CTEM Offensive Security Manager (Red Teaming & Breach & Attack Simulation)

Job Description: CTEM Offensive Security Manager (Red Teaming & Breach & Attack Simulation)

Salary: From £76,000+

Location: Hybrid working in Angel Court, London or Willow House, Staines.

Role Type: Permanent, Full time - 37.5 hours per week.

As a CTEM Offensive Security Manager, you'll play an important part in protecting that mission. You'll help us stay one step ahead of cyber threats by testing how resilient our systems really are, and by guiding improvements that keep our people, customers and data safe. This is a hands on leadership role within our cyber security team. You'll lead red teaming and breach and attack simulation activities, using real world attacker techniques to uncover risks and strengthen our defences. Your work will help make sure we're not just secure on paper, but secure in practice.

• Lead and develop our Offensive Security and Breach & Attack Simulation (BAS) team.
• Plan and deliver advanced testing, including: Red team exercises, adversary simulation, Purple team activities, attack path and control effectiveness testing.
• Use threat intelligence to keep testing aligned with real world risks.
• Identify vulnerabilities and explain what they mean in a clear, practical way.
• Work closely with teams across cyber security, engineering and infrastructure to improve controls.
• Support SOC and detection teams to strengthen how we identify and respond to threats.
• Influence and guide remediation so improvements are realistic and effective.
• Produce clear reporting for both technical teams and senior stakeholders.
• Continuously improve tools, processes and ways of working across offensive security.

• Strong experience in offensive security, such as red teaming, penetration testing or security engineering.
• Experience leading or delivering complex, enterprise scale security testing.
• Confidence managing or mentoring technical teams.
• Hands on experience with breach and attack simulation tools and security testing frameworks.
• A good understanding of how attackers operate, including common tactics and techniques.
• Experience working across different environments such as cloud platforms, networks, identity systems and endpoints.
• Ability to explain complex technical issues in a simple, clear way.
• Strong collaboration skills, with experience working across multiple teams.
• A practical, solution focused approach to improving security.
• Relevant certifications desirable (such as OSCP, CREST, CISSP or similar).

• 25 days holiday, increasing through length of service, with option to buy or sell.
• Bupa health insurance as a benefit in kind.
• Enhanced pension plan and life insurance.
• On site gyms or local discounts where no on site gym is available.
• Various other benefits and online discounts.

Bupa is a Level 2 Disability Confident Employer. We aim to offer an interview/assessment to every disabled applicant who meets the minimum criteria for the role and make sure they are treated fairly and offered reasonable adjustments in the recruitment process.