At a Glance
- Tasks: Identify and exploit security vulnerabilities to protect groundbreaking scientific research.
- Company: Join a leading organisation at the forefront of UK research and innovation.
- Benefits: Enjoy 30 days annual leave, flexible working, and a fantastic pension scheme.
- Other info: Opportunity for continuous professional development and career growth.
- Why this job: Make a real impact in a dynamic environment while collaborating with top experts.
- Qualifications: Experience in penetration testing and strong technical skills required.
The predicted salary is between 46743 - 46743 £ per year.
Step into the world where science meets robust information security. Protect the technology that powers groundbreaking discoveries and be part of the team that safeguards the future of Big Science. Here, you’ll collaborate with leading engineers, researchers, and technologists to tackle the most pressing security challenges in a fast-paced, innovative environment. Every day offers you the chance to defend vital data and systems, ensuring that the pursuit of scientific excellence continues securely and seamlessly. Discover the difference you can make when you bring your expertise in information security to an organisation at the forefront of global research - working alongside some of the brightest minds and most advanced facilities in the world.
Security: As a minimum, due to the nature of this role, candidates must be eligible for clearance in line with UK National vetting guidelines and willing to undertake the process. Candidates not meeting this level of clearance will not be considered.
About the role: The UKRI CIO Group plays a pivotal role in managing and optimising the organisations critical enterprise technical services that underpin and enable UKRI’s business capabilities. Within the group, a team of Information Security Experts support the delivery of modern, secure, resilient and scalable services across a larger federated team of Digital, Data and Technology professionals to deliver impact across the organisation and the wider UK research and innovation system. Join us for this rare opportunity to apply your experience in offensive security and threat intelligence in a dynamic, fast-paced security operational and strategic role in an organisation at the heart of research and innovation in the UK.
Your broad remit is to identify real‑world risks to diverse technical landscapes, uncovering security vulnerabilities, actively exploiting findings, assessing additional impacts through post‑exploitation, and providing proactive advice to teams on the most effective remediation strategies. The role encompasses the full scope and delivery of penetration testing, including zero‑knowledge network assessments, insider threat evaluations, credentialed application exploitation, and rigorous testing of human and physical security controls across the UKRI estate. In addition to these offensive security responsibilities, the specialist manages the external penetration testing call‑off contract to ensure that UKRI receives high‑quality, tailored assessments both internally and externally, supporting a continuous programme of security improvement.
Your responsibilities:
- Complete targeted penetration tests and red team exercises to identify exploitable vulnerabilities.
- Develop and maintain offensive tooling to simulate adversary tactics and techniques.
- Monitor and analyse threat intelligence feeds to identify emerging threats and relevant TTPs.
- Produce technical threat reports and briefings to inform security posture and decision‑making.
- Conduct proactive threat hunting based on intelligence‑led hypotheses and anomaly detection.
- Support risk assessments with insights from offensive operations and threat landscape analysis.
Essential Criteria:
- Significant hands‑on professional experience delivering penetration testing and/or red‑team activity across enterprise environments.
- Deep technical capability across mixed technology environments, including operating systems, networking, identity/authentication, and cloud platforms (e.g. Azure and/or AWS).
- Demonstrable proficiency using common offensive security tools and techniques (e.g. Nmap, Burp Suite, Metasploit) to identify and exploit real‑world attack paths.
- Ability to adapt quickly to new technologies, vulnerabilities, and offensive security techniques.
- Proven ability to produce clear, high‑quality penetration testing reports that articulate risk, impact, and remediation for technical and non‑technical audiences.
- Strong analytical and problem‑solving skills, with sound professional judgement when assessing security weaknesses and advising on pragmatic remediation.
- Evidence of continued professional development in offensive security, demonstrated through relevant certifications, structured training, or equivalent practical experience.
Benefits:
- An outstanding defined benefit pension scheme.
- 30 days annual leave in addition to 10.5 public and privilege days (full time equivalent).
- Employee discounts and offers on retail and leisure activities.
- Employee assistance programme, providing confidential help and advice.
- Flexible working options.
Offensive Security and Threat Intelligence Specialist in Nottingham employer: UKRI
Join a pioneering organisation at the forefront of global research and innovation, where your expertise in offensive security and threat intelligence will play a crucial role in safeguarding vital data and systems. With a commitment to employee growth, flexible working patterns, and a supportive work culture, you will collaborate with some of the brightest minds in a dynamic environment that values your contributions. Enjoy an excellent benefits package, including a defined benefit pension scheme and generous annual leave, all while making a meaningful impact on the future of Big Science.
StudySmarter Expert Advice🤫
We think this is how you could land Offensive Security and Threat Intelligence Specialist in Nottingham
✨Tip Number 1
Network like a pro! Reach out to professionals in the field of offensive security and threat intelligence. Attend industry events, webinars, or even local meetups to connect with potential employers and learn about job openings that might not be advertised.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your penetration testing projects or any relevant work you've done. This can be a game-changer during interviews, as it gives you a chance to demonstrate your expertise and problem-solving abilities.
✨Tip Number 3
Prepare for the interview like it's a red team exercise! Research the company’s security posture and come ready with insights on how you can help improve it. Tailor your responses to highlight your experience with tools like Nmap and Metasploit, and how they relate to their needs.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities waiting for talented individuals like you. Plus, it’s a great way to ensure your application gets the attention it deserves.
We think you need these skills to ace Offensive Security and Threat Intelligence Specialist in Nottingham
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Offensive Security and Threat Intelligence Specialist role. Highlight your hands-on experience with penetration testing and any relevant certifications. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how your experience can contribute to our mission at StudySmarter. Keep it engaging and relevant to the job description.
Showcase Your Technical Skills:Don’t forget to mention your proficiency with tools like Nmap, Burp Suite, and Metasploit. We’re looking for candidates who can demonstrate their technical capabilities clearly, so make sure to include specific examples of your work.
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates from our team!
How to prepare for a job interview at UKRI
✨Know Your Stuff
Make sure you brush up on your offensive security and threat intelligence knowledge. Familiarise yourself with the tools mentioned in the job description, like Nmap and Burp Suite. Being able to discuss your hands-on experience with these tools will show that you're not just a theory person but someone who can get things done.
✨Showcase Your Problem-Solving Skills
Prepare to discuss specific examples where you've identified vulnerabilities and how you approached remediation. Use the STAR method (Situation, Task, Action, Result) to structure your answers. This will help you articulate your thought process and demonstrate your analytical skills effectively.
✨Stay Current with Threat Intelligence
Keep yourself updated on the latest trends and emerging threats in the cybersecurity landscape. Be ready to talk about recent incidents or vulnerabilities that have made headlines. This shows your passion for the field and your commitment to continuous learning, which is crucial for this role.
✨Ask Insightful Questions
Prepare thoughtful questions about the team, the technologies they use, and their approach to security challenges. This not only shows your interest in the role but also helps you gauge if the company culture aligns with your values. Plus, it gives you a chance to engage with your interviewers on a deeper level.
