OnSecurity is looking for a full-time Security Engineer, prefereably in the Bristol area. This role is a permanent full time position.

About OnSecurity

OnSecurity is a cybersecurity scale-up with a fast growing client base, a suite of security products and a solid penetration testing team. We’re unique in our platform and data driven approach in the industry. Our entire service and product offerings are facilitated through our web applications and microservices. We love trying things that haven’t been done before.

Role Overview

You’ll be working with our existing Security Engineering team to design and implement solutions for automating the identification and reporting of vulnerabilities.

The current team consists of one full time Security Engineer, and two Penetration Testers that dedicate some of their time to our Security Engineering initiatives.

Your responsibilities will include:

• Developing scripts to identify common vulnerabilities
• Working on Ranger, the system which powers our attack surface management platform
• Building entirely new service offerings for our clients and pentesters
• Creating integrations between our innovative pentest delivery platform and common security tools
• Leveraging LLMs to aid in the reporting of issues
• Interesting projects that will be be beneficial to our goals

Experience

We’re looking for someone with a few years of experience in Cyber Security or Software Development. For a candidate with Cyber Security experience, we would expect strong development skills, but professional experience is not necessarily required. Likewise, we would also love to hear from developers with hobbyist levels of experience in security (i.e. HackTheBox, Bug Bounty, etc).

If you are a competent developer, we are not necessarily concerned if you lack familiarity with the technologies listed below. You will have an opportunity to learn on the job.

Required Skills

• Backend development
• Practical Experience with Web Application Security (OWASP Top 10)