CrawlJobs Logo
iProov Logo iProov · IT - Software Development

Red Team Engineer

United Kingdom, London · Job Posted December 09, 2025
Apply Position
Job Link Share

Job Description

As we continue to scale and grow, we are looking for an experienced Red Team Engineer focused on web platforms to join our growing Red Team function and ensure our system continues to deliver outstanding levels of biometric security and performance globally. Our system has to provide the highest levels of biometric security to defend against the numerous and growing threats, whilst ensuring that we deliver outstanding performance for our millions of users worldwide. This is an exceptionally challenging problem as the nature of the threats evolves rapidly and there is a constant and growing need to track new threats, develop new defences and deploy in a timely and efficient manner.

Job Responsibility

  • Design and execute Red Team Operations against iProov’s biometric platform, web apps, APIs, identity flows
  • Strengthen the company’s security posture through offensive security assessments including the identification and exploitation of vulnerabilities across the web platform
  • Perform penetration testing and realistic security exercises to simulate various attack scenarios, to test and improve our detection and response capabilities, and to identify weaknesses in our infrastructure and products
  • Execute technical security assessments to identify risk, likelihood and impact an attacker may have on the System due to weak or missing controls
  • Conduct research into real-world threat actor tactics, techniques, and procedures (TTP’s) to develop proof-of-concept tools and replicate real world attacks
  • Present findings and operational work to groups in a clear and professional manner
  • Produce clear, actionable reports, risk-ranked remediation plans, and executive summaries aimed at product and engineering stakeholders
  • Collaborate with defenders, product teams, and leadership to translate findings into prioritized, actionable remediation and risk reduction
  • Bring insight into all aspects of modern security issues to our products and rapidly developing prototypes for mitigations
  • Mentor engineers in secure-by-design patterns, client-side security, and secure API design
  • Work hand-in-hand with developers to propose pragmatic mitigations, remediation plans, and detection logic for vulnerabilities discovered during engagements
  • Translate findings into engineering-friendly fix guidance (code-level suggestions, configuration changes, library upgrades, secure design alternatives) and where required create reproducible PoCs that safely demonstrate impact
  • Validate and re-test remediations and detection improvements (verify fixes, tune rules/signatures, confirm telemetry coverage)
  • Integrate offensive findings into the SDLC: enable SCA (software composition analysis), SAST/DAST pipelines, pre-merge checks, and secure CI/CD practices
  • Ensure all work follows company policies, rules of engagement (ROE), and legal/regulatory requirements

Requirements

  • 5+ years of experience in ethical hacking, vulnerability research, exploit development, penetration testing or being a member of a red team, with significant focus on web application security
  • Strong hands-on experience attacking and defending modern web tech stacks
  • Experience with JavaScript/Typescript
  • Proficient with offensive web toolsets (Burp Suite, OWASP ZAP) and experienced building extensions/scripts
  • Experience with developing and maintaining web-focused tooling and automation (Burp extensions, custom scanners, authenticated API fuzzers, GraphQL mutation explorers, Puppeteer/Playwright scripts)
  • Experience with source code reviewing for control flow and security flaws
  • A passion for constructively break things
  • Want to be part of an ambitious, high-growth startup company
  • Written and verbal communication skills in English

What we offer

  • 25 days Annual Leave, plus 8 Bank Holidays (more holiday with service - up to an extra 5 days off per year based on your continuous service)
  • Growth Shares allocated after passing probation (6 months of service)
  • Salary sacrifice schemes including: Pension, Cycle To Work and Electric Car Scheme
  • Nursery Sacrifice Scheme
  • Work Overseas Perk - Work globally for up to 2 weeks
  • Life Assurance
  • SmartHealth - Access to private GP, Psychologist, Nutritionist along with tailored fitness plans for both you and your family
  • Award winning L&D platform with personal allocated training budgets
  • Benefit from personalized 1:1 career coaching with our in-house Occupational Psychologist
  • Enhanced paid family leave
  • Pension - 5% employee, 3% employer
  • Flexible hybrid working environment
  • Free Barista Coffee/Tea, biscuits with fruit in the WeWork office
  • Free access to WeWork discounts and free online well-being sessions
  • Vitality Health - a range of options available on this below
  • The Vitality Programme includes a number of reward benefits that all employees have access to as part of the plan, for example: Private Health cover including Dental, Optical, and Audiology
  • 50% off monthly gym memberships
  • Apple watches significantly discounted based member vitality status
  • Half price trainers with Runners Need
  • Weekly rewards – Free coffee with Café Nero
  • Monthly rewards – Free Cinema ticket
  • Discounts on travel with Expedia (hotels) and Mr & Mrs Smith with discounts getting greater throughout the year based on members vitality status
  • Amazon prime free months based on activity
  • Up to 25% cashback at Waitrose when buying healthy foods
  • 75% off stays at Champneys Health Spas
  • Allen Carr’s £299 no smoking programme for free
  • Access to Vitality Healthy Mind with 30% off Headspace subscriptions and the ability to earn Vitality points for using Buddhify, Calm and Headspace
  • Discounts on Weight Watchers
  • 50%-80% off Comprehensive Private Health screenings
iProov - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Red Team Engineer

