Offensive Security Engineer

Leading contributor to the Internet Computer Protocol (ICP), building decentralized web applications and blockchain technology.
$175,000 - $240,000
Security
Senior Software Engineer
Hybrid
101 - 500 Employees
5+ years of experience
Blockchain · Cybersecurity

Description For Offensive Security Engineer

DFINITY is seeking an experienced Offensive Security Engineer to join their security team, focusing on offensive security, threat research, and exploit development for the Internet Computer Protocol (ICP). This role combines blockchain security expertise with traditional infrastructure security, requiring deep knowledge of Red Team operations, exploit development, and security hardening.

The position offers an exciting opportunity to work with cutting-edge blockchain technology and secure decentralized web applications. You'll be responsible for identifying vulnerabilities, developing security tools, and leading sophisticated Red Team operations targeting the Internet Computer Protocol and infrastructure.

Working at DFINITY means joining a team of over 250 talented individuals, including world-renowned cryptographers and distributed systems engineers. The company is at the forefront of blockchain innovation, enabling AI models within smart contracts and facilitating multi-chain operations.

The role offers competitive compensation ($175,000 - $240,000) and comprehensive benefits, including top-tier healthcare and flexible PTO. Based in San Francisco with a hybrid work arrangement, this position provides an excellent opportunity to shape the future of web3 security while working with advanced technology and talented professionals.

Last updated 4 months ago

Responsibilities For Offensive Security Engineer

  • Lead and design sophisticated Red Team operations
  • Develop adversary emulation plans
  • Research, develop, and test advanced exploits
  • Maintain internal repository of exploits and tools
  • Strengthen security of Internet Computer Operating Systems
  • Perform vulnerability assessments and penetration tests
  • Harden and assess security for Kubernetes clusters
  • Build and maintain custom offensive security tools
  • Partner with cross-functional teams
  • Lead incident response efforts
  • Publish security advisories and report CVEs

Requirements For Offensive Security Engineer

Kubernetes
Linux
  • Extensive experience in Red Team engagements
  • Skilled in adversary emulation and lateral movement techniques
  • Experience in identifying and exploiting blockchain vulnerabilities
  • Strong understanding of kernel-level vulnerabilities
  • Strong understanding of SELinux
  • Expertise in securing Kubernetes clusters
  • Proficiency in QEMU virtualization technologies (plus)

Benefits For Offensive Security Engineer

Medical Insurance
Dental Insurance
Vision Insurance
401k
  • Top tier medical, dental, and vision insurance
  • Disability insurance
  • Life insurance
  • 401(k)
  • Flexible PTO policy
  • Paid holidays

Interested in this job?

Jobs Related To DFINITY Offensive Security Engineer

Senior Systems Security Engineer & Vulnerability Researcher

Senior Systems Security Engineer position at DFINITY focusing on OS security, container security, and hypervisor security research.

Offensive Security Engineer

Senior Offensive Security Engineer role at DFINITY, focusing on blockchain security, Red Team operations, and exploit development for the Internet Computer Protocol.

Python Developer - Lead Security Engineer (Firmwide Resiliency)

Lead Security Engineer position at JPMorgan Chase focusing on cybersecurity, secure software development, and technology controls implementation with competitive compensation and benefits.

Security Engineer III - Java & Cloud

Senior Security Engineer role at JPMorgan Chase focusing on Java and cloud security solutions, requiring 2+ years of experience in security engineering and cloud technologies.

Product Security Engineer, Payments Security - Core Security Services

Product Security Engineer role at Amazon focusing on payment security, vulnerability detection, and security automation.