Lead Security Engineer - Offensive Security

View full description

Requirements:

• Offensive Security background, with a focus on Red Team activities
• Experience with different parts of a pentest, such as reconnaissance, enumeration, exploitation, post-exploitation, lateral movement, etc
• Strong knowledge of recent and past attack vectors, as well as exploitations, and how to fix them
• Ability to reproduce behavior of Advanced Persistent Threat (APTs) groups
• Experience with security frameworks, such as OWASP
• Familiarity with AWS general concepts
• Ability to harden and improve CI/CD Pipelines as well as experience with SDLC
• General knowledge in all security scopes, as well as strong knowledge on Operating Systems, Networks, Databases and Infrastructure Architecture
• Experience with Threat Modeling

Responsibilities:

• Perform infrastructure, web, and mobile/API pentest
• Craft and execute red team operations
• Help with vulnerability management
• Code tools that assist with offensive security reviews
• Support operations to fix vulnerabilities and help development squads to understand security issues
• Assist in architectural / logical reviews of different softwares