8 matching positions

New

Principal Software Engineer - Red Team

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
United States , Multiple Locations
Salary
Salary:
142800.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science or related technical field AND 6+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter
  • Expertise in red teaming, adversarial testing, and offensive security—including threat emulation, vulnerability discovery, and ethical hacking
  • Experience with Large Language Models (LLMs) and agentic AI systems
  • Strong background in system design and cloud platforms (Azure, AWS, GCP)
  • 8 years of professional software development experience in an OOL such as C# or Java and Bachelor’s degree in computer science or related fields, or equivalent experience
Job Responsibility
Job Responsibility
  • Design, implement, and support AI-driven red team services using generative as well as traditional AI techniques
  • Research, experiment with, and productionize frontier AI capabilities and design patterns
  • Research the latest attack techniques used by internal red teams and external threat actors
  • Contribute to red team tools for use by both human operators and AI red teaming services
  • Support partner development teams in contributing to our services and tools
  • Partner with internal defensive security teams to improve their detection, investigation, and response capabilities
  • Build strong relationships with your peers through design, code reviews, and mentoring
  • Fulltime
Read More
Arrow Right

Senior Staff Red Team Engineer

Our Information Security organization is seeking a Senior Staff Red Team Enginee...
Location
Location
United States , Burbank
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience leading covert Red Team operations
  • Experience with developing custom tools and payloads which bypass defensive products, and remain undetected in a mature network environment
  • Must have the ability to perform targeted attacks with or without the use of automated tools
  • Expertise in adversarial TTPs
  • Experience performing adversarial simulation
  • Experience in conducting surreptitious on-premise and cloud based attacks
  • Excellent written and verbal communication skills
  • Ability to establish priorities, work independently and proceed with objectives
  • Must be well organized and able to leverage best practices, able to thrive in fast-paced environment, and, most importantly, have the ability to approach problems with an innovative, can-do attitude
Job Responsibility
Job Responsibility
  • Lead end-to-end Red Team operations to highlight gaps impacting enterprise security posture and readiness
  • Develop payloads and attack tools which bypass security controls for use in covert operations
  • Simulate real-world attacks that are relevant to the business
  • Leverage bleeding edge AI research to enhance offensive security capabilities
  • Deliver detailed reports of technical findings to stakeholders and assist with the development of mitigation plans
  • Deliver executive technical out briefs to leadership across the organization
  • Assist with security investigations, root-cause analysis and corrective measures as required
What we offer
What we offer
  • Restricted stock units
  • Bonus
  • Employee benefits (see link in offer)
  • Fulltime
Read More
Arrow Right

Senior Security Engineer (Red Team Specialist)

