Job Closed

This listing is no longer active.

TryHackMe logo
TryHackMe

TryHackMe is an online, cloud-based, cyber security training platform used by individuals and academics alike.

Offensive Security Engineer

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 51-200Since 2018H1B No SponsorCompany SiteLinkedIn

Location

Worldwide

Posted

67 days ago

Salary

0

Seniority

Senior

3 yrs expEnglishJavaScriptPython

Job Description

Offensive Security Engineer

TryHackMe

• Work directly with the AI agent system, run it against targets, understand where it performs well and where it falls short, and provide structured feedback to improve coverage and accuracy • Validate, reproduce, and escalate findings, writing clear and reliable proof-of-concepts that demonstrate real-world exploitability • Coordinate disclosures across OSS projects and bug bounty platforms, managing timelines and communication effectively • Contribute to public security research and technical content that is relevant and valuable to the security community • Research emerging vulnerability classes and attack techniques, and translate those insights into improvements in how the system tests • Build and maintain custom tooling where needed, including automation scripts, payload lists, and testing harnesses tailored to specific targets

Job Requirements

  • 3-5+ years of professional offensive security experience in penetration testing, bug bounty, or red teaming
  • Strong understanding of web application vulnerabilities such as SQLi, XSS, SSRF, IDOR, SSTI, business logic flaws, authentication bypasses, and their real-world nuances
  • Comfortable reading and writing code in Python, Bash, and JavaScript, with the ability to build custom tooling when needed
  • Experience with public disclosures or CVEs
  • Clear and effective written communication, with the ability to explain complex findings to both engineers and security teams
  • Experience working with bug bounty platforms and responsible disclosure processes
  • Ability to go beyond automated tools and reason about systems, attack paths, and edge cases

Benefits

  • Competitive salary
  • Fully remote - work from anywhere with a global team
  • High trust and autonomy from day one

Related Categories

Related Job Pages

More Security Engineer Jobs

Hitachi logo

Grid Automation Operational Technology (OT) Cybersecurity and Networking Specialist

Hitachi

A Fortune 100 company recognized for its innovation by Fast Company magazine and for its sustainability, reputation, and value by Forbes magazine, Hitachi is al

Title: Grid Automation Operational Technology (OT) Cybersecurity and Networking Specialist Hybrid locations Raleigh, North Carolina, United States time type Full time Job Description: Job ID: R0127741 Company Name: HITACHI ENERGY USA INC Profession (Job Category): IT, Telecom & Internet Job Schedule: Full time Remote: No Job Description: The overall responsibility of the OT Cyber and Networking Specialist is providing cyber, networking and product technical support for our regional team, system integrators and utility customers using Hitachi Energy Automation and Communications solutions and products. Pre- and post-sales customer engagement supporting the regional Hitachi Energy teams in customer product system validation, technical evaluations and solution demonstrations. Apply knowledge of cybersecurity and complex communication networking using utility OT communication infrastructure practices and theories in determining equipment configuration and performance. Prepare solutions for customer demonstration, evaluation and diagnostics in OT applications including Substation Automation, Distribution Automation utilizing Wired (Ethernet/MPLS) and Wireless Broadband (Cellular/LTE and Mesh) communications networks. Regional customer engagement, communicating with and responding to customer support requests and inquires including site installation issues requiring service and support. JOB DUTIES: Key Responsibilities could include but are not limited to: - Debug, resolve and reproduce the most important issues for our customers. - Interface with other developers, quality team, and product management members to improve overall customer experience. - Assess, inspect and trouble-shoot devices, prototypes and test equipment as necessary. - Provide regional customer service and support remote and onsite when required to perform equipment assessment, application triage and software and hardware field upgrades. - Create, prepare, build, test and modify equipment used for application diagnostics and demonstration. Preparing equipment, devices and other equipment working from drawings and specifications. - Participate in industry events, trade shows, technical conferences and standardization. - Assist in the implementation and maintenance of cybersecurity measures for Grid Automation OT products and solutions. - Monitor and analyze network traffic to identify potential security threats. - Collaborate with the Grid Automation team to develop and deploy security protocols. - Participate in cybersecurity incident response and recovery efforts. - Stay updated on the latest cybersecurity trends and technologies. - Configure/manage network devices to ensure optimal performance and security. - Network and architecture design to support secure and efficient communication. - Troubleshoot network-related issues and provide solutions to enhance network stability. COMPLEXITY OF TASKS: - Requires knowledge and experience of utility communications infrastructure, Information Technology and Operation Technology automation and control systems, maintenance, and operation practices. - Must be able to work under the direction of the regional technical sales and application teams to prepare/configure devices and applications, quality assurance testing to validate application performance. - Requires problem solving and diagnostic experience for device/solution application issues recommending corrective action. - Assist regional team in executing customer demonstrations and pilots. - Self-starter and able to perform duties with minimal guidance. - Excellent analysis and problem-solving skills. - Team-player attitude. Equal Employment Opportunity (EEO)-Females/Minorities/Protected Veterans/Individuals with Disabilities Protected veterans and qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access the Hitachi Energy career site as a result of your disability. You may request reasonable accommodations by completing a general inquiry form on our website. Please include your contact information and specific details about your required accommodation to support you during the job application process. This is solely for job seekers with disabilities requiring accessibility assistance or an accommodation in the job application process. Messages left for other purposes will not receive a response.

