Offensive Security and Threat Intelligence Specialist

Corporate Hub
Salary: £46,743
Band: UKRI Band E
Contract Type: Open Ended – Permanent (Compressed hours & flexible working patterns available)
Hours: Full-time (Flexible working available)
Location: Keyworth, Nottingham or Polaris House, Swindon- Hybrid working available

Closing Date: Sunday 14th June 2026

Step into the world where science meets robust information security. Protect the technology that powers groundbreaking discoveries and be part of the team that safeguards the future of Big Science. Here, you’ll collaborate with leading engineers, researchers, and technologists to tackle the most pressing security challenges in a fast-paced, innovative environment. Every day offers you the chance to defend vital data and systems, ensuring that the pursuit of scientific excellence continues securely and seamlessly.

Discover the difference you can make when you bring your expertise in information security to an organisation at the forefront of global research - working alongside some of the brightest minds and most advanced facilities in the world.

Security  

As a minimum, due to the nature of this role, candidates must be eligible for clearance in line with UK National vetting guidelines and willing to undertake the process. Please indicate eligibility in the written submission. Candidates not meeting this level of clearance will not be considered. 

The level of clearance required is security check  

About the role

The UKRI CIO Group plays a pivotal role in managing and optimising the organisations critical enterprise technical services that underpin and enable UKRI’s business capabilities. Within the group a team of Information Security Experts support the delivery of modern, secure, resilient and scalable services across a larger federated team of Digital, Data and Technology professionals to deliver impact across the organisation and the wider UK research and innovation system.

Join us for this rare opportunity to apply your experience in offensive security and threat intelligence in a dynamic, fast-paced security operational and strategic role in an organisation at the heart of research and innovation in the UK. Your broad remit is to identify real-world risks to diverse technical landscapes, uncovering security vulnerabilities, actively exploiting findings, assessing additional impacts through post-exploitation, and providing proactive advice to teams on the most effective remediation strategies. The role encompasses the full scope and delivery of penetration testing, including zero-knowledge network assessments, insider threat evaluations, credentialed application exploitation, and rigorous testing of human and physical security controls across the UKRI estate. In addition to these offensive security responsibilities, the specialist manages the external penetration testing call-off contract to ensure that UKRI receives high-quality, tailored assessments both internally and externally, supporting a continuous programme of security improvement.

Your responsibilities:

• Complete targeted penetration tests and red team exercises to identify exploitable vulnerabilities. 
• Develop and maintain offensive tooling to simulate adversary tactics and techniques. 
• Monitor and analyse threat intelligence feeds to identify emerging threats and relevant TTPs. 
• Produce technical threat reports and briefings to inform security posture and decision-making. 
• Conduct proactive threat hunting based on intelligence-led hypotheses and anomaly detection. 
• Support risk assessments with insights from offensive operations and threat landscape analysis.

Personal Specification 

The below criteria will be scored during Shortlisting (S), Interview (I) or both (S&I).

Applicants will be able to demonstrate skills in line with the cyber security risk manager roles using the Government Security Profession career framework. 

Essential

• Significant hands‑on professional experience delivering penetration testing and/or red‑team activity across enterprise environments. (S&I)
• Deep technical capability across mixed technology environments, including operating systems, networking, identity/authentication, and cloud platforms (e.g. Azure and/or AWS). (S&I)
• Demonstrable proficiency using common offensive security tools and techniques (e.g. Nmap, Burp Suite, Metasploit) to identify and exploit real‑world attack paths. (S&I)
• Ability to adapt quickly to new technologies, vulnerabilities, and offensive security techniques. (S&I)
• Proven ability to produce clear, high‑quality penetration testing reports that articulate risk, impact, and remediation for technical and non‑technical audiences. (I)
• Strong analytical and problem‑solving skills, with sound professional judgement when assessing security weaknesses and advising on pragmatic remediation. (I)
• Evidence of continued professional development in offensive security, demonstrated through relevant certifications, structured training, or equivalent practical experience. (S&I)
   

Application Guidance:

How to evidence the criteria:

You are encouraged to use the STAR method (Situation, Task, Action, Result) in the cover letter to evidence your ability to meet the ‘person specification’ criteria in the job description. Cover letters should be no more than two sides of A4 (minimum font size 11). For examples of the STAR method, please visit: The STAR method | National Careers Service’.

Behaviours:

We'll assess you against these behaviours during the selection process:

• Managing a quality service
• Changing and improving
• Delivering at pace
• Seeing the Big Picture
   

Selection Process Details

We know different organisations use different processes, so we wanted you to know what to expect from us.

Stage 0 - Pre-application 

If you would like to find out more about the role we encourage prospective applicants to get in touch with us to discuss the opportunity. 

Stage 1 - Written Submission

Candidates will need to submit a written application which consists of 2 parts:

• A CV – this should contain your work experience and any skills, qualifications and accomplishments relevant to the jobs you have completed based on the shortlisting criteria.
• A personal statement (max. 1000 words) - this statement should be used to provide examples of how you meet the essential criteria listed in the shortlisting criteria.

Applications will be reviewed for suitability and shortlisted.

Stage 2 - Interview

Applicants who are successful at stage 1 will be invited to interview. The interview will generally be 1 hour in length. The interview will consist of competency-based questions. A presentation will be required.

Stage 3 – Outcome

The panel outcome is decided and the successful candidate will be offered verbally first, followed by a formal offer letter.  

Benefits

We recognise and value our employees as individuals and aim to provide a favourable pay and rewards package. We are committed to supporting employees' development and promote a culture of continuous learning

A list of benefits below:

• An outstanding defined benefit pension scheme
• 30 days' annual leave in addition to 10.5 public and privilege days (full time equivalent)
• Employee discounts and offers on retail and leisure activities
• Employee assistance programme, providing confidential help and advice
• Flexible working options

Plus many more benefits and wellbeing initiatives that enable our employees to have a great work life balance!

For further information on our benefits please see:

Benefits of working at UK Research and Innovation (UKRI) 

We encourage candidates to apply as soon as possible, as we reserve the right to close this vacancy early.

Please apply online, if you experience any issue applying, please contact Recruitment@ukri.org

Please note, if you will require sponsorship to work in the UK, as part of your sponsorship application, you and any dependants travelling with you, will be required to pay costs directly to The Home Office for the application before you start your role with us. UKRI is normally able to reimburse some, or all of these fees after you have become an employee and this can be discussed with the Hiring Manager. For more information, please visit https://www.gov.uk/skilled-worker-visa/how-much-it-costs or contact Recruitment@ukri.org.

UKRI - UK Research and Innovation

UKRI is an organisation that brings together the seven disciplinary research councils, Research England and Innovate UK. Together, we build an independent organisation with a strong voice and vision ensuring the UK maintains its world-leading position in research and innovation.

Supporting some of the world’s most exciting and challenging research projects, we develop and operate some of the most remarkable scientific facilities in the world. We are pushing the frontiers of human knowledge through fundamental research and delivering benefits for UK society and the economy through world-class research, skills and business-led innovation.

More information can be found at www.ukri.org.

Choosing to come to work at UKRI means that you will have access to a whole host of benefits from a defined benefit pension scheme, excellent holiday entitlement, access to employee shopping/travel discounts and salary sacrifice cycle to work scheme.  For more details, visit benefits of working for UKRI.

How we support EDI in the workforce

At UKRI, we believe that everyone has a right to be treated with dignity and respect, and to be provided with equal opportunities to thrive and succeed in an environment that enables them to do so. We also value diversity of thought and experience within inclusive groups, organisations and the wider community. For further information, please visit ‘How we support EDI in the workforce’.

Disability Confident Employer

As users of the disability confident scheme, any candidate who opts into the scheme and best meets the essential criteria, will be shortlisted for interview. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

How to apply

Online applications only preferred for this role. Please submit a CV and covering letter which clearly outlines how you fulfil the criteria specified along with your motivation for UKRI and the role. Ensure that the job reference number is included in the filename description of each document uploaded. Note that failure to address the above criteria or submit an application without a covering letter may result in the application not being considered. Assessment will only be based upon the content of your submitted covering letter and CV and not the ‘experience’ section of the application.

UKRI seeks to ensure it creates and maintains a system of openness, fairness and inclusion – a collaborative, trusted environment, which is attractive to and accessible to everyone who is interested in developing their career with us.

Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be rejected and internal candidates may be subject to disciplinary action.

As part of the pre-employment checks there is a requirement to undergo Baseline Personnel Security Screening. BPSS is a pre-condition of employment and failure to achieve it may mean that the employment offer is rescinded. UKRI reserves the right to run, or re-run, security clearance as required during the course of employment.