Назад
10 часов назад

Staff Engineer - Offensive Security (AI)

155 520 - 228 700$
Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
lead
Английский
c1
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify RU Global, списка компаний с восточно-европейскими корнями
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Staff Engineer - Offensive Security (Cybersecurity): Designing complex attack chains and executing full-stack penetration tests to identify systemic risks across web, mobile, and cloud infrastructure with an accent on AI/LLM probing and adversary emulation. Focus on building automated AI testing frameworks and developing custom exploits to bypass EDR/AV protections.

Location: Remote (US), but not eligible to be hired in CA, CT, NJ, NY, PA, WA

Salary: $155,520 - $228,700

Company

Global communications platform empowering developers to create personalized customer experiences.

What you will do

  • Perform full-stack penetration testing on web applications, APIs, and mobile apps (iOS/Android).
  • Execute AI/LLM probing and jailbreak tests based on the OWASP Top 10 for LLMs.
  • Conduct network and cloud assessments (AWS, Azure, K8s) focusing on IAM misconfigurations and container escapes.
  • Design and lead Red Team operations mimicking APT threat actors to test SIRT detection capabilities.
  • Develop custom payloads and obfuscated scripts to bypass EDR/AV and maintain stealth.
  • Oversee the bug bounty program and provide technical remediation guidance to engineering teams.

Requirements

  • 7-10 years of experience in offensive security, penetration testing, or vulnerability exploitation.
  • Expert knowledge of MITRE ATT&CK, OWASP Top 10 (Web & LLM), and Adversarial ML.
  • Proficiency with Burp Suite, Nmap, Metasploit, and C2 frameworks (e.g., Cobalt Strike, Sliver).
  • Strong coding skills in Python, C++, and Bash for creating custom offensive exploits.
  • Must be based in the US (excluding specific restricted states).
  • Advanced certifications such as OSCP, OSEP, OSWE, or GXPN are highly desirable.

Nice to have

  • Experience in the Telecom industry.
  • Familiarity with AI security tools like PyRIT, Promptfoo, Garak, LangChain, or TensorFlow.

Culture & Benefits

  • Remote-first work environment with a strong culture of global inclusion.
  • Comprehensive healthcare insurance and a retirement savings program (401k).
  • Competitive pay, corporate bonus plan, and equity eligibility.
  • Generous time off, including paid parental and wellness leave.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →