Offensive Security Engineer

New
Romania, Core collaboration hours from 10:00 AM to 3:00 PM in your local time zone.Full-Time
SalaryCompetitive salary package with quarterly individual performance-based bonuses.
Apply NowOpens the employer's application page

Job Details

Required Skills
PythonBashLinux

Requirements

  • Proven experience in offensive security, penetration testing, vulnerability assessments, network security, or adversary emulation.
  • Strong understanding of external attack surface management, DNS security, public infrastructure exposure, and network reconnaissance techniques.
  • Hands-on experience testing Linux and Windows environments, including network services and infrastructure components.
  • Experience performing adversary simulations and evaluating security controls against modern endpoint detection and response platforms.
  • Familiarity with testing routers, switches, firewalls, corporate networks, and workplace IT infrastructure.
  • Ability to translate technical vulnerabilities and security risks into clear, practical remediation actions.
  • Experience identifying web application vulnerabilities and performing scoped API security testing.
  • Strong scripting skills using Python, PowerShell, Bash, or similar languages for automation and security workflows.
  • Knowledge of security testing and reconnaissance tools such as Nmap, Shodan, Censys, Masscan, Amass, Wireshark, Burp Suite, OWASP ZAP, or similar.
  • Experience working with security platforms and technologies such as Microsoft Defender XDR, CrowdStrike Falcon, SentinelOne, Atomic Red Team, or Caldera is highly valued.
  • Strong documentation, analytical, and communication skills with the ability to collaborate across technical teams.
  • Familiarity with tools including Kali Linux, DNS testing utilities, Git, Jira, Confluence, VPS environments, Linux/Windows servers, and network security technologies.

Responsibilities

  • Monitor, map, and assess the organization’s external attack surface, including domains, subdomains, websites, public IP ranges, and DNS configurations.
  • Conduct offensive security testing, penetration assessments, and reconnaissance activities to identify vulnerabilities across external-facing systems and infrastructure.
  • Perform adversary emulation exercises against endpoint environments to validate the effectiveness of EDR, XDR, and security monitoring solutions.
  • Assess the security posture of office infrastructure, network devices, physical hardware, and internal edge systems.
  • Execute scoped security testing on web applications and public APIs, identifying weaknesses and providing remediation guidance.
  • Collaborate with security and infrastructure teams to validate firewall rules, perimeter controls, segmentation policies, and defensive configurations.
  • Translate technical findings into actionable recommendations, vulnerability reports, remediation plans, and security improvements.
  • Develop repeatable security checks, improve asset tracking processes, and maintain visibility into exposure trends.
  • Track vulnerability metrics, remediation progress, attack simulation outcomes, and overall perimeter security health.
  • Support continuous improvement of offensive security practices through automation, documentation, and knowledge sharing.
View Full Description & ApplyYou'll be redirected to the employer's site
Competitive salary package with quarterly individual performance-based bonuses.
Apply Now