Offensive Security Engineer
November 13
Description
• Stripe is a financial infrastructure platform for businesses. • The Attacker Engineering team performs offensive security assessments and penetration testing to identify vulnerabilities and weaknesses. • Using your security expertise, you'll uncover security weaknesses within Stripe by simulating the tactics, techniques, and procedures of real-world adversaries. • Conduct complex offensive security assessments across a variety of environments, including on-premise, cloud, and mobile applications. • Develop scripts and tools to automate offensive security assessments. • Provide technical expertise in areas such as network protocols, operating systems, and web application security. • Work closely with other members of the Stripe security team to identify and mitigate security risks and vulnerabilities. • Lead offensive security projects and mentor junior team members. • Produce clear and concise reports testing plans, engagement models, findings, risks, and recommendations for remediation. • Keep up-to-date with the latest security threats, vulnerabilities, and attack methods. • Act as the subject-matter expert and primary contact for stakeholder teams invested in offensive security programs and Stripe-wide security initiatives. • Collaborate effectively with teammates, leading projects, mentoring others, and developing and championing quality standards within the team.
Requirements
• 5+ years experience in offensive security or related field • B.S. or M.S. Computer Science or related field, or equivalent experience • Proven knowledge of web application security, including vulnerabilities such as OWASP Top10 • Experience with cloud computing platforms such as AWS, Azure, or Google Cloud Platform • Knowledge of Python and SQL, and familiarity with other programming languages • Ability to analyze and interpret application logs to identify and investigate potential security incidents • Excellent written and verbal communication skills, including the ability to produce clear and concise reports • Ability to think creatively and holistically about identifying risk in a complex environment
Apply NowSimilar Jobs
November 13
JMA Wireless
501 - 1000
Network Security Engineer ensuring security for JMA's 5G XRAN systems.
November 13
DICK'S Sporting Goods
10,000+
Lead cybersecurity engineering for DICK’S e-commerce and mobile channels.
🇺🇸 United States – Remote
💵 $95.2k - $158.8k / year
⏰ Full Time
🟡 Mid-level
🟠 Senior
👮♂️ Security Engineer
November 12
Global Payments Inc.
10,000+
Designs secure applications for Global Payments' payment technology solutions.
November 12
Lirio
51 - 200
Security Engineer ensuring the security of Lirio’s systems and sensitive data.
🇺🇸 United States – Remote
💵 $135k - $160k / year
💰 $3M Debt Financing on 2022-07
⏰ Full Time
🟡 Mid-level
🟠 Senior
👮♂️ Security Engineer
🗽 H1B Visa Sponsor
November 12
Thrive
201 - 500
Drive cybersecurity detection program at Thrive, a tech solutions provider.