We are seeking a highly skilled and experienced Senior Security Engineer Penetra...
Location
Location
Indonesia , Jakarta
Salary
Salary:
Not provided
Flip
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or a related field
  • Relevant certifications such as OSCP, OSCE, GPEN, or GXPN are highly desirable
  • Minimum of 5 years of hands-on experience in penetration testing (mobile applications {Android and iOS}, web applications, and API), red teaming, or ethical hacking, with a proven track record of identifying and exploiting vulnerabilities
  • Demonstrate a strong grasp of end-to-end SDLC, DevSecOps, and application development for web and mobile applications
  • Expertise in using various security testing tools and frameworks (e.g., Metasploit, Burp Suite, Nmap, etc.) and manual techniques to conduct thorough security assessments
  • Proficiency in programming and scripting languages (e.g., Python, Go, Shell Script) to develop custom tools and automation scripts
  • Strong understanding of network protocols, operating systems, and common security technologies (SIEM, XDR/EDR, firewalls, IDS/IPS, WAFs, etc.)
  • In-depth knowledge of cybersecurity principles, attack vectors, and defense strategies. Familiarity with threat intelligence and risk assessment methodologies, OWASP, Cloud Security best practices
  • Excellent analytical and problem-solving abilities, with a proactive approach to identifying and mitigating security risks
  • Effective verbal and written communication skills, with the ability to convey complex technical concepts to both technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Lead and conduct penetration testing and red teaming activities against our organization's networks, applications, and physical security
  • Perform comprehensive security assessments to identify vulnerabilities and potential weaknesses
  • Develop realistic attack scenarios based on current threat intelligence and industry best practices
  • Simulate sophisticated attack techniques to identify gaps in our security controls and defenses
  • Conduct in-depth vulnerability assessments and risk analyses, utilizing various security testing tools and manual techniques
  • Provide detailed reports outlining identified vulnerabilities and recommended remediation actions
  • Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and attack techniques
  • Continuously monitor emerging trends and industry developments to inform our security strategies
  • Collaborate with the security team and other stakeholders to review and improve our organization's security architecture, ensuring it aligns with industry standards and best practices
  • Assist the incident response team in handling cybersecurity incidents, performing forensic investigations, and providing expertise on the adversary's techniques and tactics
  • Fulltime
Read More
Arrow Right

Principal Software Engineer - Red Team

The ‘Microsoft Red Team Engineering’ team develops red team tools for use by hum...
Location
Location
United States , Multiple Locations
Salary
Salary:
139900.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science or related technical field AND 6+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter
Job Responsibility
Job Responsibility
  • Design, implement, and support AI-driven red team services using generative as well as traditional AI techniques
  • Research, experiment with, and productionize frontier AI capabilities and design patterns
  • Research the latest attack techniques used by internal red teams and external threat actors
  • Contribute to red team tools for use by both human operators and AI red teaming services
  • Support partner development teams in contributing to our services and tools
  • Partner with internal defensive security teams to improve their detection, investigation, and response capabilities
  • Build strong relationships with your peers through design, code reviews, and mentoring
  • Fulltime
Read More
Arrow Right

Privacy Engineer, Red Team

Meta's Privacy Red Team is seeking experienced, passionate ethical hackers who t...
Location
Location
United States , Menlo Park
Salary
Salary:
154000.00 - 217000.00 USD / Year
meta.com Logo
Meta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years experience in a related discipline such as red teaming, penetration testing, vulnerability research, product security or security/privacy research
  • 3+ years hands-on offensive testing skills (e.g. offensive security, pentesting, red teaming, vulnerability research, etc.)
  • 2+ years experience of scripting (PHP, Python, Perl, Ruby, etc.)
  • Communication experience with researchers, engineering and product teams
Job Responsibility
Job Responsibility
  • Execute technical, hands-on, offensive privacy testing to identify and exploit privacy weaknesses
  • Work with cross-functional teams to drive remediation of privacy weaknesses
  • Effectively communicate findings from operations to a technical audience
  • Continuously identify and test ways that we can be better by improving team processes
  • Be an advocate for best practice in protecting user data against privacy threat actors
  • Planning and leading campaign-style red team operations testing response teams
What we offer
What we offer
  • bonus
  • equity
  • benefits
Read More
Arrow Right

