DescriptionStarling is the UK’s first and leading digital bank on a mission to fix banking! Our vision is fast technology, fair service, and honest values. All at the tap of a phone, all the time.We are about giving customers a new way to spend, save and manage their money while taking better care of the planet which has seen us become a multi-award winning bank that now employs over 2300 across five offices in London, Cardiff, Dublin, Southampton, and soon to be Manchester. Our journey started in 2014, and since then we have surpassed three million accounts (and four account types!) with 350,000 business customers. We are a fully licensed UK bank but at the heart, we are a tech first company, enabling our platform to deliver brilliant products.Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and disruptive technology that keeps us on the cutting edge of fintech. We operate a flat structure to empower you to make decisions regardless of what your primary responsibilities may be, innovation and collaboration will be at the core of everything you do. Help is never far away in our open culture, you will find support in your team and from across the business, we are in this together!The way to thrive and shine within Starling is to be a self-driven individual and be able to take full ownership of everything around you: From building things, designing, discovering, to sharing knowledge with your colleagues and making sure all processes are efficient and productive to deliver the best possible results for our customers. Our purpose is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness.Responsibilities:You will be comfortable being hands-on leader in the short term until the team becomes more established under your leadership.Leading simulated adversarial operations against Starling Bank targetsDeveloping methodology and infrastructure for ongoing red teaming operationsWorking with stakeholders across the organisation to direct the focus of the teamIdentifying vulnerabilities, building exploits, developing reusable attack componentsWriting reports after each engagementTake ownership for mentoring, coaching and leading this new teamOperations will emulate real threat actors and target cutting-edge technology in Starling Bank’s platform as well as ranging across the endpoint estate. You will use emerging threat intelligence to inform and develop effective attacks.You will be an early member of the team and will take a lead role in shaping the growth and evolution of the team.RequirementsYou will have:Relevant certification (e.g. CSSAS, CSSAM, OSCP, OSCE, CRT, CCT, or similar)Significant Red Team experience and understanding of the benefits and pitfalls of different adversarial techniquesStrong experience leading a team or taking ownership of critical Red Team projectsStrong discipline and capability to manage risk and controls around red team activityFamiliarity with the cyber risks faced by Starling Bank and other financial institutionsSound network and operating system fundamentals (MacOS, Linux and Windows)Experience with C2 frameworks (Mythic, CobaltStrike…)An effective communicator to senior stakeholders across multiple teams both technical and non-technicalThough not necessarily required, the ideal candidate would also bring:Experience building a Red Team from scratchBig picture understanding of cloud security issues (AWS, GCP)Familiarity with modern software engineering paradigms (CI/CD, Infra as Code)Benefits25 days holiday (plus take your public holiday allowance whenever works best for you)An extra day’s holiday for your birthdayAnnual leave is increased with length of service, and you can choose to buy or sell up to five extra days off!16 hours paid volunteering time a yearSalary sacrifice, company enhanced pension schemeLife insurance at 4x your salaryPrivate Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and PelotonGenerous family-friendly policiesPerkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perksAccess to initiatives like Cycle to Work and Salary Sacrificed Gym partnershipsAbout Us:You may be put off applying for a role because you don't tick every box. Forget that! While we can’t accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren’t sure if you're 100% there yet, get in touch anyway.We’re on a mission to radically reshape banking – and that starts with our brilliant team. Whatever came before, we’re proud to bring together people of all backgrounds and experiences who love working together to solve problems.Starling Bank is an equal opportunity employer, and we’re proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law.By submitting your application, you agree that Starling Bank may collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we may process, where we may process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.Job SummaryID: 3859F9C59DDepartment: Risk and ComplianceType: full time