Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Staff Engineer - Offensive Security (Cybersecurity): Designing complex attack chains and executing full-stack penetration tests to identify systemic risks across web, mobile, and cloud infrastructure with an accent on AI/LLM probing and adversary emulation. Focus on building automated AI testing frameworks and developing custom exploits to bypass EDR/AV protections.
Location: Remote (US), but not eligible to be hired in CA, CT, NJ, NY, PA, WA
Salary: $155,520 - $228,700
Company
Global communications platform empowering developers to create personalized customer experiences.
What you will do
- Perform full-stack penetration testing on web applications, APIs, and mobile apps (iOS/Android).
- Execute AI/LLM probing and jailbreak tests based on the OWASP Top 10 for LLMs.
- Conduct network and cloud assessments (AWS, Azure, K8s) focusing on IAM misconfigurations and container escapes.
- Design and lead Red Team operations mimicking APT threat actors to test SIRT detection capabilities.
- Develop custom payloads and obfuscated scripts to bypass EDR/AV and maintain stealth.
- Oversee the bug bounty program and provide technical remediation guidance to engineering teams.
Requirements
- 7-10 years of experience in offensive security, penetration testing, or vulnerability exploitation.
- Expert knowledge of MITRE ATT&CK, OWASP Top 10 (Web & LLM), and Adversarial ML.
- Proficiency with Burp Suite, Nmap, Metasploit, and C2 frameworks (e.g., Cobalt Strike, Sliver).
- Strong coding skills in Python, C++, and Bash for creating custom offensive exploits.
- Must be based in the US (excluding specific restricted states).
- Advanced certifications such as OSCP, OSEP, OSWE, or GXPN are highly desirable.
Nice to have
- Experience in the Telecom industry.
- Familiarity with AI security tools like PyRIT, Promptfoo, Garak, LangChain, or TensorFlow.
Culture & Benefits
- Remote-first work environment with a strong culture of global inclusion.
- Comprehensive healthcare insurance and a retirement savings program (401k).
- Competitive pay, corporate bonus plan, and equity eligibility.
- Generous time off, including paid parental and wellness leave.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →