Offensive Security Manager

We’re on a mission to make money work for everyone.

We’re waving goodbye to the complicated and confusing ways of traditional banking.

With our hot coral cards and get-paid-early feature, combined with financial education on social media and our award winning customer service, we have a long history of creating magical moments for our customers!

We’re not about selling products - we want to solve problems and change lives through Monzo ️

At Monzo, our Offensive Security team is an integral part of our wider Security Collective, a passionate group dedicated to enhancing Monzo's security posture and ensuring a safer environment for our customers and employees. We're the "breakers, not makers" - a team focused on finding vulnerabilities, proving their exploitability, and then collaborating with other teams to get them fixed. We don't write the fixes ourselves, but we provide expert advice to mitigate issues. We're also deeply committed to fostering diversity within our team, believing that a variety of perspectives makes us stronger.

• Leading and scaling our dynamic Offensive Security team
• Owning and continually improving our team's processes and methodologies
• Acting as the main point of contact for other teams, fostering collaboration and sharing offensive security knowledge
• Engaging in strategic planning for the team's long-term direction
• Reviewing bug bounty reports and making authoritative decisions as well as scaling the program beyond where it is now
• Performing hands-on security testing across a broad range of areas, from web applications to red teaming
• Mentoring junior team members, guiding their development and ensuring the team's ongoing success
• You have significant experience in security testing
• A proven track record of managing and growing high-performing teams
• You possess practiced competence with red teaming methodologies and experience using the MITRE ATT&CK framework for adversary simulations
• You're skilled in Objective-C, Go, Bash, Python, or JXA, and have knowledge of macOS C2 frameworks and hacking techniques
• You're a creative problem-solver with an inquisitive and curious nature, always seeking to learn and improve
• You're passionate about security testing and can think like an attacker

Not ticking every box? That’s totally okay! Studies show that women and people of colour might hesitate to apply unless they meet every single requirement. At Monzo, we’re dedicated to creating a diverse and welcoming team. If you’re passionate about this role and keen to learn and grow with us, we encourage you to apply - even if you don’t have everything that's listed just yet. Drop us your application, we’d love to hear from you!

What’s in it for you

This role can be based in our London office, but we're open to distributed working within the UK (with ad hoc meetings in London)

We offer flexible working hours and trust you to work enough hours to do your job well, and at times that suit you and your team.

£1,000 learning budget each year to use on books, training courses and conferences.

We will set you up to work from home; all employees are given Macbooks and for fully remote workers we will provide extra support for your work-from-home setup.

The application journey has 3 key steps

• 30 minute call with the Recruiter
• 45 minute initial call with the Hiring Manager
• 2 hours of technical and behavioural interviews

This process should take around 2-3 weeks - your schedule is really important to us, so we promise to be as flexible as possible!

We have some guidelines on using Artificial Intelligence (AI) to ace an application and interview at Monzo. You can read them here.

You’ll hear from us throughout the application process, but if you’ve got any questions, please reach out to business-hiring@monzo.com. You can also use this email address to let us know if there’s anything we can do to make the process easier for you because of disability, neurodiversity or anything else.

We’ll only close this role once we have enough applications for the next stage. Please submit your application as soon as possible to make sure you don’t miss out.

#LS-OS1 #LI-REMOTE

Equal opportunities for everyone

Diversity and inclusion are a priority for us and we’re making sure we have lots of support for all of our people to grow at Monzo. At Monzo, we’re embracing diversity by fostering an inclusive environment for all people to do the best work of their lives with us. This is integral to our mission of making money work for everyone. You can read more in our blog , 2024 Diversity and Inclusion Report and 2024 Gender Pay Gap Report.

We’re an equal opportunity employer. All applicants will be considered for employment without attention to age, ethnicity, religion, sex, sexual orientation, gender identity, family or parental status, national origin, or veteran, neurodiversity or disability status.

If you have a preferred name, please use it to apply. We don't need full or birth names at application stage

*

indicates a required field

First Name *

Last Name *

Email *

Phone *

Resume/CV *

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Select...

A US Person is defined as someone who:

• was born in the United States (US)
• has at least 1 parent who was born in the US
• is a naturalised citizen of the US
• is a green card holder
• is a US tax resident

Keeping your data safe is really important to us. * Select...

Please confirm your UK Right to Work status. * Select...

We legally have to verify your Right to Work in the UK before you can start working for us. We're asking for this information now so we know later what type of right to work check we need to do. Your answer to this question won't affect the outcome of your application, unless you'd need visa sponsorship but are applying to a role we can't sponsor.

If you’d like to, please share your preferred pronouns (eg. they/them/theirs, she/her/hers).

If you'd like to, please spell out your name how it's pronounced so we know how to say it.

Our goal at Monzo is to make money work for everyone. To do that, working at Monzo must work for everyone. We want to create an equitable, engaged and innovative workplace which gives people from all backgrounds the support they need to thrive and grow.

Making Monzo work for everyone starts right at the beginning of every Monzonaut's journey: when they apply to work here. This demographic survey will help us better understand the people who apply to work at Monzo. It'll help us see how different groups progress through our hiring process, and where we need to make improvements to be more inclusive. If you choose to fill it out, all of the information you give us is:

• Voluntary . And we've included a "prefer not to say" option for every question. It'd be helpful if you still fill out the survey even if you choose "prefer not to say" for every question, as it's useful for us to understand & record this. We won't know if you choose to fill this survey in or not.
• Anonymous to Monzo . We can't tie your responses to you and they won't make a difference to the outcome of your application. We'll only use grouped responses for equal opportunities monitoring in our hiring process.

By filling out this survey, you agree that we can use your responses for the purposes we've mentioned above. You are not letting us know if we need to make any adjustments to the hiring process because of disability or neurodiversity - to do this please email us.

How would you describe your gender identity? Select...

Do you identify as transgender? Select...

What's your sexual orientation? Select...

Do you identify as having a disability? Select...

Do you consider yourself to be neurodivergent? Select...