Staff Offensive Security Engineer (Cybersecurity)

TL;DR

Staff Offensive Security Engineer (Cybersecurity): Leading red team exercises and adversarial simulations to identify and mitigate security risks across critical infrastructure and applications with an accent on vulnerability research, exploit development, and partnering to fix issues. Focus on challenging security assumptions and driving innovative security solutions.

Location: Hybrid, in-person attendance expected at least 3 days per week in Menlo Park, CA. Salary based on US compensation zones: Menlo Park, CA; New York, NY; Bellevue, WA; Washington, DC; Denver, CO; Westlake, TX; Chicago, IL; Lake Mary, FL; Clearwater, FL; Gainesville, FL.

Salary: $217,000 - $255,000 USD

Company

hirify.global is a financial technology product company aiming to democratize finance for all.

What you will do

• Plan and execute long-term, broadly scoped, black box Red Team exercises, utilizing vulnerability research and exploit development.
• Perform penetration testing, code reviews, and design/architecture reviews of critical infrastructure and applications.
• Participate in Adversarial Simulation exercises and lead Security Incidents when findings require them.
• Evangelize Offensive Security findings with stakeholders and collaborate to create balanced solutions.
• Mentor and provide guidance to other members of the Offensive Security team.
• Drive innovative security ideas to implementation and conduct vulnerability research.

Requirements

• 8+ years of Red Team experience.
• In-person attendance expected at least 3 days per week in Menlo Park, CA.
• Excellent written and verbal communication skills across all levels, from engineers to executives.
• Familiarity with network protocols (DNS, TCP/IP) and experience with MacOS and Linux.
• Experience leveraging modern software development stacks (CI, Kubernetes/Docker, AWS, GCP) to attack systems and provide hardening suggestions.
• Experience/knowledge of defensive tools/techniques (IDS/IPS, AV, EDR) and how to evade them.
• Deep understanding of Mitre’s ATT&CK Framework and security fundamentals of access and identity.
• Comfortable reading/writing Python, Go, and Javascript.

Nice to have

• Experience in the Financial Technology domain.
• Experience being a technical lead at other organizations.

Culture & Benefits

• Market competitive and pay equity-focused compensation structure with bonus opportunities and equity.
• 100% paid health insurance for employees with 90% coverage for dependents.
• Annual lifestyle wallet for personal wellness, learning and development.
• Lifetime maximum benefit for family forming and fertility benefits.
• Dedicated mental health support for employees and eligible dependents.
• Generous time away including company holidays, paid time off, sick time, and parental leave.
• Lively office environment with catered meals, fully stocked kitchens, and geo-specific commuter benefits.