is seeking a Principal Offensive Security Engineer who is passionate about how applications are designed, built, and exploitedproducts that scale to tens of millions of pageviews a day.
The Offensive Security team today performs a diverse set of services including vulnerability assessments, secure design reviews, penetration testing, red-teaming and delivering security education. In this leadership role, you will be responsible for developing and driving the technical direction and roadmap of the Offensive Security program with substantial latitude for actions or decisions. You will help the team increase its reach through innovative and scalable solutions and processes to enhance the team's velocity and scale.
Influence and lead the red team and penetration testing strategy for , subsidiaries, and partner entities.
Holistically test ’s systems and applications for vulnerabilities and demonstrate the impact to the business through exploitation.
Work closely with internal stakeholders to identify, research, analyze and provide resolution to complex vulnerability issues.
Develop meaningful executive and operational metrics for the Offensive Security program.
Represent the Offensive Security team across and outside of as a subject matter expert in adversarial engineering and techniques.
Perform penetration testing, vulnerability assessments, and application design reviews of systems, cloud services, applications, and networks to discover and document vulnerabilities.
Participate and lead threat modeling exercises.
Educate software engineers on coding best practices (e.g.OWASP Top 10) and the business at large on the latest attack vectors.
Build automated test platform and capabilities to scale penetration testing and to test threat detection and response capabilities.
Provide mentoring and cross training to other Security Engineers across the Security Org.
Who You Are
5+ years experience in penetration testing or application security.
Bachelor's degree in Computer Science or Engineering or equivalent evidence of aptitude (e.g.OSCP, OSWE, OSEP or OSCE)
Advanced knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, and application security engineering, and hardware hacking, and digital forensics and incident response (DFIR).
Programming experience in several interpreted or compiled languages: Python, Golang, Ruby, C/C++, Java, C#
Proficient in two or more operating systems: Linux, Windows, Mac OS
Solid knowledge of vulnerability assessment and penetration best practices.
Familiar with offensive TTPs (Tactics, Techniques and Procedures) including post exploitation and lateral movement.
Experience with testing applications run within a cloud.
Experience with penetration testing tools like, NMAP, Metasploit, CANVAS, Cobalt Strike, Empire, Burp Suite Pro, etc.
Passion to mentor and guide a diverse, growing team in sharing your own experience to help others grow
Ability to turn knowledge and experience into effective change inside an organization.
Who we are
We are a rapidly growing and highly-capable Engineering organization building the most popular job site on the planet. With engineering hubs in Seattle, San Francisco, Austin, Tokyo, Singapore, Hyderabad, Dublin, Aberdeen and Vancouver, we are improving people's lives all around the world, one job search at a time.
As the world’s number 1 job site*, our mission is to help people get jobs. We strive to cultivate an inclusive and accessible workplace where all people feel comfortable being themselves. We're looking to grow our teams with more people who share our enthusiasm for innovation and creating the best experience for job seekers. *comScore Total Visits, March 2019
Salary Range Disclaimer
The base salary range represents the low and high end of the salary range for this position. Actual salaries will vary and may be above or below the range based on factors including but not limited to location, experience, and performance. The range listed is just one component of 's total compensation package for employees. Other rewards may include quarterly bonuses, Restricted Stock Units (RSUs), an open Paid Time Off policy, and many region-specific benefits.
Salary Range Transparency
US Remote 161,000199,000 USD per year
Equal Opportunities and Accommodations Statement
is deeply committed to building a workplace and global community where inclusion is not only valued, but prioritized. We’re proud to be an equal opportunity employer, seeking to create a welcoming and diverse environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, family status, marital status, sexual orientation, national origin, genetics, neuro-diversity, disability, age, or veteran status, or any other non-merit based or legally protected grounds.
is committed to providing reasonable accommodations to qualified individuals with disabilities in the employment application process. To request an accommodation, please contact Talent Attraction Help at 1-855-567-7767, or by email at TAhelp@indeed.com at least one week in advance of your interview.
View 's Applicant Privacy and Accessibility Policieshttps://www.indeed.com/legal/indeed-jobs
If your qualification is matched with the requirement above, please submit your online application directly through Indeed system at :