Offensive Security Engineer
New
Romania, Core collaboration hours from 10:00 AM to 3:00 PM in your local time zone.Full-Time
SalaryCompetitive salary package with quarterly individual performance-based bonuses.
Apply NowOpens the employer's application page
Job Details
- Required Skills
- PythonBashLinux
Requirements
- Proven experience in offensive security, penetration testing, vulnerability assessments, network security, or adversary emulation.
- Strong understanding of external attack surface management, DNS security, public infrastructure exposure, and network reconnaissance techniques.
- Hands-on experience testing Linux and Windows environments, including network services and infrastructure components.
- Experience performing adversary simulations and evaluating security controls against modern endpoint detection and response platforms.
- Familiarity with testing routers, switches, firewalls, corporate networks, and workplace IT infrastructure.
- Ability to translate technical vulnerabilities and security risks into clear, practical remediation actions.
- Experience identifying web application vulnerabilities and performing scoped API security testing.
- Strong scripting skills using Python, PowerShell, Bash, or similar languages for automation and security workflows.
- Knowledge of security testing and reconnaissance tools such as Nmap, Shodan, Censys, Masscan, Amass, Wireshark, Burp Suite, OWASP ZAP, or similar.
- Experience working with security platforms and technologies such as Microsoft Defender XDR, CrowdStrike Falcon, SentinelOne, Atomic Red Team, or Caldera is highly valued.
- Strong documentation, analytical, and communication skills with the ability to collaborate across technical teams.
- Familiarity with tools including Kali Linux, DNS testing utilities, Git, Jira, Confluence, VPS environments, Linux/Windows servers, and network security technologies.
Responsibilities
- Monitor, map, and assess the organization’s external attack surface, including domains, subdomains, websites, public IP ranges, and DNS configurations.
- Conduct offensive security testing, penetration assessments, and reconnaissance activities to identify vulnerabilities across external-facing systems and infrastructure.
- Perform adversary emulation exercises against endpoint environments to validate the effectiveness of EDR, XDR, and security monitoring solutions.
- Assess the security posture of office infrastructure, network devices, physical hardware, and internal edge systems.
- Execute scoped security testing on web applications and public APIs, identifying weaknesses and providing remediation guidance.
- Collaborate with security and infrastructure teams to validate firewall rules, perimeter controls, segmentation policies, and defensive configurations.
- Translate technical findings into actionable recommendations, vulnerability reports, remediation plans, and security improvements.
- Develop repeatable security checks, improve asset tracking processes, and maintain visibility into exposure trends.
- Track vulnerability metrics, remediation progress, attack simulation outcomes, and overall perimeter security health.
- Support continuous improvement of offensive security practices through automation, documentation, and knowledge sharing.
View Full Description & ApplyYou'll be redirected to the employer's site