RemoteLeaf Logo
Log in Sign up

Security Engineer - Offensive Security

2 hours, 18 minutes ago
Ireland
Full-time
Senior
Penetration Tester
Software Development
Apache Spark AWS Azure Burp Suite Databricks GCP Go LLM Penetration Testing Python Splunk
Apply Now
Stripe

Stripe

Stripe is a global technology company that provides financial infrastructure for the internet. They offer a suite of APIs and tools for businesses to accept online and in-person payments, automate financial processes, and embed financial services in th...

Diversified Financial Services
5K-10K
Founded 2009
$8700M raised
View All Jobs 100

Description

  • Conduct comprehensive penetration tests across web applications, APIs, cloud environments, mobile applications, and internal infrastructure.
  • Plan and execute red team engagements that emulate real-world adversary tactics across financial services scenarios.
  • Perform assumed-breach and objective-based assessments to test detection and response capabilities with defensive teams.
  • Partner with detection engineering, threat intelligence, and incident response teams to identify security gaps and improve detection fidelity.
  • Contribute adversary tradecraft insights to detection rules, threat hunting hypotheses, and incident response playbooks.
  • Support incident investigations with offensive expertise, log analysis, and root cause analysis when needed.
  • Design, develop, and maintain custom offensive tools, scripts, and automation frameworks.
  • Build internal platforms and workflows that enable scalable, repeatable offensive operations.
  • Produce clear reports that communicate technical findings, business risk, and remediation guidance to stakeholders.
  • Lead offensive security projects end-to-end, mentor junior team members, and share knowledge across the team.

Requirements

  • 5+ years of experience in offensive security, penetration testing, red teaming, or a related field.
  • Strong programming skills in Python, Go, or similar languages, with experience building tools, automation, or custom exploits.
  • Deep knowledge of web application security, including OWASP Top 10, ASVS, and common vulnerability classes.
  • Hands-on experience with cloud platforms such as AWS, Azure, or GCP, including cloud-native attack techniques and misconfigurations.
  • Proficiency with offensive tooling such as Burp Suite, Cobalt Strike, Mythic, Sliver, BloodHound, or similar frameworks.
  • Familiarity with MITRE ATT&CK and adversary TTPs for initial access, privilege escalation, lateral movement, and exfiltration.
  • Excellent written and verbal communication skills with the ability to translate technical findings into risk-based recommendations.
  • Ability to think creatively and persistently like an adversary in complex environments.
  • Experience conducting offensive security in fintech, financial services, or other highly regulated environments (preferred).
  • Background in vulnerability research, exploit development, or CVE discovery (preferred).
  • Experience collaborating with threat intelligence, detection engineering, or incident response teams in purple team operations (preferred).
  • Familiarity with big data and log analysis tools such as Splunk, Databricks, PySpark, or osquery (preferred).
  • Proficiency with AI/LLM-assisted development tools such as Claude Code, Cursor, or GitHub Copilot (preferred).
  • Interest or experience in agentic automation for reconnaissance, vulnerability discovery, or exploitation workflows (preferred).
  • Experience testing AI/ML systems or LLM-based applications for security weaknesses (preferred).
  • Contributions to open-source security tools, published research, blog posts, or conference presentations (preferred).
  • Relevant certifications such as OSCP, OSWE, OSEP, OSED, CRTO, CPTS, PNPT, GXPN, or cloud security certifications (preferred).

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Alphasense

Information Engineer II, Enterprise Systems Technology

Alphasense 51-250 Industrial Conglomerates

AlphaSense is hiring Engineer II, Enterprise Systems Technology to design, build, and operate secure enterprise platforms and identity services that support internal teams and improve operational efficiency at scale.

India Full-time Mid Level Infrastructure Engineer Security Engineer
AWS Bash CI/CD Cloudflare CrowdStrike Git JSON LLM OAuth PowerShell Python REST API SQL Terraform YAML
18 minutes ago
Alphasense

Director, AI Governance, Automation & Analytics

Alphasense 51-250 Industrial Conglomerates

AlphaSense is hiring a security leader to build and run enterprise AI governance, agent security, and automation programs that protect its AI-driven market intelligence platform.

United States Full-time Executive Machine Learning Engineer Security Engineer
$209k-$250k
LLM Machine Learning NLP OAuth Python SIEM SQL Transformers
48 minutes ago
Pure Storage

IAM Operations Engineer

Pure Storage 1K-5K IT Services

Pure Storage’s Global Information Security Office is hiring an IAM Operations Engineer to run and improve enterprise identity and access management services across on-premises and multi-cloud environments.

United States Full-time Mid Level Security Engineer
$176k-$265k
Ansible Bash Datadog HashiCorp Vault PowerShell Prometheus Python Secrets Management Splunk Terraform
1 hour, 3 minutes ago
K

Principal Security Engineer, Operations

K2 Space Corporation 51-200 Defense and Space Manufacturing

K2 Space is hiring a Principal Security Engineer to define and scale the corporate security architecture that protects its people, systems, and data as the company grows its satellite operations.

United States Full-time Lead Security Engineer
$155k-$185k
C++ Go Network Security Python Rust
1 hour, 33 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers