Engine by Starling

Penetration Tester - Engine by Starling

Engine by Starling
hybrid senior full-time Southampton
Apply →

First indexed 20 Mar 2026

Description

At Engine by Starling, we are seeking an experienced Penetration Tester to join our Information Security team. As a Penetration Tester, you will be responsible for conducting penetration tests on our core banking platform, focusing on Cloud and Application Security. You will also perform manual secure code reviews to identify logic flaws and security anti-patterns, participate in threat modelling sessions with different teams, and contextualise technical vulnerabilities into 'Real-World Risk' scenarios to demonstrate business impact to non-technical executives and within Engine's risk management framework.

Key responsibilities include:

  • Conducting end-to-end assessments of our core banking platform
  • Performing code reviews to identify logic flaws and security anti-patterns
  • Participating in threat modelling sessions with different teams
  • Contextualising technical vulnerabilities into 'Real-World Risk' scenarios
  • Collaborating with Infrastructure teams to audit and secure cloud configurations
  • Acting as an independent operator within the team, managing your own testing scope and timelines across different business domains
  • Providing clear, actionable remediation advice that balances security requirements with engineering velocity

Requirements include:

  • 5+ years experience in penetration testing with a focus on cloud native infrastructure, web applications, APIs
  • Expert-level proficiency with industry-standard tools and the ability to 'go manual' when scanners fail
  • Experience with Cloud Security, specifically AWS/EKS
  • Ability to conduct code reviews in multiple languages, primarily Java and Go
  • Proven experience in threat modelling
  • SDLC knowledge
  • Scripting skills

Soft skills include:

  • Exceptional written and spoken communication skills
  • Self-starting nature
  • Ability to work independently while remaining a collaborative partner to the wider engineering team
  • Adaptability

Benefits include:

  • 25 days holiday (plus take your public holiday allowance whenever works best for you)
  • An extra day's holiday for your birthday
  • Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off
  • 16 hours paid volunteering time a year
  • Salary sacrifice, company enhanced pension scheme
  • Life insurance at 4x your salary & group income protection
  • Private Medical Insurance with VitalityHealth including mental health support and cancer care

About Us

You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion.

This listing is enriched and indexed by YubHub. To apply, use the employer's original posting: https://apply.workable.com/j/9587C75960