North Carolina
Glia logo

Security Engineer

Glia

The #1 Platform for Intelligent Banking Interactions

Full TimeRemoteTeam 201-500Since 2012H1B No Sponsor

• Play a key role in looking after the vulnerability management process at Glia • Collaborate with other teams on the implementation of new security policies and procedures • Manage, test and categorize incoming information on security incidents (internal, reported, or industry-wide) • Perform regular vulnerability scans and security control reviews to ensure a continuously strong security posture • Participate in security reviews and risk assessments of AI tools used across the company • Assist Compliance in ongoing compliance activities and monitoring efforts across different regulations (GDPR, SOC 2, HIPAA, PCI-DSS, CCPA, etc.)

Estonia
Job Closed
CyberMaxx logo

Cybersecurity Specialist

CyberMaxx

CyberMaxx prevents, detects, and responds to cyberattacks so organizations can have peace of mind.

Full TimeRemoteTeam 51-200H1B No Sponsor

• Monitor and analyze security alerts and events from various security tools and systems. • Coordinate over multiple mediums with users and administrators of various roles and backgrounds during incident investigations and response. • Collect and analyze raw events and alerts. • Construct timelines surrounding activity that is adversarial or otherwise related to the investigation at hand. • Provide feedback on alerts received and events reviewed to the betterment of detection capabilities. • Escalate tickets, when necessary, based on established processes. • Classify and prioritize incidents based on established criteria. • Consistently provide professional-quality customer service. • Thoroughly and accurately document work details within the ticketing system. • Maintain familiarity with products in use and the ability to quickly familiarize with related technologies. • Stay informed of breaking news and industry best practices from multiple reliable sources and share findings. • Attend and contribute to regular team meetings.

Maryland
$65K / year
Job Closed
Full TimeRemoteTeam 201-500H1B No Sponsor

• Assist the Facility Security Officer (FSO) with administration and implementation of the 32 CFR Part 117, National Industrial Security Program Operating Manual (NISPOM) Rule for SGS subsidiary companies. • Update DCSA systems, Personnel Security, Foreign Travel briefings, and other program briefings. • Process Visit Requests as necessary and monitor expiration dates for expirations and extended visits. • Coordinate Insider Threat Program activities and ensure program requirements are met for the Insider Threat Working Group. • Coordinate in-processing activities for staff members with government customers, processing requests for Common Access Cards (CAC), other badges and ensuring visitor records remain current. • Assist the FSO with facility clearance sponsorship actions and DD 254 creation and tracking needed. • Assist with self-inspections alongside FSO and prepare for Security Vulnerability Assessments (SVAs) to ensure the facility is prepared for assessments. • Assist with self-inspection final reports and submit to company leadership and DCSA as required. • Coordinate and assist with the security training and awareness program and ensure initial, refresher, and debriefings are conducted as required. • Distribute security awareness information. • Establish and maintain successful working relationships with DCSA, government customers, subcontractors, and internal customers. • Assist with hiring actions relative to security clearance screenings and onboarding actions. • Assist with managing security violations, reporting and tracking disciplinary actions, and respond to general security questions. • Track and maintain access briefings necessary per individual DD 254 contract requirements. • Review accuracy of DD 254s upon receipt for government and prime contractors to ensure security requirements are followed as required. • Monitor and ensure NISS is updated and accurate for the company’s facility clearance. The Security Administrator may be required to perform other duties to meet the ongoing needs of the organization.

United States
$60K - $75K / year
Job Closed