RemoteLeaf Logo
Log in Sign up

Security Engineer - Offensive Security

1 month ago
Ireland
Full-time
Senior
Penetration Tester
Software Development
Apache Spark AWS Azure Burp Suite Databricks GCP Go LLM Penetration Testing Python Splunk
Apply Now
Stripe

Stripe

Stripe is a global technology company that provides financial infrastructure for the internet. They offer a suite of APIs and tools for businesses to accept online and in-person payments, automate financial processes, and embed financial services in th...

Diversified Financial Services
5K-10K
Founded 2009
$8700M raised
View All Jobs 190

Description

  • Conduct comprehensive penetration tests across web applications, APIs, cloud environments, mobile applications, and internal infrastructure.
  • Plan and execute red team engagements that emulate real-world adversary tactics across financial services scenarios.
  • Perform assumed-breach and objective-based assessments to test detection and response capabilities with defensive teams.
  • Partner with detection engineering, threat intelligence, and incident response teams to identify security gaps and improve detection fidelity.
  • Contribute adversary tradecraft insights to detection rules, threat hunting hypotheses, and incident response playbooks.
  • Support incident investigations with offensive expertise, log analysis, and root cause analysis when needed.
  • Design, develop, and maintain custom offensive tools, scripts, and automation frameworks.
  • Build internal platforms and workflows that enable scalable, repeatable offensive operations.
  • Produce clear reports that communicate technical findings, business risk, and remediation guidance to stakeholders.
  • Lead offensive security projects end-to-end, mentor junior team members, and share knowledge across the team.

Requirements

  • 5+ years of experience in offensive security, penetration testing, red teaming, or a related field.
  • Strong programming skills in Python, Go, or similar languages, with experience building tools, automation, or custom exploits.
  • Deep knowledge of web application security, including OWASP Top 10, ASVS, and common vulnerability classes.
  • Hands-on experience with cloud platforms such as AWS, Azure, or GCP, including cloud-native attack techniques and misconfigurations.
  • Proficiency with offensive tooling such as Burp Suite, Cobalt Strike, Mythic, Sliver, BloodHound, or similar frameworks.
  • Familiarity with MITRE ATT&CK and adversary TTPs for initial access, privilege escalation, lateral movement, and exfiltration.
  • Excellent written and verbal communication skills with the ability to translate technical findings into risk-based recommendations.
  • Ability to think creatively and persistently like an adversary in complex environments.
  • Experience conducting offensive security in fintech, financial services, or other highly regulated environments (preferred).
  • Background in vulnerability research, exploit development, or CVE discovery (preferred).
  • Experience collaborating with threat intelligence, detection engineering, or incident response teams in purple team operations (preferred).
  • Familiarity with big data and log analysis tools such as Splunk, Databricks, PySpark, or osquery (preferred).
  • Proficiency with AI/LLM-assisted development tools such as Claude Code, Cursor, or GitHub Copilot (preferred).
  • Interest or experience in agentic automation for reconnaissance, vulnerability discovery, or exploitation workflows (preferred).
  • Experience testing AI/ML systems or LLM-based applications for security weaknesses (preferred).
  • Contributions to open-source security tools, published research, blog posts, or conference presentations (preferred).
  • Relevant certifications such as OSCP, OSWE, OSEP, OSED, CRTO, CPTS, PNPT, GXPN, or cloud security certifications (preferred).

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Motional

Senior Cybersecurity Engineer, Defense Operations

Motional 1K-5K Automotive

Motional is hiring a Senior Cybersecurity Engineer to support its Defense Operations team by leading security monitoring, incident response, vulnerability management, and the ongoing protection of on-premise, SaaS, and cloud services.

Singapore Full-time Senior Security Engineer
AWS Bash CrowdStrike Cybersecurity PowerShell Python SAML SIEM Splunk Terraform
1 hour, 17 minutes ago
Anduril Industries

Head of Classified Infrastructure, Frontier Systems

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is seeking a senior security leader for its Frontier Systems team to shape and execute classified infrastructure and information security strategy for defense and intelligence programs.

United States Full-time Lead Infrastructure Engineer Security Engineer
$166k-$220k
Cybersecurity Penetration Testing
3 hours, 26 minutes ago
Klaviyo

Lead Security Engineer, Enterprise Security

Klaviyo 1K-5K IT Services

Klaviyo is hiring a Lead Security Engineer to secure its corporate systems and platforms across SaaS, identity, endpoints, Zero Trust networking, and perimeter defenses in a hands-on technical leadership role.

United States Full-time Lead Security Engineer
$175k-$263k
AWS Azure Cloudflare CrowdStrike GCP OAuth OpenID Connect Secrets Management Terraform Vercel
4 hours, 47 minutes ago
Anduril Industries

Staff Security Engineer

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a Security Engineer to secure its OT and ICS environments and help design foundational defenses for advanced defense technology and factory systems.

United States Full-time Lead Security Engineer
$191k-$253k
Go Linux Python Rust
8 hours, 30 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers