Offensive Security Engineer
Description For Offensive Security Engineer
EarnIn, a pioneer in earned wage access, is revolutionizing financial flexibility for those living paycheck to paycheck. Backed by prestigious investors like A16Z, Matrix Partners, and DST, we're on a mission to build innovative financial products that make a real difference in people's lives.
We're seeking an experienced Offensive Security Engineer to strengthen our security team. This role combines technical expertise in penetration testing with strategic security architecture planning. You'll be instrumental in protecting our platform and users through comprehensive security assessments, vulnerability management, and collaboration with engineering teams.
The ideal candidate brings deep experience in security testing, with expertise in tools like Burp Suite, Metasploit, and programming languages including Python, Java, and JavaScript. You'll work with modern technologies including Kubernetes and cloud platforms, applying your knowledge of threat modeling frameworks like STRIDE and OWASP.
This is a remote position offering competitive compensation ($186,300 - $227,700) plus equity, allowing you to work from anywhere while making a significant impact. You'll join a diverse, inclusive team that values different perspectives and backgrounds, working together to build a financial system that truly works for everyone.
The role offers an exciting opportunity to shape security practices at a growing fintech company, mentor other engineers, and stay at the forefront of security trends. If you're passionate about offensive security and want to use your skills to help millions achieve financial flexibility, this position at EarnIn could be your next career move.
Responsibilities For Offensive Security Engineer
- Conduct internal penetration testing on products to identify security vulnerabilities and assess risk
- Perform security architecture reviews for new product features
- Create, analyze, and review data flow diagrams (DFDs) to identify security weaknesses
- Collaborate with engineering teams on secure design recommendations
- Document security assessments and findings
- Assist with vulnerability management and remediation prioritization
- Develop and maintain security guidelines and technical documentation
- Stay updated on latest security threats and defensive strategies
- Provide mentorship and security guidance to engineering teams
Requirements For Offensive Security Engineer
- Strong experience in penetration testing of web applications, APIs, and infrastructure
- Proficiency in security architecture reviews and secure design principles
- Experience with DFD creation and review
- Programming experience in Python, Java, JavaScript, or similar
- Experience with security tools like Nmap, Burp Suite, Metasploit
- Familiarity with threat modeling methodologies (STRIDE, OWASP, NIST)
- Strong understanding of web application security and authentication mechanisms
- Knowledge of container security (Docker, Kubernetes) and cloud platforms (AWS, Azure)
- Understanding of vulnerability management processes
Benefits For Offensive Security Engineer
- Equity
Jobs Related To EarnIn Offensive Security Engineer
