101 to 122 of 122 Permanent Offensive Security Jobs

expertise to exploit discovered vulnerabilities and misconfigurations associated with but not limited to operating systems (Windows, Linux, etc.), protocols (HTTP, FTP, etc.), and network security services (PKI, HTTPS, etc.) to accomplish test objectives. Research various cyber TTPs, organizational structures, capabilities, personas, and environments, and integrate findings into Cyber Survivability … development, improvement and validation. Support development and execution of TTPs for penetration testing/Red Teaming. Education/Qualifications Required: Active U.S. DoD Secret Security Clearance. 0-2 years of experience including one of the following: 1 penetration testing internship including practical experience. 1 of the following certifications: eJPT … CompTIA PenTest+, or GIAC Penetration Tester (GPEN). 1 year of Tryhackme, bug bounty, or capture the flag experience. Must be able to obtain Offensive Security Certified Professional (OSCP) within 6 months of hire. Bachelor's degree in Computer Science, Mathematics, Engineering or related fields or relevant years More ❯

We are watchTowr, a VC-backed global cyber security startup helping organisations continuously discover vulnerabilities in their Internet-facing attack surface. Cyber security veterans and technical experts, we are obsessed with building cybersecurity technology to help prevent breaches. With experience informed by years of simulating sophisticated cyber attacks … high and aggressive growth phase of our journey, and are excited to continue adding colleagues to join our phorce of nature. Our vision for offensive security is continuous. But what's the role? We are looking for a passionate Senior HR Manager to support our growing global team. … Endless opportunities - we are in a high-growth phase of our journey, and plan to promote from within as we scale. Work with cyber security experts - we are solving cutting-edge industry-wide cyber security challenges with some of the world's most advanced organisations. Please note that More ❯

HackerOne is a global leader in offensive security solutions. Our HackerOne Platform combines AI with the ingenuity of the largest community of security researchers to find and fix security, privacy, and AI vulnerabilities across the software development lifecycle. The platform offers bug bounty, vulnerability disclosure, pentesting More ❯

high-level engagements. You'll be involved in scoping and delivering advanced red team assessments, mentoring more junior team members, and supporting innovation through offensive security research. A GitHub portfolio of scripts or tools is required at interview stage. The essentials: Minimum 7 years of penetration testing experience … disciplines, including networks, infrastructure, applications, and cloud Comfortable in client-facing roles with strong communication skills Deep understanding of adversary simulation, lateral movement, and offensive tooling Capable of producing clear, actionable reports for both technical and executive stakeholders Desirable: Certifications such as OSCP, CREST, CHECK, or Cyber Scheme (CCT More ❯

day onsite, 4 days remote Requirements Proven experience as a Business Analyst within large, complex environments (ideally financial services). Strong knowledge of security and compliance projects, including experience with offensive security initiatives. Experience working with Microsoft E5 Security stack is a strong advantage; knowledge of More ❯

Are you looking for a threat hunter role, detecting cyber threats in support of active forensic investigations? Cyber threats are evolving, and when perimeter security and automated protection aren't enough, networks are compromised, information is accessed, data is exfiltrated, backups are wiped, and ransomware is deployed, locking up … and assist organizations in recovering from cyber incidents. We're seeking CND and CNO specialists who can think like cyber attackers to understand how security measures were circumvented. This role offers an opportunity to use your analytical skills and gain endpoint detection and response experience to identify indicators of … Endpoint Experience with network- and host-based intrusion analysis, digital forensics, or malware handling Experience with hunt teams, cyber threat intelligence, incident response, or security operations teams Knowledge of security principles, including MITRE ATT&CK framework, threat landscapes, or attacker TTPs Knowledge of Microsoft Windows, UNIX, and Mac More ❯

projects effectively. Collaborate with cross-functional teams, prioritize tasks, and ensure timely delivery of project milestones. Vulnerability Identification: Drive the discovery and analysis of security vulnerabilities, weaknesses, and design flaws in software applications and systems through comprehensive reverse engineering techniques. Technical Leadership: Provide technical leadership and mentorship to junior … reverse engineers, guiding them in advanced analysis methodologies, problem-solving, and decision-making. Collaborative Problem-Solving: Collaborate closely with security analysts, developers, and stakeholders to address complex technical challenges, propose solutions, and drive implementation efforts. Documentation and Reporting: Document reverse engineering findings, analysis methodologies, and project progress. Prepare technical … field, or a master's degree in computer science, Cybersecurity, or related disciplines is preferred. Relevant certifications such as Certified Reverse Engineering Analyst (CREA), Offensive Security Certified Professional (OSCP), or similar certifications demonstrating expertise in reverse engineering and cybersecurity are highly desirable. More ❯

