Senior Offensive Security Engineer

Our Offensive Security team

You'll be joining Monzo’s Offensive Security team, part of our wider Security collective. We're a team of curious, hands on security professionals who think like attackers to help keep Monzo and our customers safe. We work across everything from customer facing products and mobile apps to cloud infrastructure, internal systems, and emerging technologies like AI.

Our role is to find weaknesses before others do. Through security testing, red and purple teaming, and adversarial research, we uncover vulnerabilities, demonstrate real-world impact, and help teams build more secure systems. We work closely with engineers and security partners across Monzo, bringing an attacker mindset into the room and helping shape security decisions through collaboration, curiosity, and practical expertise.

You’ll play a key role by...

• Leading offensive security projects from initial idea through to execution and reporting
• Simulating real world attacks to uncover vulnerabilities across our systems, infrastructure, and products
• Partnering with engineering and security teams to improve detection, response, and resilience
• Bringing an attacker mindset into conversations - asking “what if?” and challenging assumptions
• Producing proof-of-concept exploits to clearly demonstrate risk and drive meaningful fixes
• Mentoring others in the team and acting as a highly independent technical lead on complex engagements

We’d love to hear from you if…

• You have a strong attacker mindset and are naturally curious about how systems can be broken
• You’ve got hands on experience in offensive security across areas like web, mobile, cloud, or infrastructure
• You’re comfortable working across modern tech stacks (e.g. Kubernetes, AWS/GCP, microservices) or excited to learn
• You can take ownership of ambiguous problems and drive them through to impactful outcomes