Offensive Security Engineer
New
S
Sporty GroupCybersecurity
Europe - Remote, Core working hours of 10am-3pm in your local time zoneFull-Time
SalaryA competitive salary plus individual performance-based bonuses every quarter
Apply NowOpens the employer's application page
Job Details
- Required Skills
- PythonBash
Requirements
- Experience in offensive security, perimeter penetration testing, network security assessments, or adversary emulation.
- Strong understanding of external asset discovery, DNS configuration vulnerabilities, and public IP network routing.
- Practical experience auditing and testing Linux and Windows environments and underlying network services.
- Ability to perform adversary emulation and bypass techniques against modern EDR/XDR solutions.
- Familiarity with testing physical office network hardware, routers, switches, firewalls, and workplace IT systems.
- Experience with core web vulnerabilities and limited, scoped testing of modern API interfaces.
- Strong scripting ability in Python, PowerShell, or Bash for automation of security workflows.
- Proficiency with scanning, reconnaissance, and interception tools (e.g., Nmap, Burp Suite, Wireshark).
- Strong documentation skills for creating clear, actionable vulnerability reports.
Responsibilities
- Monitor, map, and test Sporty’s entire external attack surface, including domains, subdomains, websites, and public IP addresses.
- Conduct adversary emulation exercises against internal and office endpoints to validate EDR/XDR and SOC monitoring effectiveness.
- Evaluate the security posture of physical office hardware, network equipment, and internal edge infrastructure.
- Perform scoped offensive testing on external-facing web applications and public-facing API endpoints.
- Translate external discovery and network weaknesses into repeatable defensive checks for perimeter and firewall controls.
- Support the Purple Team in validating EDR policies, network segmentation, and perimeter security configurations.
- Document multi-stage exploitation chains to provide practical remediation blueprints for infrastructure and SOC teams.
- Improve external asset tracking and report on exposure trends and vulnerability remediation metrics.
View Full Description & ApplyYou'll be redirected to the employer's site