Offensive Security Engineer

TL;DR

Offensive Security Engineer (Cybersecurity): Lead advanced whitebox penetration testing and adversarial attack simulations on a cloud-native AI-integrated platform with an accent on source code analysis, vulnerability chaining, and offensive tooling development. Focus on securing Kubernetes, Docker infrastructure, and AI-enabled systems by identifying complex logic flaws and architectural gaps.

Location: Foster City, CA (Hybrid, in-office Monday, Wednesday, Friday)

Salary: $188,000–$313,000

Company

hirify.global is an agentic software creation platform democratizing application development through natural language interfaces with millions of users worldwide.

What you will do

• Lead whitebox penetration testing with full source code access to uncover complex logic flaws and authorization bypasses.
• Simulate adversarial attacks across cloud-native stack including Kubernetes and Docker.
• Perform offensive testing on AI-enabled systems focusing on prompt injection and data leakage.
• Research and chain vulnerabilities to demonstrate realistic business risks.
• Build internal offensive tooling and AI-assisted testing frameworks.
• Collaborate with engineering and security teams to communicate risks and triage findings.

Requirements

• Location: Must work from Foster City, CA office with hybrid schedule (Mon, Wed, Fri)
• 7+ years of experience in penetration testing, offensive security, or vulnerability research.
• Proficiency in Go, Python, or TypeScript and ability to write custom exploits.
• Experience with cloud-native environments including Kubernetes and Docker.
• Strong manual exploitation skills beyond automated tools.
• Ability to communicate complex technical risks clearly to engineering teams.

Nice to have

• Public recognition on HackerOne or Bugcrowd platforms.
• Experience building AI-based security testing tools.
• Background in incident response or detection engineering.
• Published CVEs or security research in cloud-native or AI domains.

Culture & Benefits

• Competitive salary and equity with 401(k) matching.
• Health, dental, vision, life insurance, and disability coverage.
• Paid parental, medical, and caregiver leave.
• Commuter benefits and in-office amenities.
• Flexible time off and quarterly team gatherings.
• Autonomous work environment with in-office setup reimbursement.

Hiring process

• Structured interviews including technical assessments.
• Evaluation of penetration testing and offensive security expertise.
• Discussion of cultural fit and alignment with company values.