HackerOne is a global leader in Continuous Threat Exposure Management (CTEM). The HackerOne Platform unites agentic AI solutions with the ingenuity of the world's largest community of security researchers to continuously discover, validate, prioritize, and remediate exposures across code, cloud, and AI systems. Through solutions like bug bounty, vulnerability disclosure, agentic pentesting, AI red teaming, and code security, HackerOne delivers measurable, continuous reduction of cyber risk for enterprises. Industry leaders, including Anthropic, General Motors, Goldman Sachs, Lufthansa, Uber, UK Ministry of Defence, and the U.S. Department of Defense, trust HackerOne to safeguard their digital ecosystems. HackerOne was recognized in Gartner's Emerging Tech Impact Radar: AI Cybersecurity Ecosystem report for its leadership in AI Security Testing and has been named a Most Loved Workplace for Young Professionals (2024). HackerOne is at a pivotal inflection point in the security industry. Offensive security is no longer optional - it is the standard for forward-thinking companies that want to build trust and resilience in a world where AI-driven innovation and adversaries are moving faster than ever. With the industry shifting, HackerOne stands apart: we combine the ingenuity of the largest security research community with a best-in-class AI-powered platform, trusted by the world's top organizations. HackerOne Values HackerOne is dedicated to fostering a strong and inclusive culture. HackerOne is Customer Obsessed and prioritizes customer outcomes in our decisions and actions. We Default to Disclosure by operating with transparency and integrity, ensuring trust and accountability. Employees, researchers, customers, and partners Win Together by fostering empowerment, inclusion, respect, and accountability. Senior Product Designer, Agentic Vulnerability Elimination Remote Location: London, UK Position Summary HackerOne is seeking a Senior Product Designer to join our growing team focused on Agentic Vulnerability Elimination. In this role, you will design intelligent, AI-powered experiences that help customers identify, prioritize, and remediate vulnerabilities more effectively across the software development lifecycle. You will lead the design of complex product experiences from discovery through delivery, partnering closely with product managers and engineers across our UK and Netherlands teams. This is an opportunity to shape how AI agents and human workflows come together to eliminate vulnerabilities at scale, while delivering intuitive, high-impact user experiences. At HackerOne, we embrace a Flexible Work approach that gives us the freedom to do our best work while also fostering the connections and community that make us stronger. Reflecting this philosophy, this is a remote role targeted for candidates within 75 kilometers of London. We believe this balance of proximity and flexibility gives Hackeronies the chance to occasionally come together - fostering collaboration, connection, and in-person moments that enrich our culture - while still preserving the benefits of remote work. What You Will Do Design end-to-end product experiences for Agentic Vulnerability Elimination, from discovery through delivery, applying First Principles Problem Solving to break down complex security and AI-driven workflows into intuitive solutions Build and iterate on AI-powered user experiences, embedding an AI First mindset into design decisions and contributing to workflows that leverage LLMs and automation effectively Partner closely with product managers, engineers, and data partners across the UK and Netherlands to deliver high-quality, user-centered solutions that improve vulnerability remediation outcomes Use Data-Driven Decision Making to inform design choices, validate hypotheses through research and testing, and continuously improve product experiences based on measurable impact Demonstrate Change Agility by adapting designs in response to evolving product direction, emerging AI capabilities, and shifting customer needs while maintaining momentum Contribute to and evolve HackerOne's Design Language System, ensuring consistency and scalability across products Communicate design rationale, tradeoffs, and decisions clearly to stakeholders, balancing user needs, technical constraints, and business goals Mentor junior designers and contribute to a collaborative, feedback-driven design culture Minimum Qualifications 8+ years of UX and product design experience, preferably in B2B or enterprise software environments Demonstrated experience designing complex workflows and systems, with the ability to independently lead projects from concept to implementation Experience applying AI tools or designing AI-enhanced user experiences, with an understanding of responsible and effective usage Strong proficiency in user research, interaction design, prototyping, and usability testing, with the ability to translate insights into product improvements Preferred Qualifications Bachelor's degree in UX, HCI, design, or a related field Experience designing for cybersecurity, developer tools, or technical platforms (e.g., vulnerability management, DevSecOps, or similar domains) Familiarity with designing for AI agents, automation systems, or human-in-the-loop workflows Basic understanding of front-end development principles and constraints Compensation Bands: Tier Guide UK Tier: $100,000-$123,000 Job Benefits: Health (medical, vision, dental), life, and disability insurance Equity stock options Retirement plans Paid public holidays and unlimited PTO Paid maternity and parental leave Leaves of absence (including caregiver leave and leave under CO's Healthy Families and Workplaces Act) Employee Assistance Program Eligibility may differ by country We're committed to building a global team! For certain roles outside the United States, India, the U.K., and the Netherlands, we partner with as our Employer of Record (EOR). Visa/work permit sponsorship is not available. Employment at HackerOne is contingent on a background check. HackerOne is an Equal Opportunity Employer in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, pregnancy, disability or veteran status, or any other protected characteristic as outlined by international, federal, state, or local laws. This policy applies to all HackerOne employment practices, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship. HackerOne makes hiring decisions based solely on qualifications, merit, and business needs at the time. For US based roles only: Pursuant to the San Francisco Fair Chance Ordinance, all qualified applicants with arrest and conviction records will be considered for the position.
25/05/2026
Full time
HackerOne is a global leader in Continuous Threat Exposure Management (CTEM). The HackerOne Platform unites agentic AI solutions with the ingenuity of the world's largest community of security researchers to continuously discover, validate, prioritize, and remediate exposures across code, cloud, and AI systems. Through solutions like bug bounty, vulnerability disclosure, agentic pentesting, AI red teaming, and code security, HackerOne delivers measurable, continuous reduction of cyber risk for enterprises. Industry leaders, including Anthropic, General Motors, Goldman Sachs, Lufthansa, Uber, UK Ministry of Defence, and the U.S. Department of Defense, trust HackerOne to safeguard their digital ecosystems. HackerOne was recognized in Gartner's Emerging Tech Impact Radar: AI Cybersecurity Ecosystem report for its leadership in AI Security Testing and has been named a Most Loved Workplace for Young Professionals (2024). HackerOne is at a pivotal inflection point in the security industry. Offensive security is no longer optional - it is the standard for forward-thinking companies that want to build trust and resilience in a world where AI-driven innovation and adversaries are moving faster than ever. With the industry shifting, HackerOne stands apart: we combine the ingenuity of the largest security research community with a best-in-class AI-powered platform, trusted by the world's top organizations. HackerOne Values HackerOne is dedicated to fostering a strong and inclusive culture. HackerOne is Customer Obsessed and prioritizes customer outcomes in our decisions and actions. We Default to Disclosure by operating with transparency and integrity, ensuring trust and accountability. Employees, researchers, customers, and partners Win Together by fostering empowerment, inclusion, respect, and accountability. Senior Product Designer, Agentic Vulnerability Elimination Remote Location: London, UK Position Summary HackerOne is seeking a Senior Product Designer to join our growing team focused on Agentic Vulnerability Elimination. In this role, you will design intelligent, AI-powered experiences that help customers identify, prioritize, and remediate vulnerabilities more effectively across the software development lifecycle. You will lead the design of complex product experiences from discovery through delivery, partnering closely with product managers and engineers across our UK and Netherlands teams. This is an opportunity to shape how AI agents and human workflows come together to eliminate vulnerabilities at scale, while delivering intuitive, high-impact user experiences. At HackerOne, we embrace a Flexible Work approach that gives us the freedom to do our best work while also fostering the connections and community that make us stronger. Reflecting this philosophy, this is a remote role targeted for candidates within 75 kilometers of London. We believe this balance of proximity and flexibility gives Hackeronies the chance to occasionally come together - fostering collaboration, connection, and in-person moments that enrich our culture - while still preserving the benefits of remote work. What You Will Do Design end-to-end product experiences for Agentic Vulnerability Elimination, from discovery through delivery, applying First Principles Problem Solving to break down complex security and AI-driven workflows into intuitive solutions Build and iterate on AI-powered user experiences, embedding an AI First mindset into design decisions and contributing to workflows that leverage LLMs and automation effectively Partner closely with product managers, engineers, and data partners across the UK and Netherlands to deliver high-quality, user-centered solutions that improve vulnerability remediation outcomes Use Data-Driven Decision Making to inform design choices, validate hypotheses through research and testing, and continuously improve product experiences based on measurable impact Demonstrate Change Agility by adapting designs in response to evolving product direction, emerging AI capabilities, and shifting customer needs while maintaining momentum Contribute to and evolve HackerOne's Design Language System, ensuring consistency and scalability across products Communicate design rationale, tradeoffs, and decisions clearly to stakeholders, balancing user needs, technical constraints, and business goals Mentor junior designers and contribute to a collaborative, feedback-driven design culture Minimum Qualifications 8+ years of UX and product design experience, preferably in B2B or enterprise software environments Demonstrated experience designing complex workflows and systems, with the ability to independently lead projects from concept to implementation Experience applying AI tools or designing AI-enhanced user experiences, with an understanding of responsible and effective usage Strong proficiency in user research, interaction design, prototyping, and usability testing, with the ability to translate insights into product improvements Preferred Qualifications Bachelor's degree in UX, HCI, design, or a related field Experience designing for cybersecurity, developer tools, or technical platforms (e.g., vulnerability management, DevSecOps, or similar domains) Familiarity with designing for AI agents, automation systems, or human-in-the-loop workflows Basic understanding of front-end development principles and constraints Compensation Bands: Tier Guide UK Tier: $100,000-$123,000 Job Benefits: Health (medical, vision, dental), life, and disability insurance Equity stock options Retirement plans Paid public holidays and unlimited PTO Paid maternity and parental leave Leaves of absence (including caregiver leave and leave under CO's Healthy Families and Workplaces Act) Employee Assistance Program Eligibility may differ by country We're committed to building a global team! For certain roles outside the United States, India, the U.K., and the Netherlands, we partner with as our Employer of Record (EOR). Visa/work permit sponsorship is not available. Employment at HackerOne is contingent on a background check. HackerOne is an Equal Opportunity Employer in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, pregnancy, disability or veteran status, or any other protected characteristic as outlined by international, federal, state, or local laws. This policy applies to all HackerOne employment practices, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship. HackerOne makes hiring decisions based solely on qualifications, merit, and business needs at the time. For US based roles only: Pursuant to the San Francisco Fair Chance Ordinance, all qualified applicants with arrest and conviction records will be considered for the position.
.Cyber Security Business Information Officer (BISO) page is loaded Cyber Security Business Information Officer (BISO)locations: Oxford: Londontime type: Full timeposted on: Posted Todayjob requisition id: R112581 About Our Team The Business Information Security Office (BISO) team partners with business, product, and technology leaders to deliver measurable security outcomes that support enterprise objectives. We focus on managing complex risk, embedding secure by design practices, and driving long term cybersecurity maturity. Our work enables trusted innovation, operational resilience, and informed risk decision making across the organization. About the Role As a Business Information Security Officer (BISO), you act as the primary security partner for assigned business units, bridging business strategy and enterprise cybersecurity. You are accountable for planning and executing security initiatives that reduce risk, strengthen cyber defenses, and enable delivery at scale. The role is highly collaborative, advisory, and outcome focused-ensuring security is embedded early and pragmatically across products, platforms, and major initiatives. Responsibilities: Act as the primary security partner for assigned business units, building trusted senior stakeholder relationships. Embed security early into business initiatives, product development, and technology delivery. Sponsor and support enterprise and business aligned security initiatives end to end. Provide expert security guidance across concurrent IT, engineering, and business projects. Oversee security assessments including vulnerability management, penetration testing, and third party risk. Translate security findings into prioritized, actionable remediation plans with clear ownership. Provide security input into solution architecture and major technology decisions. Serve as the security point of contact for customer facing inquiries, audits, and due diligence. Identify, document, and govern cyber risks, supporting risk acceptance and escalation processes. Develop and report meaningful security metrics to inform leadership decisions and continuous improvement. Requirements: Several years' experience in a BISO or senior security leadership / advisory role. Strong cloud and application security experience (AWS, Azure, GCP; secure SDLC). Hands on knowledge of security tooling (SIEM, SOAR, EDR/XDR, CSPM, SAST/DAST). Experience embedding security into CI/CD pipelines and DevSecOps practices. Proven capability in risk assessments, threat modeling, and control gap analysis. Experience collaborating with SOC and Incident Response teams during security events. Working knowledge of security frameworks and regulations (NIST, ISO 27001, CIS, GDPR, etc.). Ability to translate technical risk into clear, business relevant language. Strong stakeholder management skills with the ability to influence without authority. Bachelor's degree in Engineering, Computer Science, or equivalent experience, plus relevant certifications (CISSP, CISM, GIAC, or similar). We know your well-being and happiness are key to a long and successful career. We are delighted to offer country specific benefits. Click to access benefits specific to your location. We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our or please contact 1-. Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams . Please read our .We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. USA Job Seekers: .RELX is a global provider of information-based analytics and decision tools for professional and business customers, enabling them to make better decisions, get better results and be more productive.Our purpose is to benefit society by developing products that help researchers advance scientific knowledge; doctors and nurses improve the lives of patients; lawyers promote the rule of law and achieve justice and fair results for their clients; businesses and governments prevent fraud; consumers access financial services and get fair prices on insurance; and customers learn about markets and complete transactions.Our purpose guides our actions beyond the products that we develop. It defines us as a company. Every day across RELX our employees are inspired to undertake initiatives that make unique contributions to society and the communities in which we operate.
17/05/2026
Full time
.Cyber Security Business Information Officer (BISO) page is loaded Cyber Security Business Information Officer (BISO)locations: Oxford: Londontime type: Full timeposted on: Posted Todayjob requisition id: R112581 About Our Team The Business Information Security Office (BISO) team partners with business, product, and technology leaders to deliver measurable security outcomes that support enterprise objectives. We focus on managing complex risk, embedding secure by design practices, and driving long term cybersecurity maturity. Our work enables trusted innovation, operational resilience, and informed risk decision making across the organization. About the Role As a Business Information Security Officer (BISO), you act as the primary security partner for assigned business units, bridging business strategy and enterprise cybersecurity. You are accountable for planning and executing security initiatives that reduce risk, strengthen cyber defenses, and enable delivery at scale. The role is highly collaborative, advisory, and outcome focused-ensuring security is embedded early and pragmatically across products, platforms, and major initiatives. Responsibilities: Act as the primary security partner for assigned business units, building trusted senior stakeholder relationships. Embed security early into business initiatives, product development, and technology delivery. Sponsor and support enterprise and business aligned security initiatives end to end. Provide expert security guidance across concurrent IT, engineering, and business projects. Oversee security assessments including vulnerability management, penetration testing, and third party risk. Translate security findings into prioritized, actionable remediation plans with clear ownership. Provide security input into solution architecture and major technology decisions. Serve as the security point of contact for customer facing inquiries, audits, and due diligence. Identify, document, and govern cyber risks, supporting risk acceptance and escalation processes. Develop and report meaningful security metrics to inform leadership decisions and continuous improvement. Requirements: Several years' experience in a BISO or senior security leadership / advisory role. Strong cloud and application security experience (AWS, Azure, GCP; secure SDLC). Hands on knowledge of security tooling (SIEM, SOAR, EDR/XDR, CSPM, SAST/DAST). Experience embedding security into CI/CD pipelines and DevSecOps practices. Proven capability in risk assessments, threat modeling, and control gap analysis. Experience collaborating with SOC and Incident Response teams during security events. Working knowledge of security frameworks and regulations (NIST, ISO 27001, CIS, GDPR, etc.). Ability to translate technical risk into clear, business relevant language. Strong stakeholder management skills with the ability to influence without authority. Bachelor's degree in Engineering, Computer Science, or equivalent experience, plus relevant certifications (CISSP, CISM, GIAC, or similar). We know your well-being and happiness are key to a long and successful career. We are delighted to offer country specific benefits. Click to access benefits specific to your location. We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our or please contact 1-. Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams . Please read our .We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. USA Job Seekers: .RELX is a global provider of information-based analytics and decision tools for professional and business customers, enabling them to make better decisions, get better results and be more productive.Our purpose is to benefit society by developing products that help researchers advance scientific knowledge; doctors and nurses improve the lives of patients; lawyers promote the rule of law and achieve justice and fair results for their clients; businesses and governments prevent fraud; consumers access financial services and get fair prices on insurance; and customers learn about markets and complete transactions.Our purpose guides our actions beyond the products that we develop. It defines us as a company. Every day across RELX our employees are inspired to undertake initiatives that make unique contributions to society and the communities in which we operate.
Job title- Senior Software Engineer - R&D (Scientific Instrumentation) Job Type- Full time Location - UK-Malvern Role benefits - Competitive Salary + Benefits Package and more Become part of making the impossible possible. About the role: If you're energized by solving complex problems and building software that drives real scientific discovery, this is where your work can truly matter.As a Senior Software Engineer, you'll take a leading role in creating high impact software for advanced physical characterisation instruments used by researchers, innovators, and industry pioneers worldwide.Your expertise will help shape the materials that shape our world, and influence breakthroughs across countless sectors. What you'll be doing: Design, develop, and integrate robust software across embedded (C++/Qt Quick) and desktop (C#/.NET) environments Work end to end across the full technology stack, from device control and data acquisition to UI/UX and native component integration Modernize and evolve legacy codebases by applying contemporary design patterns, tooling, and engineering best practices Champion engineering excellence through clean, maintainable code, strong architectural thinking, clear documentation, and comprehensive testing Contribute to effective Agile delivery through thoughtful refinement, realistic estimation, and iterative, value focused development Mentor and support engineers at all levels, fostering a collaborative, inclusive culture of learning and continuous improvement Take ownership of solving technical challenges, improving processes, and delivering reliable, high quality software that meets scientific and industrial needs Play a direct role in product innovation, helping shape the future of materials analysis technology used by researchers and industry leaders worldwide About you: 5+ years of professional software development experience and a track record of increasing responsibility Strong fluency in C++, with solid working knowledge of C#/.NET Deep understanding of object oriented design, software architecture patterns, and clean code practices Experience working across both greenfield and legacy codebases. Hands on experience with unit, integration, and system testing, plus automated testing frameworks Familiarity with CI/CD, pipelines, and deployment automation Understanding of secure coding, vulnerability management, and compliance principles. Strong analytical skills and the ability to break down complex problems Excellent communication skills, able to articulate concepts clearly to both technical and non technical audiences A collaborative mindset and appreciation for diverse perspectives What's in It for You Join an ambitious, fast-growing international organisation with a collaborative, inclusive culture where your ideas and impact truly matter Play a meaningful role in driving growth at a global leader committed to partnering with customers to make the world a better place Be part of a globally connected team, with opportunities to collaborate across regions and influence initiatives at scale Benefit from a comprehensive and competitive rewards package designed to support your wellbeing, growth, and success About us - Malvern Panalytical, Micromeritics and SciAps. Together we are a powerful and highly complementary combination of market leading technologies.We are the toolmakers for the world's most innovative companies, academic institutions, and government laboratories. We are their partners in discovery. Malvern Panalytical instruments analyze the chemical, physical and structural nature of materials, from proteins to polymers and semiconductors to minerals. Our leading technologies measure particle size, shape, concentration and zeta potential, biomolecular interactions and stability, elemental concentrations and crystallographic structure. Micromeritics manufactures systems for the characterization of particles, powders, and porous materials for a wide- range of end markets including catalysts, chemicals, building materials, clean-tech and battery. Our leading technologies measure surface area, porosity, density, adsorption and particle activity. SciAps specializes in portable X-ray fluorescence (XRF), laser-based (LIBS) and near-infrared (NIR) analyzers to measure any element in any environment. SciAps is the Center of Excellence for our handheld instruments. We have a global footprint with R&D and manufacturing sites in North America, Europe, and Asia.We are more than 2,500 employees in a customer-focused organization with sales and service offices in 20 countries, all committed to delivering expert and responsive customer support.We are part of Spectris. Spectris combines precision with purpose, delivering progress for a more sustainable world. Precision is at the heart of what we do - our leading, high-tech instruments and software equip our customers to solve some of their greatest challenges to make the world cleaner, healthier and more productive. Malvern Panalytical, Micromeritics & SciAps Your Partners in Discovery Malvern Panalytical, Micromeritics and SciAps, part of the Spectris Group, are committed to a diverse and inclusive culture where everyone can thrive and achieve a fulfilling career. Changing the world isn't something you can do on your own, or with a single way of thinking; it takes a wide collection of experiences, stories, knowledge, and expertise. We encourage applications from underrepresented individuals and people with diverse backgrounds. Although we always select the most qualified applicant for each role and make all decisions without regard to race, sex, age, or any other protected class, we are an inclusive, equal opportunity organization that prizes diversity. Your unique perspective is important to us.