Role: Penetration Tester Type: Permanent Location: Cheltenham/Remote Clearance: SC/DV Are you an offensive security specialist who is excited about delivering the best service possible? Keen to work in a business where you stand to work alongside some very talented testers? CND are working with … a boutique Cyber Security consultancy who are focused on the Penetration Testing market. What makes them stand out? They are not interested in flashy marketing and would never be caught trying to pass off a Nessus scan as a Penetration Test. The business has been built on delivering excellent … testing Ideally, a knowledge of Cloud services such as Azure or AWS Capability to script or code in Bash, Python etc Appreciation for Cyber Security standards such as ISO27001, PCI-DSS or CIS This is a role with a growing, exciting organisation who can offer you a strong degree More ❯

in training, consulting, technology, and operational support, the company provides services to the military, government, and law enforcement. Committed to excellence, innovation, and national security, Oak Grove Technologies fulfills federal defense contracts and actively supports veterans through sponsorships and events. Driven by its mission-focused approach, the company seeks … develop impactful solutions. Oak Grove Technologies offers a competitive compensation and benefits package. Requirements What You'll Be Doing: Penetration Testing Red Team Assessments Offensive cyber operations Will direct the activities of mid-level operators Antivirus evasion, EDR evasion What Required Skills You'll Bring: Active TS/SCI … assessment-specific leadership position guides the technical planning, execution, and reporting of a specific assigned assessment 3+ years' experience in conducting red team assessments, offensive cyber operations, or penetration testing and be prepared to direct the activities of mid-level operators. Special requirements: Professional Certification(s) required for this More ❯

software. • Develop custom tools and scripts to automate tasks, analyze data, and improve system performance. • Write clean, efficient, and well-documented code that meets security and performance standards. o Reverse Engineering: • Analyze, decompile, and reverse-engineer software binaries to understand vulnerabilities and potential exploits. • Develop proof-of-concept exploits … o System and Network Analysis: • Conduct network traffic analysis to identify anomalies, potential threats, and areas for improvement. • Develop and implement solutions for network security, ensuring systems are protected against potential intrusions. o Collaboration: • Work closely with cross-functional teams, including system engineers, analysts, and other developers, to ensure … certifications such as OSCP, CEH, CISSP, or GPEN. Experience: Prior experience in a DoD or intelligence community environment is highly desirable. Knowledge: Familiarity with offensive security techniques and frameworks, such as Metasploit or Cobalt Strike. More ❯

technical planning, execution, and reporting of a specific assigned assessment. Senior Red Cyber Operators shall have 3+ years' experience in conducting red team assessments, offensive cyber operations, or penetration testing and be prepared to direct the activities of mid-level operators. Special requirements: Professional Certification(s) required for this … before joining Defense Threat Reduction Agency (DTRA) Cyber Assessment Red Team (DCART) as an Operator. In addition, desired skills/certifications are: - 5+ years Offensive Cyber experience, DoD Cyber Red Team Experience, or corporate Red Team experience. - Red Team Apprentice Course (RTAC), Rogue Ops- Red Team 1 ROPS, Red … Team Journeyman Course (RTJC), Certified Red Team Operator (CRTO) certification, Offensive Security, Certified Professional (OSCP), Global Information Assurance Certification, (GIAC) Exploit Researcher & Advanced Penetration Tester (GXPN), GIAC Penetration Tester (GPEN), and/or GIAC Web Application Penetration Tester (GWAP). - Expertise in antivirus evasion, EDR evasion, and/ More ❯

We are watchTowr, a VC-backed cyber security startup helping organisations continuously discover vulnerabilities in their Internet-facing attack surface. Cyber security veterans and technical experts, we are obsessed with building cybersecurity technology to help prevent breaches. With experience informed by years of simulating sophisticated cyber attacks against … high and aggressive growth phase of our journey, and are excited to continue adding colleagues to join our phorce of nature. Our vision for offensive security is continuous. But what's the role? We are looking for an ambitious Full Stack Engineer to join us and our client More ❯

We are watchTowr, a VC-backed cyber security startup helping organisations continuously discover vulnerabilities in their Internet-facing attack surface. Cyber security veterans and technical experts, we are obsessed with building cybersecurity technology to help prevent breaches. With experience informed by years of simulating sophisticated cyber attacks against … high and aggressive growth phase of our journey, and are excited to continue adding colleagues to join our phorce of nature. Our vision for offensive security is continuous. But what's the role? We are looking for an ambitious Full Stack Engineer to join us and our client More ❯

of three (3) years of experience working in Agile environments, preferably in roles involving project management or leadership responsibilities. Certified Reverse Engineering Analyst (CREA), Offensive Security Certified Professional (OSCP), or similar certifications demonstrating expertise in reverse engineering and cybersecurity are highly desirable. Experience using industry standard RE tools More ❯

