Used Tools & Technologies
Not specified
Required Skills & Competences
Tag name is followed by "@" symbol and proficiency level value.
About proficiency levels:
- 1-2 β basic awareness. Minimal hands-on experience, and a rudimentary understanding of the technology's purpose;
- 3-6 β daily use. Comfortable and regular usage, capable of handling common tasks and challenges related to the technology;
- 7-9 β you are an expert, you can teach others, you know all the pitfalls and tricks;
- 10 β exceptional knowledge, comprehensive understanding, and adeptness in all aspects of the technology, including advanced problem-solving. Think twice before claiming or demanding such level.
Security @ 3
Software Development @ 6
Go @ 6
Python @ 6
Scala @ 6
- 1-2 β basic awareness. Minimal hands-on experience, and a rudimentary understanding of the technology's purpose;
- 3-6 β daily use. Comfortable and regular usage, capable of handling common tasks and challenges related to the technology;
- 7-9 β you are an expert, you can teach others, you know all the pitfalls and tricks;
- 10 β exceptional knowledge, comprehensive understanding, and adeptness in all aspects of the technology, including advanced problem-solving. Think twice before claiming or demanding such level.
Details
Are you prepared to join the X team and help build the ultimate real-time information-sharing app, revolutionizing how people connect? At X, weβre on a mission to become the trusted global digital public square, committed to protecting freedom of speech and building the future unlimited interactivity. Our goal is to empower every user to freely create and share ideas, fostering open public discourse without barriers. Join us in shaping this thrilling journey where your contribution will be invaluable to our success!
Responsibilities
- Executing offensive security assessments and penetration testing strategies.
- Reviewing source code to identify common application vulnerabilities.
- Writing functional exploits for newly discovered vulnerabilities.
- Leveraging existing tools and developing custom offensive security scripts.
- Engaging with the bug bounty program to validate and remediate vulnerabilities.
- Performing penetration tests on internal systems.
- Automating baseline red team activities based on the environment and code base.
- Identifying and exploiting container vulnerabilities.
Requirements
You are a highly skilled Offensive Security Engineer with deep expertise in application security, penetration testing, and exploit development. The ideal candidate will also have:
- Strong software development skills in Scala, Python, Go, or similar languages.
- Advanced understanding of secrets and key management.
- Deep knowledge of authentication and authorization security mechanisms.
- Experience identifying vulnerabilities such as SSRF, data validation errors, injection attacks, and authentication race conditions.
- The ability to automate red team activities efficiently.
- Expertise in identifying and exploiting container vulnerabilities.
Nice to Have
- Bachelor's degree in Computer Science or equivalent experience.
- OSCP Certification.
- SANS SEC565: Red Team Operations and Adversary Emulation.
- SANS SEC588: Cloud Penetration Testing.
At X, our small but fast-paced team values innovation and creativity. You'll have the opportunity to make a significant impact on the future of X and our aspiration to build the Everything App. If you thrive in a dynamic, high-growth tech environment and relish the opportunity to collaborate with passionate, driven over-achievers, your career with us here at X will be both exhilarating and fulfilling.
Apply now to join our team!