Offensive Security Engineer
| Company | X |
|---|---|
| Location | Palo Alto, CA, USA, San Jose, CA, USA, New York, NY, USA |
| Salary | $162000 – $297000 |
| Type | Full-Time |
| Degrees | |
| Experience Level | Senior, Expert or higher |
Requirements
- Deep expertise in application security, penetration testing, and exploit development
- Strong software development skills in Scala, Python, Go, or similar languages
- Advanced understanding of secrets and key management
- Deep knowledge of authentication and authorization security mechanisms
- Experience identifying vulnerabilities such as SSRF, data validation errors, injection attacks, and authentication race conditions
- Ability to automate red team activities efficiently
- Expertise in identifying and exploiting container vulnerabilities
Responsibilities
- Executing offensive security assessments and penetration testing strategies
- Reviewing source code to identify common application vulnerabilities
- Writing functional exploits for newly discovered vulnerabilities
- Leveraging existing tools and developing custom offensive security scripts
- Engaging with the bug bounty program to validate and remediate vulnerabilities
- Performing penetration tests on internal systems
- Automating baseline red team activities based on the environment and code base
- Identifying and exploiting container vulnerabilities
Preferred Qualifications
- Bachelor’s degree in Computer Science or equivalent experience
- OSCP Certification
- SANS SEC565: Red Team Operations and Adversary Emulation
- SANS SEC588: Cloud Penetration Testing