in training, consulting, technology, and operational support, the company provides services to the military, government, and law enforcement. Committed to excellence, innovation, and national security, Oak Grove Technologies fulfills federal defense contracts and actively supports veterans through sponsorships and events. Driven by its mission-focused approach, the company seeks … develop impactful solutions. Oak Grove Technologies offers a competitive compensation and benefits package. Requirements: What You'll Be Doing: Penetration Testing Red Team Assessments Offensive cyber operations Will direct the activities of mid-level operators Antivirus evasion, EDR evasion What Required Skills You'll Bring: Active TS/SCI … assessment-specific leadership position guides the technical planning, execution, and reporting of a specific assigned assessment 3+ years' experience in conducting red team assessments, offensive cyber operations, or penetration testing and be prepared to direct the activities of mid-level operators. Special requirements: Professional Certification(s) required for this More ❯

the development of threat intelligence products, technical reports, and briefings for senior government officials and technical stakeholders. • Stay abreast of the latest trends in offensive security research, reverse engineering tools and techniques, and emerging exploit methodologies. Qualifications: • Active Top Secret clearance with SCI eligibility (TS/SCI) is … tools (e.g., Wireshark, tcpdump). • Strong understanding of operating systems internals (Windows, Linux, RTOS). • Experience with exploit development techniques, shellcode writing, and bypassing security mitigations. • Excellent written and verbal communication skills, with the ability to effectively convey complex technical findings to both technical and non-technical audiences. Desired … Qualifications: • Experience with vulnerability disclosure processes and responsible disclosure practices. • Contributions to open-source security tools or research publications. • Relevant industry certifications (e.g., OSCP, OSCE, GPEN, GXPN, GREM). Strategic Analysis, Inc. is an Equal Opportunity employer and is committed to non-discrimination in employment. All qualified applicants will More ❯

IR35 Location: Edinburgh 1 day onsite, 4 days remote Duration: 6 months initially, view to extend. Requirements Proven experience as a Project Manager delivering security and compliance initiatives, ideally in financial services. Strong background in offensive security or other high-risk cybersecurity projects. Experience with Microsoft Endpoint More ❯

We're Hiring - Offensive Security Consultant (Red Team) Freelance remote from any NATO country Join a top-tier team of researchers, hackers & advisors pushing boundaries in cyber offense. If you live for Red Team ops, adversary emulation, and turning complex threats into actionable insights - we want you. What … advisor to global clients You bring: 2+ yrs pentest/Red Team experience Infra-as-Code, containers, and low-level coding skills OS & cloud security knowledge (Azure, MDE, Sentinel, etc.) Passion, curiosity, and drive to grow in a non-corporate, agile setup Bonus points: ️ OffSec certs (OSCP/OSEP More ❯

of their remote SDR team. Focussed on Cybersecurity, our client specialises in Managed Detection and Response. They monitor networks for a broad range of security issues, tailoring their monitoring for the specific industry and requirements of each client. They have worked with nationally-recognised brands such as RAC, Inchcape … tips and tricks. Regular team meetings to share insight on successful sales points and strategies. Full training on their services from the Head of Offensive Security and Head of Defensive Security. Regular one-to-one check-in meetings to ask questions and reflect progress. Appropriate online training courses More ❯

Our client is a leading specialist in offensive security. Location: Amsterdam Type: Permanent Workplace Type: Hybrid/1-2 days in office Language: Dutch speaking role Job Description This is a technical position and your tasks will include Conducting professional security assessments for the clients Consulting and advisory … services You will work on a mix of security assessments, web applications, mobile applications, infrastructure, and server deployment You will work on code review, cloud assessments (across multiple providers), SOC assessments, purple team exercises, red team engagements and hardware hacking is also on the table You will support & mentor … projects Requirements Must be based in Netherlands Professional level of Dutch speaking, listening & writing Minimum 2+ years relevant experience Consulting experience within the cyber security field Great communication skills and the ability to present technical jargon in an understandable way Desirable/Bonus Points (but not a requirement) Certified More ❯

operate, maintain, and support cloud infrastructure and data services. Automate and optimize data engineering pipelines. Utilize big data technologies (Databricks, Spark). Develop custom security applications, APIs, AI/ML models, and advanced analytic technologies. Experience with threat detection in Azure Sentinel, Databricks, MPP Databases (Snowflake), or Splunk. Expertise … in network, endpoint, and cloud security, cryptography, malware analysis, vulnerability assessment, anomaly/intrusion detection, incident response, and offensive security. Proficiency in AI/ML security and automation. Experience with data science and analytics in Databricks, Synapse Analytics, and large-scale data warehouses (Snowflake, Redshift, Presto). More ❯

operate, maintain, and support cloud infrastructure and data services. Automate and optimize data engineering pipelines. Utilize big data technologies (Databricks, Spark). Develop custom security applications, APIs, AI/ML models, and advanced analytic technologies. Experience with threat detection in Azure Sentinel, Databricks, MPP Databases (Snowflake), or Splunk. Expertise … in network, endpoint, and cloud security, cryptography, malware analysis, vulnerability assessment, anomaly/intrusion detection, incident response, and offensive security. Proficiency in AI/ML security and automation. Experience with data science and analytics in Databricks, Synapse Analytics, and large-scale data warehouses (Snowflake, Redshift, Presto). More ❯