Offensive Security Lead
Role Summary
Join as an Offensive Security Lead in the UK to enhance cloud security and lead a red team in a fast-paced, remote environment.
Key Responsibilities
Build, lead, and mentor an internal red team while establishing scalable offensive security practices and methodologies.
Design, execute, and continuously improve penetration testing and adversarial simulation programs across cloud infrastructure, AI platforms, networking, storage, orchestration, and internal systems.
Validate and enhance Secure SDLC threat models through continuous security assessments, automating routine validations where appropriate.
Conduct advanced red team engagements to identify vulnerabilities affecting business-critical systems and collaborate with detection and response teams during purple team exercises.
Research emerging attack techniques targeting GPU infrastructure, AI inference platforms, virtualization, tenant isolation, and cloud-native technologies.
Perform security assessments of new products and infrastructure changes before release to identify and mitigate risks early.
Deliver clear, prioritized reports with practical remediation guidance for both technical teams and senior stakeholders.
Continuously improve offensive security tooling, processes, and capabilities to support a rapidly evolving technology environment.
Minimum Requirements
6+ years of experience in offensive security, penetration testing, red teaming, or adversary simulation, including previous leadership or mentoring responsibilities.
Strong expertise in attacking cloud-native environments, including Kubernetes, cloud identity and access management, virtualization, container security, and privilege escalation techniques.
Deep understanding of the full attack lifecycle, including initial compromise, persistence, lateral movement, privilege escalation, and data exfiltration.
Proficiency in developing offensive security tools or automation using languages such as Python, Go, or similar.
Experience planning and executing purple team exercises while working collaboratively with defensive security teams.
Excellent analytical, communication, and reporting skills, with the ability to present technical risks in a business-focused manner.
Experience with AI infrastructure, GPU clusters, reverse engineering, exploit development, application security, kernel exploitation, vulnerability research, cloud internals, or security research presentations is considered an advantage.
Working Conditions
Competitive compensation package.
Equity participation opportunities.
Fully remote and flexible working environment.
High level of ownership and autonomy.
Career development and continuous learning opportunities.
Collaborative international team working on innovative AI infrastructure.
Opportunity to build a security function from the ground up and make a lasting impact.
Exposure to complex, large-scale cloud and AI security challenges.
\n
Eligibility Criteria
This position is remote, but explicit eligibility for international applicants, including those from Africa, is not stated.
⚠️ Disclaimer: PathwayAI Africa does not guarantee employment, scholarships, visas, or admission. Always verify all opportunities through official sources before submitting personal information.
Check if You Qualify
Upload your CV to compare it against this specific opportunity. You can still apply even if improvements are recommended.