Security Engineer - Red Team

About Workato: Workato transforms technology complexity into business opportunit...
Location
Location
Spain , Barcelona
Salary
Salary:
Not provided
workato.com Logo
Workato
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, or related technical field
  • 5+ years in cybersecurity with a focus on offensive security, penetration testing, or red team operations
  • Advanced penetration testing certifications (OSCP, OSCE, GPEN, GXPN, or equivalent)
  • Deep expertise in cloud security testing, particularly AWS environments
  • Proficiency in exploitation frameworks and tools (Nuclei, Metasploit, Burp, Cobalt Strike, custom tooling)
  • Scripting and automation skills (Python, Go, Bash, or similar)
  • Hands-on experience with vulnerability research and exploit development
  • Knowledge of threat modeling methodologies and attack path analysis
Job Responsibility
Job Responsibility
  • Join our Product Security team as a Security Engineer - Red Team and help secure the future of AI automation through offensive security operations
  • Conduct red team exercises and penetration tests to simulate real-world attacks and validate defensive controls
  • Perform vulnerability research and exploitation to validate attack paths and contribute to the security community
  • Collaborate on threat modeling to anticipate attacker techniques and strengthen defensive strategies
  • Partner with Security Operations and Bug Bounty teams to enhance detection, response, and organizational resilience
  • Coordinate external red team and penetration testing engagements and third-party security assessments
  • Develop automated tools and frameworks to scale offensive security operations across systems and applications
Read More
Arrow Right

Security Engineer - Red Team

Join our Product Security team as a Security Engineer - Red Team and help secure...
Location
Location
Spain; Portugal
Salary
Salary:
Not provided
workato.com Logo
Workato
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, or related technical field
  • 5+ years in cybersecurity with a focus on offensive security, penetration testing, or red team operations
  • Advanced penetration testing certifications (OSCP, OSCE, GPEN, GXPN, or equivalent)
  • Deep expertise in cloud security testing, particularly AWS environments
  • Proficiency in exploitation frameworks and tools (Nuclei, Metasploit, Burp, Cobalt Strike, custom tooling)
  • Scripting and automation skills (Python, Go, Bash, or similar)
  • Hands-on experience with vulnerability research and exploit development
  • Knowledge of threat modeling methodologies and attack path analysis
Job Responsibility
Job Responsibility
  • Adversarial Exercises and Penetration Testing: Conduct red team exercises and penetration tests to simulate real-world attacks and validate defensive controls
  • Exploitation and Vulnerability Research: Perform vulnerability research and exploitation to validate attack paths and contribute to the security community
  • Threat Modeling and Attack Simulation: Collaborate on threat modeling to anticipate attacker techniques and strengthen defensive strategies
  • SecOps and Bug Bounty Collaboration: Partner with Security Operations and Bug Bounty teams to enhance detection, response, and organizational resilience
  • External Testing Coordination: Coordinate external red team and penetration testing engagements and third-party security assessments
  • Security Automation and Tooling: Develop automated tools and frameworks to scale offensive security operations across systems and applications
What we offer
What we offer
  • vibrant and dynamic work environment
  • multitude of benefits they can enjoy inside and outside of their work lives
Read More
Arrow Right

Security Engineer - Red Team

Join our Product Security team as a Security Engineer - Red Team and help secure...
Location
Location
Portugal , Lisbon
Salary
Salary:
Not provided
workato.com Logo
Workato
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, or related technical field
  • 5+ years in cybersecurity with a focus on offensive security, penetration testing, or red team operations
  • Advanced penetration testing certifications (OSCP, OSCE, GPEN, GXPN, or equivalent)
  • Deep expertise in cloud security testing, particularly AWS environments
  • Proficiency in exploitation frameworks and tools (Nuclei, Metasploit, Burp, Cobalt Strike, custom tooling)
  • Scripting and automation skills (Python, Go, Bash, or similar)
  • Hands-on experience with vulnerability research and exploit development
  • Knowledge of threat modeling methodologies and attack path analysis
Job Responsibility
Job Responsibility
  • Adversarial Exercises and Penetration Testing: Conduct red team exercises and penetration tests to simulate real-world attacks and validate defensive controls
  • Exploitation and Vulnerability Research: Perform vulnerability research and exploitation to validate attack paths and contribute to the security community
  • Threat Modeling and Attack Simulation: Collaborate on threat modeling to anticipate attacker techniques and strengthen defensive strategies
  • SecOps and Bug Bounty Collaboration: Partner with Security Operations and Bug Bounty teams to enhance detection, response, and organizational resilience
  • External Testing Coordination: Coordinate external red team and penetration testing engagements and third-party security assessments
  • Security Automation and Tooling: Develop automated tools and frameworks to scale offensive security operations across systems and applications
Read More
Arrow Right