Plus
Π’ΠΊΠ»ΡŽΡ‡ΠΈΡ‚ΡŒ Plus
Назад
Company hidden
2 мСсяца Π½Π°Π·Π°Π΄

Offensive Security Engineer (Cybersecurity)

Π€ΠΎΡ€ΠΌΠ°Ρ‚ Ρ€Π°Π±ΠΎΡ‚Ρ‹
remote (Ρ‚ΠΎΠ»ΡŒΠΊΠΎ Brazil)
Π’ΠΈΠΏ Ρ€Π°Π±ΠΎΡ‚Ρ‹
fulltime
Английский
b2
Π‘Ρ‚Ρ€Π°Π½Π°
Brazil
Вакансия ΠΈΠ· списка Hirify.GlobalВакансия ΠΈΠ· Hirify Global, списка ΠΌΠ΅ΠΆΠ΄ΡƒΠ½Π°Ρ€ΠΎΠ΄Π½Ρ‹Ρ… tech-ΠΊΠΎΠΌΠΏΠ°Π½ΠΈΠΉ
Для мэтча ΠΈ ΠΎΡ‚ΠΊΠ»ΠΈΠΊΠ° Π½ΡƒΠΆΠ΅Π½ Plus

ΠœΡΡ‚Ρ‡ & Π‘ΠΎΠΏΡ€ΠΎΠ²ΠΎΠ΄

Для мэтча с этой вакансиСй Π½ΡƒΠΆΠ΅Π½ Plus

ОписаниС вакансии

ВСкст:
/

TL;DR

Offensive Security Engineer (Cybersecurity): Identifying and exploiting vulnerabilities across APIs, mobile apps, and infrastructure with an accent on security automation and red team operations. Focus on building offensive tooling and leveraging LLM-powered agents to detect and fix vulnerabilities in real time.

Location: Remote (SΓ£o Paulo, Brazil)

Company

hirify.global is building a smarter, AI-driven future for payments and credit.

What you will do

  • Conduct pentests on APIs, mobile apps (Android/iOS), and infrastructure to identify vulnerabilities.
  • Execute red team operations, including phishing, social engineering, and privilege escalation to measure organizational resilience.
  • Engineer security platforms, scanning pipelines, and automation to multiply team impact.
  • Design and build LLM-powered agents that detect, classify, triage, and fix vulnerabilities in real time.

Requirements

  • Strong knowledge of common vulnerabilities, exploitation techniques, and secure coding practices.
  • Experience with web application and API pentesting; mobile pentesting is a strong plus.
  • Daily coding proficiency in TypeScript, Go, or similar languages to build tools and services.
  • Familiarity with cloud infrastructure security (GCP/AWS/Azure), Kubernetes, and service mesh concepts.
  • Understanding of CI/CD pipelines and how to embed security checks into them.
  • Experience leveraging LLMs or AI agents for security tasks.

Nice to have

  • Experience with red team operations: phishing infrastructure, social engineering, and C2 frameworks.
  • Familiarity with payment industry security, including PCI DSS and card tokenization.
  • Experience building internal security platforms, dashboards, or vulnerability management systems.
  • Contributions to open source security tools, published research, or CTF participation.

Culture & Benefits

  • Fast-paced environment focused on solving hard problems and exploiting real weaknesses.
  • Hybrid approach blending red teaming with defensive security engineering.
  • Direct impact on how the company defends itself at scale.
  • Opportunity to weaponize AI for defensive security purposes.

Π‘ΡƒΠ΄ΡŒΡ‚Π΅ остороТны: Ссли Ρ€Π°Π±ΠΎΡ‚ΠΎΠ΄Π°Ρ‚Π΅Π»ΡŒ просит Π²ΠΎΠΉΡ‚ΠΈ Π² ΠΈΡ… систСму, ΠΈΡΠΏΠΎΠ»ΡŒΠ·ΡƒΡ iCloud/Google, ΠΏΡ€ΠΈΡΠ»Π°Ρ‚ΡŒ ΠΊΠΎΠ΄/ΠΏΠ°Ρ€ΠΎΠ»ΡŒ, Π·Π°ΠΏΡƒΡΡ‚ΠΈΡ‚ΡŒ ΠΊΠΎΠ΄/ПО, Π½Π΅ Π΄Π΅Π»Π°ΠΉΡ‚Π΅ этого - это мошСнники. ΠžΠ±ΡΠ·Π°Ρ‚Π΅Π»ΡŒΠ½ΠΎ ΠΆΠΌΠΈΡ‚Π΅ "ΠŸΠΎΠΆΠ°Π»ΠΎΠ²Π°Ρ‚ΡŒΡΡ" ΠΈΠ»ΠΈ ΠΏΠΈΡˆΠΈΡ‚Π΅ Π² ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΡƒ. ΠŸΠΎΠ΄Ρ€ΠΎΠ±Π½Π΅Π΅ Π² Π³Π°ΠΉΠ΄Π΅ β†’