerabilities.
- Develop and maintain offensive tooling to simulate adversary tactics and techniques.
- Monitor and analyse threat intelligence feeds to identify emerging threats and relevant TTPs.
- Produce technical threat reports and briefings to inform security posture and decision-making.
- Conduct proactive threat hunting based on intelligence-led hypotheses and anomaly detection.
- Support risk assessments with insights from offensive operations and threat landscape analysis.
Personal Specification
The below criteria will be scored during Shortlisting (S), Interview (I) or both (S&I). Applicants will be able to demonstrate skills in line with the cyber security risk manager roles using the Government Security Profession career framework.
Essential
- Significant hands‑on professional experience delivering penetration testing and/or red‑team activity across enterprise environments. (S&I)
- Deep technical capability across mixed technology environments, including operating systems, networking, identity/authentication, and cloud platforms (e.g. Azure and/or AWS). (S&I)
- Demonstrable proficiency using common offensive security tools and techniques (e.g. Nmap, Burp Suite, Metasploit) to identify and exploit real‑world attack paths. (S&I)
- Ability to adapt quickly to new technologies, vulnerabilities, and offensive security techniques. (S&I)
- Proven ability to produce clear, high‑quality penetration testing reports that articulate risk, impact, and remediation for technical and non‑technical audiences. (I)
- Strong analytical and problem‑solving skills, with sound professional judgement when assessing security weaknesses and advising on pragmatic remediation. (I)
- Evidence of continued professional development in offensive security, demonstrated through relevant certifications, structured training, or equivalent practical experience. (S&I)
Benefits
- An outstanding defined benefit pension scheme
- 30 days' annual leave in addition to 10.5 public and privilege days (full time equivalent)
- Employee discounts and offers on retail and leisure activities
- Employee assistance programme, providing confidential help and advice
- Flexible working options
- Plus many more benefits and wellbeing initiatives that enable our employees to have a great work life balance!
Applications will be reviewed for suitability and shortlisted. Eligible candidates must apply before the closing date. All applicants are encouraged to apply online.
Offensive Security and Threat Intelligence Specialist in Swindon employer: UK Shared Business Services Ltd
Join UKRI as an Offensive Security and Threat Intelligence Specialist, where you will be part of a dynamic team dedicated to safeguarding groundbreaking scientific research. With flexible working patterns, a generous benefits package including a defined benefit pension scheme, and a culture that prioritises employee growth and well-being, UKRI offers a unique opportunity to work at the forefront of innovation while collaborating with some of the brightest minds in the field. Experience a fulfilling career that not only challenges you but also supports your professional development in a fast-paced, supportive environment.
Contact Details:
UK Shared Business Services Ltd Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land Offensive Security and Threat Intelligence Specialist in Swindon
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at events. A friendly chat can open doors that a CV just can't.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repo showcasing your penetration testing projects. It’s a great way to demonstrate your expertise beyond the application.
✨Tip Number 3
Prepare for interviews by practising common questions and scenarios related to offensive security. Role-play with a friend to boost your confidence and refine your answers.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets the attention it deserves. Plus, we love seeing candidates who are proactive!
We think you need these skills to ace Offensive Security and Threat Intelligence Specialist in Swindon
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter to highlight your experience in offensive security and threat intelligence. We want to see how your skills align with the role, so don’t hold back on showcasing your relevant projects and achievements!
Show Off Your Technical Skills:When detailing your experience, be specific about the tools and techniques you've used, like Nmap or Metasploit. We love seeing candidates who can demonstrate their hands-on experience in penetration testing and red team activities.
Keep It Clear and Concise:Your application should be easy to read and straight to the point. Use clear language to explain your past roles and responsibilities, especially when discussing your penetration testing reports. Remember, we need to understand your impact quickly!
Apply Through Our Website:Don’t forget to submit your application through our official website! It’s the best way for us to receive your details and ensures you’re considered for this exciting opportunity. Plus, it makes the whole process smoother for everyone involved.
How to prepare for a job interview at UK Shared Business Services Ltd
✨Know Your Tools Inside Out
Make sure you’re well-versed in the offensive security tools mentioned in the job description, like Nmap, Burp Suite, and Metasploit. Be ready to discuss how you've used these tools in real-world scenarios, as this will show your hands-on experience and technical capability.
✨Showcase Your Problem-Solving Skills
Prepare to share specific examples of how you've tackled security vulnerabilities in the past. Think about times when you had to assess risks and provide remediation strategies. This will demonstrate your analytical skills and professional judgement, which are crucial for the role.
✨Stay Updated on Threat Intelligence
Familiarise yourself with current trends in threat intelligence and emerging threats. Being able to discuss recent developments in the field will not only show your passion but also your commitment to continuous professional development, which is highly valued.
✨Practice Clear Communication
Since you'll need to produce high-quality reports for both technical and non-technical audiences, practice explaining complex concepts in simple terms. This will help you articulate risk and impact effectively during the interview, showcasing your ability to communicate clearly.
