Offensive Security Lead (Fintech)

TL;DR

Offensive Security Lead (Fintech): Driving and executing the offensive security strategy across a digital investment platform with an accent on red teaming, adversary emulation, and securing the product innovation pipeline. Focus on embedding secure-by-design principles, leading automated security testing, and ensuring resilient defense across cloud and mobile environments.

Location: Must be based in or commutable to Bristol, UK. This role offers a hybrid flexible working pattern.

Company

hirify.global is the UK’s number 1 investment platform for private investors, dedicated to helping people save time, tax, and money through innovation and service.

What you will do

• Develop and execute the offensive security strategy aligned with digital transformation goals.
• Lead and conduct advanced penetration testing, red teaming, and adversary emulation exercises.
• Collaborate with defensive teams on purple team assessments to enhance detection capabilities.
• Manage the bug bounty program and oversee the remediation of identified vulnerabilities.
• Partner with product and engineering teams to embed security into agile and DevOps workflows.
• Advise leadership on emerging threats and translate CISO strategy into actionable roadmaps.

Requirements

• Extensive experience in offensive security, red teaming, and penetration testing within regulated environments.
• Technical proficiency in web, cloud, container, and mobile security domains.
• Hands-on experience with automation tools like Terraform, Packer, and Ansible.
• Proven ability to develop and operate automated security testing pipelines.
• Strong understanding of UK financial services regulations and industry security standards.
• Excellent leadership skills with experience managing and developing multidisciplinary security teams.

Nice to have

• Relevant industry certifications such as GIAC, OSCP, CREST, CISSP, or CISM.

Culture & Benefits

• Competitive salary with discretionary annual bonus and pay reviews.
• Comprehensive health package including private medical insurance, health screening, and cash plans.
• Supportive work environment with mental health counseling and fitness access via Wellhub.
• Generous pension scheme with up to 11% employer contribution.
• Flexible hybrid working model and 25 days holiday plus bank holidays.
• Opportunities for professional growth through learning, training, and two paid volunteering days per year.

Hiring process

• Introductory call to discuss the role and fit.
• Technical review focusing on offensive security expertise.
• Leadership review to assess strategic impact and team management capabilities.