Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Offensive Security Lead (AI): Building and leading a red team function to secure a full-stack AI cloud platform with an accent on adversarial simulation and vulnerability research. Focus on attacking complex GPU infrastructure, multi-tenant cloud environments, and inference stacks to uncover sophisticated attack scenarios.
Location: Remote (Europe)
Company
Nebius is a Nasdaq-listed AI cloud platform provider building infrastructure for the global AI economy, headquartered in Amsterdam with a global R&D footprint.
What you will do
- Build and lead a red team function within the Product Security Team, hiring and developing offensive security engineers.
- Plan and execute full-scoped red team engagements against the cloud platform, including compute, storage, and orchestration layers.
- Research novel attacks against GPU infrastructure, inference stacks, and AI platform managed services.
- Validate Secure SDLC threat models via continuous penetration testing and automate routine security validations.
- Collaborate with Detection & Response teams to run purple team exercises and validate detection coverage.
- Deliver actionable security reports with business-contextualized risk for technical and leadership audiences.
Requirements
- 6+ years in offensive security (penetration testing, red teaming, or adversary simulation).
- 1-2+ years of experience leading or mentoring a team.
- Deep expertise in attacking cloud-native environments, including Kubernetes, IAM, and virtualization escapes.
- Strong proficiency in developing custom tooling and post-exploitation capabilities using Python or Go.
- Experience running purple team exercises and working constructively with blue teams.
- Must be authorized to work in the country of application.
Nice to have
- Experience attacking ML infrastructure, model serving pipelines, or GPU clusters.
- Reverse engineering and exploit development experience.
- Familiarity with eBPF bypass techniques or kernel-level exploitation.
- Background in vulnerability research or CVE discovery.
- Experience presenting security research at major conferences like BlackHat or DefCon.
Culture & Benefits
- Competitive compensation with equity upside in a high-growth, Nasdaq-listed company.
- Remote-first culture with flexibility and ownership.
- Opportunity to work on frontier AI infrastructure and novel attack surfaces.
- Collaborative, innovative, and international work environment.
- Career growth and learning opportunities within a talented engineering team.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →