Role Overview: As a Security Engineer, you’ll play a crucial role in identifying vulnerabilities, enhancing security measures, and ensuring the safety of our clients’ digital environments. Your responsibilities will span a wide range of tasks, from vulnerability scanning to technical content creation.
Responsibilities:
Vulnerability Detection and Automation:
* Collaborate with our security team to scan customer systems for critical vulnerabilities.
* Develop new vulnerability checks using tools like Nuclei.
* Curate crowd-sourced checks for inclusion in our Intruder platform.
* Automate penetration testing processes to scale across multiple clients simultaneously.
Rapid Response and Custom Scanning:
* Conduct custom scans on customer targets to identify emerging critical weaknesses.
* Provide rapid response solutions to address urgent security issues.
Technical Content Creation:
* Write informative and engaging technical content for our website, focusing on the latest vulnerabilities and security trends.
Research and Platform Improvements:
* Collaborate on research projects to enhance the Intruder platform.
* Provide evidence-based recommendations for novel improvements.
Client Interaction:
* Assist clients during technical calls, offering expert guidance.
* Occasionally participate in industry events and conferences.
Qualifications and Experience:
Industry Experience:
* Minimum of 2 years in offensive security roles.
* Proven track record in vulnerability assessment and penetration testing.
Educational Background:
* Technical academic background in software engineering or cyber security.
Certifications (One or More):
* OSCP
* OSWE
* OSEP
* CRT
* CCT APP
* CCT INF
Technical Skills:
* Network penetration testing with a deep understanding of network protocols.
* Web application penetration testing, including knowledge of application layer vulnerabilities.
* Proficiency in automating tasks using Python, Ruby, or Golang.
* Experience developing, extending, or modifying detection and fingerprinting code.
* Familiarity with exploit development, shellcode, and exploit tools.
Tool Proficiency:
* Strong knowledge of web application and network security testing tools, including commercial vulnerability scanners.
If you’re passionate about cybersecurity, thrive in a remote work environment, and want to be part of a forward-thinking team, we’d love to hear from you!