17/05/2026
Full time
Job title- Senior Software Engineer - R&D (Scientific Instrumentation) Job Type- Full time Location - UK-Malvern Role benefits - Competitive Salary + Benefits Package and more Become part of making the impossible possible. About the role: If you're energized by solving complex problems and building software that drives real scientific discovery, this is where your work can truly matter.As a Senior Software Engineer, you'll take a leading role in creating high impact software for advanced physical characterisation instruments used by researchers, innovators, and industry pioneers worldwide.Your expertise will help shape the materials that shape our world, and influence breakthroughs across countless sectors. What you'll be doing: Design, develop, and integrate robust software across embedded (C++/Qt Quick) and desktop (C#/.NET) environments Work end to end across the full technology stack, from device control and data acquisition to UI/UX and native component integration Modernize and evolve legacy codebases by applying contemporary design patterns, tooling, and engineering best practices Champion engineering excellence through clean, maintainable code, strong architectural thinking, clear documentation, and comprehensive testing Contribute to effective Agile delivery through thoughtful refinement, realistic estimation, and iterative, value focused development Mentor and support engineers at all levels, fostering a collaborative, inclusive culture of learning and continuous improvement Take ownership of solving technical challenges, improving processes, and delivering reliable, high quality software that meets scientific and industrial needs Play a direct role in product innovation, helping shape the future of materials analysis technology used by researchers and industry leaders worldwide About you: 5+ years of professional software development experience and a track record of increasing responsibility Strong fluency in C++, with solid working knowledge of C#/.NET Deep understanding of object oriented design, software architecture patterns, and clean code practices Experience working across both greenfield and legacy codebases. Hands on experience with unit, integration, and system testing, plus automated testing frameworks Familiarity with CI/CD, pipelines, and deployment automation Understanding of secure coding, vulnerability management, and compliance principles. Strong analytical skills and the ability to break down complex problems Excellent communication skills, able to articulate concepts clearly to both technical and non technical audiences A collaborative mindset and appreciation for diverse perspectives What's in It for You Join an ambitious, fast-growing international organisation with a collaborative, inclusive culture where your ideas and impact truly matter Play a meaningful role in driving growth at a global leader committed to partnering with customers to make the world a better place Be part of a globally connected team, with opportunities to collaborate across regions and influence initiatives at scale Benefit from a comprehensive and competitive rewards package designed to support your wellbeing, growth, and success About us - Malvern Panalytical, Micromeritics and SciAps. Together we are a powerful and highly complementary combination of market leading technologies.We are the toolmakers for the world's most innovative companies, academic institutions, and government laboratories. We are their partners in discovery. Malvern Panalytical instruments analyze the chemical, physical and structural nature of materials, from proteins to polymers and semiconductors to minerals. Our leading technologies measure particle size, shape, concentration and zeta potential, biomolecular interactions and stability, elemental concentrations and crystallographic structure. Micromeritics manufactures systems for the characterization of particles, powders, and porous materials for a wide- range of end markets including catalysts, chemicals, building materials, clean-tech and battery. Our leading technologies measure surface area, porosity, density, adsorption and particle activity. SciAps specializes in portable X-ray fluorescence (XRF), laser-based (LIBS) and near-infrared (NIR) analyzers to measure any element in any environment. SciAps is the Center of Excellence for our handheld instruments. We have a global footprint with R&D and manufacturing sites in North America, Europe, and Asia.We are more than 2,500 employees in a customer-focused organization with sales and service offices in 20 countries, all committed to delivering expert and responsive customer support.We are part of Spectris. Spectris combines precision with purpose, delivering progress for a more sustainable world. Precision is at the heart of what we do - our leading, high-tech instruments and software equip our customers to solve some of their greatest challenges to make the world cleaner, healthier and more productive. Malvern Panalytical, Micromeritics & SciAps Your Partners in Discovery Malvern Panalytical, Micromeritics and SciAps, part of the Spectris Group, are committed to a diverse and inclusive culture where everyone can thrive and achieve a fulfilling career. Changing the world isn't something you can do on your own, or with a single way of thinking; it takes a wide collection of experiences, stories, knowledge, and expertise. We encourage applications from underrepresented individuals and people with diverse backgrounds. Although we always select the most qualified applicant for each role and make all decisions without regard to race, sex, age, or any other protected class, we are an inclusive, equal opportunity organization that prizes diversity. Your unique perspective is important to us.
.Cyber Security Business Information Officer (BISO) page is loaded Cyber Security Business Information Officer (BISO)locations: Oxford: Londontime type: Full timeposted on: Posted Todayjob requisition id: R112581 About Our Team The Business Information Security Office (BISO) team partners with business, product, and technology leaders to deliver measurable security outcomes that support enterprise objectives. We focus on managing complex risk, embedding secure by design practices, and driving long term cybersecurity maturity. Our work enables trusted innovation, operational resilience, and informed risk decision making across the organization. About the Role As a Business Information Security Officer (BISO), you act as the primary security partner for assigned business units, bridging business strategy and enterprise cybersecurity. You are accountable for planning and executing security initiatives that reduce risk, strengthen cyber defenses, and enable delivery at scale. The role is highly collaborative, advisory, and outcome focused-ensuring security is embedded early and pragmatically across products, platforms, and major initiatives. Responsibilities: Act as the primary security partner for assigned business units, building trusted senior stakeholder relationships. Embed security early into business initiatives, product development, and technology delivery. Sponsor and support enterprise and business aligned security initiatives end to end. Provide expert security guidance across concurrent IT, engineering, and business projects. Oversee security assessments including vulnerability management, penetration testing, and third party risk. Translate security findings into prioritized, actionable remediation plans with clear ownership. Provide security input into solution architecture and major technology decisions. Serve as the security point of contact for customer facing inquiries, audits, and due diligence. Identify, document, and govern cyber risks, supporting risk acceptance and escalation processes. Develop and report meaningful security metrics to inform leadership decisions and continuous improvement. Requirements: Several years' experience in a BISO or senior security leadership / advisory role. Strong cloud and application security experience (AWS, Azure, GCP; secure SDLC). Hands on knowledge of security tooling (SIEM, SOAR, EDR/XDR, CSPM, SAST/DAST). Experience embedding security into CI/CD pipelines and DevSecOps practices. Proven capability in risk assessments, threat modeling, and control gap analysis. Experience collaborating with SOC and Incident Response teams during security events. Working knowledge of security frameworks and regulations (NIST, ISO 27001, CIS, GDPR, etc.). Ability to translate technical risk into clear, business relevant language. Strong stakeholder management skills with the ability to influence without authority. Bachelor's degree in Engineering, Computer Science, or equivalent experience, plus relevant certifications (CISSP, CISM, GIAC, or similar). We know your well-being and happiness are key to a long and successful career. We are delighted to offer country specific benefits. Click to access benefits specific to your location. We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our or please contact 1-. Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams . Please read our .We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. USA Job Seekers: .Elsevier is a global leader in advanced information and decision support for science and healthcare. We believe that by working together with the communities we serve, we can shape human progress to go further, happen faster, and benefit all.We support continuous discovery and uphold the highest standards of content integrity, reliability, and reproducibility so the communities we serve can advance their field of science, healthcare or innovation with confidence. By combining high-quality content with powerful analytics, we transform complexity into clarity and deliver mission-critical insights that help professionals make better decisions when it matters most.We deliver insights that help research institutions, governments, and funders achieve their goals. We help researchers discover and share knowledge, collaborate, and accelerate innovation. We help librarians provide verified, quality information to universities. We help innovators turn knowledge into new products. We help health professionals improve patient care and educators train the next generation of doctors and nurses. Connecting quality content and innovative technologies, we make progress go further and happen faster. And by championing inclusion and sustainability, we ensure progress benefits all.With 9,500 employees, over 2,300 technologists in 5 major tech hubs, and more than 60 locations across the globe, we are committed to supporting the scientific and healthcare communities around the world. We offer a diverse range of opportunities across technology, commercial, business, and early career jobs. If you are looking for a career that inspires progress in science, innovation and health, and allows you to grow every day, find your team at Elsevier.Elsevier is part of RELX Group.Let's shape progress together. Join
15/05/2026
Full time
.Cyber Security Business Information Officer (BISO) page is loaded Cyber Security Business Information Officer (BISO)locations: Oxford: Londontime type: Full timeposted on: Posted Todayjob requisition id: R112581 About Our Team The Business Information Security Office (BISO) team partners with business, product, and technology leaders to deliver measurable security outcomes that support enterprise objectives. We focus on managing complex risk, embedding secure by design practices, and driving long term cybersecurity maturity. Our work enables trusted innovation, operational resilience, and informed risk decision making across the organization. About the Role As a Business Information Security Officer (BISO), you act as the primary security partner for assigned business units, bridging business strategy and enterprise cybersecurity. You are accountable for planning and executing security initiatives that reduce risk, strengthen cyber defenses, and enable delivery at scale. The role is highly collaborative, advisory, and outcome focused-ensuring security is embedded early and pragmatically across products, platforms, and major initiatives. Responsibilities: Act as the primary security partner for assigned business units, building trusted senior stakeholder relationships. Embed security early into business initiatives, product development, and technology delivery. Sponsor and support enterprise and business aligned security initiatives end to end. Provide expert security guidance across concurrent IT, engineering, and business projects. Oversee security assessments including vulnerability management, penetration testing, and third party risk. Translate security findings into prioritized, actionable remediation plans with clear ownership. Provide security input into solution architecture and major technology decisions. Serve as the security point of contact for customer facing inquiries, audits, and due diligence. Identify, document, and govern cyber risks, supporting risk acceptance and escalation processes. Develop and report meaningful security metrics to inform leadership decisions and continuous improvement. Requirements: Several years' experience in a BISO or senior security leadership / advisory role. Strong cloud and application security experience (AWS, Azure, GCP; secure SDLC). Hands on knowledge of security tooling (SIEM, SOAR, EDR/XDR, CSPM, SAST/DAST). Experience embedding security into CI/CD pipelines and DevSecOps practices. Proven capability in risk assessments, threat modeling, and control gap analysis. Experience collaborating with SOC and Incident Response teams during security events. Working knowledge of security frameworks and regulations (NIST, ISO 27001, CIS, GDPR, etc.). Ability to translate technical risk into clear, business relevant language. Strong stakeholder management skills with the ability to influence without authority. Bachelor's degree in Engineering, Computer Science, or equivalent experience, plus relevant certifications (CISSP, CISM, GIAC, or similar). We know your well-being and happiness are key to a long and successful career. We are delighted to offer country specific benefits. Click to access benefits specific to your location. We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our or please contact 1-. Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams . Please read our .We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. USA Job Seekers: .Elsevier is a global leader in advanced information and decision support for science and healthcare. We believe that by working together with the communities we serve, we can shape human progress to go further, happen faster, and benefit all.We support continuous discovery and uphold the highest standards of content integrity, reliability, and reproducibility so the communities we serve can advance their field of science, healthcare or innovation with confidence. By combining high-quality content with powerful analytics, we transform complexity into clarity and deliver mission-critical insights that help professionals make better decisions when it matters most.We deliver insights that help research institutions, governments, and funders achieve their goals. We help researchers discover and share knowledge, collaborate, and accelerate innovation. We help librarians provide verified, quality information to universities. We help innovators turn knowledge into new products. We help health professionals improve patient care and educators train the next generation of doctors and nurses. Connecting quality content and innovative technologies, we make progress go further and happen faster. And by championing inclusion and sustainability, we ensure progress benefits all.With 9,500 employees, over 2,300 technologists in 5 major tech hubs, and more than 60 locations across the globe, we are committed to supporting the scientific and healthcare communities around the world. We offer a diverse range of opportunities across technology, commercial, business, and early career jobs. If you are looking for a career that inspires progress in science, innovation and health, and allows you to grow every day, find your team at Elsevier.Elsevier is part of RELX Group.Let's shape progress together. Join
Application Security Lead Prolific is not just another player in the AI space - we are the architects of the human data infrastructure that's reshaping the landscape of AI development. In a world where foundational AI technologies are increasingly commoditized, it's the quality and diversity of human-generated data that truly differentiates products and models. Security at Prolific isn't an afterthought, it's foundational to how we build. As a company trusted by world leading research institutions and AI labs to handle sensitive data at scale, the security of our platform and the code that powers it is critical. We handle participant data, researcher credentials, payment flows, and API integrations, and we need someone to own how we protect all of it at the application layer. As Application Security Lead, you'll own Prolific's application security strategy and be the most senior security engineering voice in the organisation. You'll define and drive our Secure Software Development Lifecycle (SSDLC), set the standard for how security is embedded into engineering, and get hands on with code review, threat modelling, and security testing when it matters. You'll also manage our Senior Application Security Engineer and continue to own our compliance programme alongside these responsibilities. This is a player coach role. You won't just set strategy, you'll be in the code, leading by example, and building the security culture that scales with Prolific. You'll need deep engineering experience to earn the trust of our engineering teams, and deep application security experience to know where the real risks are. You'll report to the Head of Engineering/Platform and work cross functionally with product engineering, platform, data, TechOps, and legal teams. As we scale, there's a clear path for this role to grow into leading a broader security function. What you'll bring to the role Several years of experience in software engineering, you've built and shipped production systems at scale Several years in application security (testing, code review, threat modelling, vuln management) Expert knowledge of OWASP Top 10 (Web & API) and modern attack paths (e.g. auth flaws, SSRF, injection, business logic, supply chain) Strong understanding of modern architectures (microservices, APIs, event driven systems) Python for security tooling and automation (Django a strong plus) Hands on testing experience (e.g. Burp Suite) and manual assessment of apps/APIs Experience building and scaling SSDLCs, including CI/CD tooling (SAST, SCA, DAST, secrets) Experience leading threat modelling and security design reviews Strong engineering partnership skills, you influence through trust Experience with ISO 27001 / SOC 2 and translating controls into real engineering practices Clear communicator across technical and non technical audiences Nice to haves Experience mentoring or managing security engineers Experience with Django, Vue.js, MongoDB, GCP Security champions or bug bounty programmes Supply chain or infrastructure security (e.g. Terraform, Kubernetes) Experience building AppSec in a scaling company What you'll be doing in the role You'll own and evolve Prolific's application security strategy end to end, from hands on testing and threat modelling to scaling secure development practices across engineering. You'll act as the go to expert for application security, partnering with engineering leadership to balance risk and velocity, while building the tooling, processes, and culture needed to embed security into how we ship. This includes mentoring an AppSec engineer, leading high impact security reviews, owning vulnerability management, and ensuring our platform stays ahead of modern threats. Why Prolific is a great place to work We've built a unique platform that connects researchers and companies with a global pool of participants, enabling the collection of high quality, ethically sourced human behavioural data and feedback. This data is the cornerstone of developing more accurate, nuanced, and aligned AI systems. We believe that the next leap in AI capabilities won't come solely from scaling existing models, but from integrating diverse human perspectives and behaviours into AI development. By providing this crucial human data infrastructure, Prolific is positioning itself at the forefront of the next wave of AI innovation - one that reflects the breadth and the best of humanity. Working for us will place you at the forefront of AI innovation, providing access to our unique human data platform and opportunities for groundbreaking research. Join us to enjoy a competitive salary, benefits, and remote working within our impactful, mission driven culture. By submitting your application, you agree that Prolific may collect your personal data for recruiting and global organisation planning. Prolific's Candidate Privacy Notice explains what personal information Prolific may process, where Prolific may process your personal information, its purposes for processing your personal information, and the rights you can exercise over Prolific use of your personal information.
08/05/2026
Full time
Application Security Lead Prolific is not just another player in the AI space - we are the architects of the human data infrastructure that's reshaping the landscape of AI development. In a world where foundational AI technologies are increasingly commoditized, it's the quality and diversity of human-generated data that truly differentiates products and models. Security at Prolific isn't an afterthought, it's foundational to how we build. As a company trusted by world leading research institutions and AI labs to handle sensitive data at scale, the security of our platform and the code that powers it is critical. We handle participant data, researcher credentials, payment flows, and API integrations, and we need someone to own how we protect all of it at the application layer. As Application Security Lead, you'll own Prolific's application security strategy and be the most senior security engineering voice in the organisation. You'll define and drive our Secure Software Development Lifecycle (SSDLC), set the standard for how security is embedded into engineering, and get hands on with code review, threat modelling, and security testing when it matters. You'll also manage our Senior Application Security Engineer and continue to own our compliance programme alongside these responsibilities. This is a player coach role. You won't just set strategy, you'll be in the code, leading by example, and building the security culture that scales with Prolific. You'll need deep engineering experience to earn the trust of our engineering teams, and deep application security experience to know where the real risks are. You'll report to the Head of Engineering/Platform and work cross functionally with product engineering, platform, data, TechOps, and legal teams. As we scale, there's a clear path for this role to grow into leading a broader security function. What you'll bring to the role Several years of experience in software engineering, you've built and shipped production systems at scale Several years in application security (testing, code review, threat modelling, vuln management) Expert knowledge of OWASP Top 10 (Web & API) and modern attack paths (e.g. auth flaws, SSRF, injection, business logic, supply chain) Strong understanding of modern architectures (microservices, APIs, event driven systems) Python for security tooling and automation (Django a strong plus) Hands on testing experience (e.g. Burp Suite) and manual assessment of apps/APIs Experience building and scaling SSDLCs, including CI/CD tooling (SAST, SCA, DAST, secrets) Experience leading threat modelling and security design reviews Strong engineering partnership skills, you influence through trust Experience with ISO 27001 / SOC 2 and translating controls into real engineering practices Clear communicator across technical and non technical audiences Nice to haves Experience mentoring or managing security engineers Experience with Django, Vue.js, MongoDB, GCP Security champions or bug bounty programmes Supply chain or infrastructure security (e.g. Terraform, Kubernetes) Experience building AppSec in a scaling company What you'll be doing in the role You'll own and evolve Prolific's application security strategy end to end, from hands on testing and threat modelling to scaling secure development practices across engineering. You'll act as the go to expert for application security, partnering with engineering leadership to balance risk and velocity, while building the tooling, processes, and culture needed to embed security into how we ship. This includes mentoring an AppSec engineer, leading high impact security reviews, owning vulnerability management, and ensuring our platform stays ahead of modern threats. Why Prolific is a great place to work We've built a unique platform that connects researchers and companies with a global pool of participants, enabling the collection of high quality, ethically sourced human behavioural data and feedback. This data is the cornerstone of developing more accurate, nuanced, and aligned AI systems. We believe that the next leap in AI capabilities won't come solely from scaling existing models, but from integrating diverse human perspectives and behaviours into AI development. By providing this crucial human data infrastructure, Prolific is positioning itself at the forefront of the next wave of AI innovation - one that reflects the breadth and the best of humanity. Working for us will place you at the forefront of AI innovation, providing access to our unique human data platform and opportunities for groundbreaking research. Join us to enjoy a competitive salary, benefits, and remote working within our impactful, mission driven culture. By submitting your application, you agree that Prolific may collect your personal data for recruiting and global organisation planning. Prolific's Candidate Privacy Notice explains what personal information Prolific may process, where Prolific may process your personal information, its purposes for processing your personal information, and the rights you can exercise over Prolific use of your personal information.
