Senior Red Team Engineer- E4

As a Senior Red Team Engineer, you’ll be a technical red-team leader within a wider offensive security function that will develop our roadmap and enhance our execution of sophisticated red team operations across cyber operations and physical security assessments. Through technical testing assurance activities, your mission is to drive continuous improvement of our defensive operations and testing methodologies within Nationwide.  There is a strong culture of learning and challenge, operations will sometimes be run in house sometimes run in conjunction with partners to facilitate different perspectives and learning

This role resides within Security and Resilience directorate, together we serve over 20 million customers – shaping the financial future for nearly a third of the UK’s population. It is essential that we set the highest standards, to actively minimise cyber threats and keep our customers safe and secure. You will work with other Cyber Operations leaders to uplift cyber security capabilities, processes and controls across the society.

We are happy to consider flexible working approaches to help you perform at your best.

At Nationwide we offer hybrid working wherever possible. More rewarding relationships are supported through our hybrid approach, bringing colleagues together across our UK wide estate, whilst also supporting generous access to home working. We value our time in the office to solve problems, to learn, and to feel connected.

For this job you'll spend at least two days per week, or if part time you'll spend 40% of your working time, based at either our Swindon, London, Manchester, Northampton, Dunfermline or Bournemouth office. If your application is successful, your hiring manager will provide further details on how this works. You can also find out more about our approach to hybrid working here. 

If we receive a high volume of relevant applications, we may close the advert earlier than the advertised date, so please apply as soon as you can.

What you’ll be doing

• This new role is the ideal opportunity for a red teamer who would like to embrace the challenge of helping us establish an internal red team capability to complement our wider offensive security team. Our threat-led approach means you will have the opportunity to work with our security research and innovation function, pushing the possibilities of red team operations.
• You will have experience of leading a team, setting their direction, measure their effectiveness and be prepared to innovate to help shape the services we provide to Nationwide. You will help establish our internal red team and provide constant challenge to our Security Operations Centre to ensure they have the muscle memory to respond to a real attack.
• We’re looking for someone with real depth in all areas of red teaming (e.g., evasive payload development, infrastructure, Windows internals, social engineering, etc.). With your hands on experience and deep understanding of attacker tradecraft, you’ll be comfortable building your own tooling and have the mindset of someone who enjoys thinking like an adversary. 
• This is a rare opportunity to work in a mature, highly capable offensive security team that focuses exclusively on adversary simulation. This is a hands-on technical role, suited to someone who has already spent several years in dedicated offensive role that wants to operate in a high-trust, high-impact environment.

About you

The ideal candidate will have a strong background in offensive security and can evidence. 

• Experience of leading and managing a high performing red team in a large organisation.
• Knowledge of preventative and detective controls (EDR, firewalls, IDS, IPS, anti-virus, etc)
• Experience of building and manging security tooling (e.g., C2 frameworks, EDR evasion, malware development, fuzzing, and reverse engineering).
• Strong programming skills in Python, C/C++, or Go for exploit development, automation, and tool creation.
• Experience developing and weaponizing exploits for vulnerabilities across cloud environments, applications, and infrastructure.
• Strong understanding of modern attack techniques, including phishing, persistence mechanisms, privilege escalation, and lateral movement.
• Excellent problem-solving skills, the ability to think like an adversary and comfortable challenging the status quo.
• Strong communication skills with an ability to articulate and visually present complex findings to technical and non-technical audiences at levels.
• Familiarity with established frameworks such as TIBER-EU or MITRE ATT&CK
• Relevant industry qualification e.g; CRTO, CRTL, CCRTS, CRTM, OSCE
• Be comfortable working both independently, and collaboratively in a diverse team.

Our customer first behaviours put customers and members at the heart of how we work together. They are the set of behaviours that every colleague needs to display, in every role: 

• Feel what customers feel - We step into our customers’ shoes, using their feedback and insights to empathise with them and to understand their needs, so that every decision we make starts and finishes with our customers in mind

• Say it straight - We are brave in speaking out and saying what we think – we’re honest and direct with good intent, openly sharing diverse perspectives to reach the best conclusions and using language everyone can understand
• Push for better - We don’t settle for mediocrity, we challenge the status quo, taking responsibility for continuous improvement and personal development
• Get it done - We prioritise what will have the greatest impact, we are decisive, and we take accountability for delivering brilliant customer outcomes.

You can strengthen your application by showing how our customer first behaviours resonate with you, and where you may have already demonstrated these.

The extras you’ll get

There are all sorts of employee benefits available at Nationwide, including:

• 30 days holiday, pro rata

• Access to fully funded private medical insurance

• A personal pension – if you put in 7% of your salary, we’ll top up by a further 16%

• Access to an annual performance related bonus

• Access to training to help you develop and progress your career

• A great selection of additional benefits through our salary sacrifice scheme

• Life assurance worth 8x your salary

• Wellhub – access to a range of free and paid options for health and wellness

• Up to 2 days of paid volunteering a year

What to do next

If this role is for you, please click the ‘Apply Now’ button. You’ll need to attach your up-to-date CV and answer a few quick questions for us. 

We respond to everyone, so we will be in contact shortly after the closing date to let you know the outcome of your application. 

Banking – but fairer, more rewarding, and for the good of society

We forge our own path at Nationwide.

As a mutual, we’re owned by our members - those customers who bank, save or have a mortgage with us. We challenge the financial sector status quo. We don’t see customers as the engine of our own profit. We share our profits with them and put their needs first. Always there when they need us. Supporting them and their lives.

If you’re inspired by fairer finances, passionate about making a meaningful impact, and truly care about our customers, you’re one of us.

At Nationwide, you are challenged to grow and rewarded for doing so. Valued. Recognised. Inspired to be your best. As a community we want our working lives to count. As a team, we celebrate what we achieve. As a standard-setter, we work for the good of customers, communities, and broader society.

We are Purpose-driven. Uncompromisingly Customer. Unstoppably Nationwide.