 <div> <h2><strong>Key Responsibilities</strong></h2><h3><strong>Vulnerability Assessment &amp; Penetration Testing</strong></h3><ul><li><p>Conduct regular penetration tests to identify security flaws in applications, networks, and infrastructure.</p></li><li><p>Perform manual and automated vulnerability assessments across different platforms and environments.</p></li><li><p>Develop detailed reports on findings and provide actionable recommendations for remediation.</p></li></ul><ul></ul><p><strong>Red Team Engagement</strong></p><ul><li><p>Plan, execute, and support red team exercises to simulate real-world attack scenarios.</p></li><li><p>Identify attack vectors, exploit vulnerabilities, and simulate advanced persistent threats (APTs).</p></li><li><p>Collaborate with the security team to improve incident detection and response capabilities.</p></li></ul><ul></ul><p><strong>Security Tools &amp; Automation</strong></p><ul><li><p>Develop and integrate custom security tools to automate offensive security testing.</p></li><li><p>Leverage scripting languages like Python, Bash, and PowerShell to build automation for vulnerability exploitation and reporting.</p></li><li><p>Contribute to the development and improvement of internal security tooling.</p><h2><strong>Required Skills &amp; Qualifications</strong></h2><ul><li><p>5+ years of experience in offensive security, penetration testing and red teaming activities.</p></li><li><p>Expertise in web application security, network security, and cloud security (AWS, Azure, GCP).</p></li><li><p>Familiarity with vulnerability management.</p></li><li><p>Strong understanding of common attack vectors (e.g., XSS, SQL Injection, CSRF, privilege escalation).</p></li><li><p>Experience in manual and automated exploitation techniques.</p></li><li><p>Knowledge of security frameworks such as NIST, OWASP, and MITRE ATT&amp;CK.</p></li><li><p>Scripting experience with languages such as Python, Bash, or PowerShell.</p></li><li><p>Strong analytical and problem-solving skills.</p></li></ul><h2><strong>Preferred Qualifications (Bonus)</strong></h2><div><ul><li>Security certifications: OSCP, OSCE, GPEN.</li><li>Experience with red team tools like Cobalt Strike, Empire, or similar.</li><li>Hands-on experience with Kubernetes and containerised applications </li></ul></div></li></ul> </div>

Spectro Cloud

Senior Security Engineer (Offensive Security)

Spectro Cloud

Similar Remote Jobs