Red Team Security Engineer

TL;DR

Red Team Security Engineer: Devising and executing sophisticated attack campaigns to emulate threat actors and identify vulnerabilities across digital and physical landscapes with an accent on network penetration testing, application security assessments, and social engineering. Focus on improving security posture by providing actionable recommendations and acting as the subject matter expert on offensive security.

Location: Must be a U.S. citizen, lawful permanent resident of the United States, or other protected individual as defined by 8 U.S.C. 1324b(a)(3)

Salary: $130,000 - $205,000 USD

Company

hirify.global builds advanced satellites for high orbits, expanding humanity’s reach into the solar system.

What you will do

• Actively devise and execute sophisticated, multi-stage attack campaigns that emulate the tactics, techniques, and procedures (TTPs) of relevant threat actors.
• Identify and exploit vulnerabilities across the organization's digital and physical landscapes, including networks, applications, facilities, and personnel.
• Conduct covert red team operations, including network penetration testing, application security assessments, social engineering, and physical security breach simulations.
• Lead and participate in purple team exercises, working collaboratively with the blue team to analyze attack paths, test detection capabilities, and improve incident response playbooks in real-time.
• Develop custom tooling and scripts to automate and enhance attack simulations.
• Create detailed post-engagement reports that clearly document findings, articulate business risk, and provide actionable recommendations for improving security posture.

Requirements

• 3+ years of experience in an offensive security role (e.g., Red Teaming, Penetration Testing).
• Proven experience in planning and executing covert red team operations from reconnaissance to objective completion.
• A deep understanding of attacker TTPs and frameworks like MITRE ATT&CK.
• Proficient in at least one scripting language, such as Python, for tooling and automation.
• Hands-on experience with common offensive security tools (e.g., Cobalt Strike, Metasploit, Burp Suite, custom implants).
• U.S. Citizenship, Lawful Permanent Residency, or Refugee/Asylee Status Required

Nice to have

• Any relevant certifications such as OSCP, OSCE, or OSEP.
• Experience with physical security assessments or social engineering campaigns.
• Previous experience building and running a red team program.

Culture & Benefits

• Compensation package includes equity and robust benefits.
• High-quality company-subsidized healthcare, disability and life insurance.
• 401(k) retirement planning.
• Flexible PTO.
• Free on-site catered meals.