9 months ago
Responsibilities
- Conduct hands-on penetration testing and red team assessments continuously.
- Build security tooling that autonomously finds and patches vulnerabilities.
- Develop and maintain custom offensive tooling and attack simulations.
- Operate automated security testing and remediation pipelines.
- Perform deep adversarial testing of AI-specific attack surfaces.
- Own vulnerability research and bug hunting across the product.
- Design and execute threat modeling sessions with engineering teams.
- Build attack simulation environments to validate security controls.
- Contribute directly to backend codebases and fix critical vulnerabilities.
- Lead purple team exercises to test detection and response capabilities.
- Manage relationships with external pen test firms and drive remediation.
Requirements
- Professional penetration testing experience across web apps, APIs, and cloud environments.
- Experience in building security tooling that minimizes human intervention.
- Development experience in strongly typed languages like Rust, Go, or Java.
- Familiarity with tools like Burp Suite, Nuclei, and custom fuzzing frameworks.
- Experience integrating automated security checks into CI/CD pipelines.
- Comfort with infrastructure automation tools like Terraform and Kubernetes.
- Strong communication skills for effective collaboration with teams.
- Knowledge of threat modeling, cryptography, and compliance frameworks.
Benefits
- Exceptional traction with major investment banks and financial firms.
- Work with a world-class team of talented and driven individuals.
- Fast-paced work environment that promotes rapid learning and growth.
- Opportunity to work on cutting-edge AI technology and products.
