Senior Engineer - Offensive Security

Cyber is seeking a creative, enthusiastic, self-motivated Engineer to join the Offensive Security team. The ideal candidate will be able to immediately elevate the teams' capabilities by performing high-quality assessments with little oversight and deliver excellent reports to stakeholders.

Position Description :

The Offensive Security Penetration Testing Engineer is responsible for identifying and exploiting vulnerabilities in computer systems, networks, and applications to simulate attacks by malicious actors.

The primary role is to conduct web application and network penetration testing and vulnerability assessments to identify weaknesses and recommend solutions to mitigate those risks.

Another part of the role is to support any infrastructure and tools required to complete assessments. Secondary duties include assisting with Red Team Exercises, social engineering, Purple Team Exercises, and physical assessments.

Position Responsibilities

As a Senior Engineer, you will :

Independently lead, architect, and build offensive security programs that focus on identifying vulnerabilities and weaknesses to manage and reduce the attack surface.

Conduct vulnerability assessments and penetration testing to identify weaknesses in systems, networks, applications, and physical security controls.

Develop and execute attack strategies to simulate real-world attacks by threat actors.

Analyze and report on the results of security assessments and make recommendations to improve the security posture of the organization.

Collaborate with other security professionals to design and implement security controls to prevent and detect cyber threats.

Stay up to date with the latest threats, vulnerabilities, security tools, and techniques and share them with the team.

Conduct social engineering tests to identify security gaps that could be exploited by attackers.

Create custom tools and scripts to automate testing and make the process more efficient.

Provide guidance and recommendations to other teams to improve the security of products.

Support and maintain tools used for assessments, responsible disclosure program, and attack surface monitoring.

Provide assistance with regular purple team exercises to test and strengthen security controls.

Qualifications :

Strong technical skills demonstrating a deep understanding of computer networks, operating systems, databases, web applications, and mobile applications.

Ethical mindset to support an understanding of the boundaries of ethical hacking.

Strong commitment to continuous learning and staying up to date with the latest tools, techniques, and trends; complimented by the ability to learn and adapt quickly to new situations.

Strong problem solving, analytical, time management, and communication skills.

One or more of the following Cybersecurity certifications are preferred :

OSCP

CRTO

GPEN

GMOB

Experience :

5 years of experience in Cybersecurity, Network Security, System Administration, and programming languages

Education :

Bachelor’s degree in computer science, Cybersecurity, Information Security, or equivalent education or work experience

LI-AW1

Annual Salary

$70,000.00 - $204,500.00

The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate / annual salary to be offered to the selected candidate.

Factors include, but are not limited to, the scope and responsibilities of the role, the selected candidate’s work experience, education and training, the work location as well as market and business considerations.

At this time, GEICO will not sponsor a new applicant for employment authorization for this position.

Benefits :

As an Associate, you’ll enjoy our

• to help secure your financial future and preserve your health and well-being, including :
• Premier Medical, Dental and Vision Insurance with no waiting period
• Paid Vacation, Sick and Parental Leave
• 401(k) Plan
• Tuition Reimbursement
• Paid Training and Licensures
• Benefits may be different by location. Benefit eligibility requirements vary and may include length of service.

Coverage begins on the date of hire. Must enroll in New Hire Benefits within 30 days of the date of hire for coverage to take effect.