Offensive Application Security Engineer

Company Description

We have an exciting opportunity to join our Manchester\-based application security business as a member of the Application Security Engineering team. Cytix is a platform that threat models development tickets and creates security testing plans that include both manual and automated testing.

In this role, you won't be confined to traditional 4\+1 web applications. We're breaking away from the constraints of CHECK or CE\+ standards, and we're not interested in producing lengthy PDF reports. Instead, our focus is on seamlessly integrating continuous penetration testing into our customers' Software Development Life Cycle (SDLC).

Collaborating closely with both our in\-house development team and clients, you'll play a pivotal role in shaping the evolution of our products and services, helping to deliver the next generation of continuous penetration testing.

As a well\-funded cybersecurity start\-up doing something innovative, this opportunity is genuinely one\-of\-a\-kind for the right individual.

Role Description

This is a full\-time hybrid role for a Security Consultant specializing in Application Security (AppSec) Testing, located in Manchester with flexibility for remote work. Responsibilities include:

• Penetration Testing web applications, APIs, mobile applications, etc for our clients across a range of industries.


• Working with stakeholders of both a technical and non\-technical nature to assist in vulnerability identification and remediations.


• Performing risk reviews of application changes as part of our continuous security testing process.

You will collaborate closely with developers and other teams to strengthen application security, drive continuous improvement, and enhance organizational resilience to cybersecurity threats.

• Up to £50k (*reviewed regularly*)


• EMI share options


• *Pension:* 8% (3% employer, 5% employee)

*Discretionary benefits*

• Private Healthcare (inc. dental, optical, and hearing)


• Unlimited Holidays

*Location*

• Office / Hybrid (Manchester City Centre)


• Permanent, full\-time (40hrs/week)

*Exclusions*

• No agencies


• No STC/contractors


• No visa sponsorships

Requirements:

• 2\+ years in Penetration Testing, Application Security Engineering, or a similar offensive security role.

Advantageous Qualifications:

While certifications are not required to apply for this role, the following certifications are recognised as advantageous when applying: CREST CRT, CPSA, OSCP, OSWA, OSWE

Pay: £40,000\.00\-£50,000\.00 per year

Benefits:

• Company pension


• Discounted or free food


• Employee stock ownership plan


• Private medical insurance


• Unlimited paid holidays

Application question(s):

• Do you require a visa sponsorship?

Language:

• English (Native / Bilingual) (required)

Work authorisation:

• United Kingdom (required)

Work Location: Hybrid remote in Manchester M2 4JQ

This listing is from indeed. View original listing ↗