Offensive Security Engineer

at X
πŸ“ New York City, United States
πŸ“ Palo Alto, United States
πŸ“ San Jose, United States
$162,000-297,000 per year
MIDDLE SENIOR
βœ… On-site

SCRAPED

Used Tools & Technologies

Not specified

Required Skills & Competences ?

Security @ 3 Software Development @ 6 Go @ 6 Python @ 6 Scala @ 6

Details

Are you prepared to join the X team and help build the ultimate real-time information-sharing app, revolutionizing how people connect? At X, we’re on a mission to become the trusted global digital public square, committed to protecting freedom of speech and building the future unlimited interactivity. Our goal is to empower every user to freely create and share ideas, fostering open public discourse without barriers. Join us in shaping this thrilling journey where your contribution will be invaluable to our success!

Responsibilities

  • Executing offensive security assessments and penetration testing strategies.
  • Reviewing source code to identify common application vulnerabilities.
  • Writing functional exploits for newly discovered vulnerabilities.
  • Leveraging existing tools and developing custom offensive security scripts.
  • Engaging with the bug bounty program to validate and remediate vulnerabilities.
  • Performing penetration tests on internal systems.
  • Automating baseline red team activities based on the environment and code base.
  • Identifying and exploiting container vulnerabilities.

Requirements

You are a highly skilled Offensive Security Engineer with deep expertise in application security, penetration testing, and exploit development. The ideal candidate will also have:

  • Strong software development skills in Scala, Python, Go, or similar languages.
  • Advanced understanding of secrets and key management.
  • Deep knowledge of authentication and authorization security mechanisms.
  • Experience identifying vulnerabilities such as SSRF, data validation errors, injection attacks, and authentication race conditions.
  • The ability to automate red team activities efficiently.
  • Expertise in identifying and exploiting container vulnerabilities.

Nice to Have

  • Bachelor's degree in Computer Science or equivalent experience.
  • OSCP Certification.
  • SANS SEC565: Red Team Operations and Adversary Emulation.
  • SANS SEC588: Cloud Penetration Testing.

At X, our small but fast-paced team values innovation and creativity. You'll have the opportunity to make a significant impact on the future of X and our aspiration to build the Everything App. If you thrive in a dynamic, high-growth tech environment and relish the opportunity to collaborate with passionate, driven over-achievers, your career with us here at X will be both exhilarating and fulfilling.

Apply now to join our team!