Cloud Attack Researcher
Petah Tikva, Israel, IL
Pentera
Pentera: Don't assume, validate. With Automated Security Validation™, ensure 'pretty certain' means secure. Trusted by top CISOs.Description
Accelerate Your Career in Cybersecurity
Join Pentera and take your career to the next level in cybersecurity. As a leader in Automated Security Validation, we help businesses around the world safely emulate real-world attacks to uncover their vulnerabilities—just like the world’s best red teams. At Pentera, you’ll be at the forefront of cybersecurity innovation, working on advanced tools that challenge organizations' defenses and push the limits of security testing.
With over 350 team members and 1,000+ customers in more than 50 countries, Pentera is a growing company supported by top investors like Insight Partners, K1, and The Blackstone Group.
If you're looking to grow your skills, make a difference, and be part of an innovative team, Pentera is the place for you.
About the role:
We are looking for an offsec Cloud attack researcher to join our group and become part of the revolution.
Roles and Responsibilities:
- Conduct state of the art research on AWS, Azure and GCP cloud platforms and be one step ahead of real threat actors.
- Integrate the research outputs into attack platforms for enhancing the automation ecosystem with new attack capabilities.
- Develop decision-making algorithms to bridge the gap between an automated system and an experienced human attacker
- Develop production-ready attack capabilities. What development language is relevant? WHATEVER IT TAKES!
- Python, C/C++, CSharp, Java, Office Macros, Bash, Powershell, Go, Ruby,…
- Mentor other members of the R&D team.
So, can we offer you the red pill and join our journey to create the ultimate automated hacker?
Requirements
- 3+ Years of experience in researching/testing Cloud technologies and Cloud-native applications
- 3+ Years of practical experience in red/blue team engagements
- 3+ Years of experience in Python development
- Deep knowledge of Azure/AWS and its eco-system
- Experience with pure and hybrid cloud environments
- Familiarity with common open-source attack platforms
- Metasploit, Nmap, Beef, Cobalt Strike, Impacket, Burp, Pacu
- Excellent teamwork skills
- Fast learner and quick on adapting to new technologies and fields
Preferred skills:
- IDF cyber team veteran
- Experience and passion for cyber oriented research
- Experience with working in Agile Methodology
- Experience in the following attack areas:
- Web applications
- Vulnerability research
- Payload engineering
- Hands-on experience with the Java development language
- Bachelor’s degree in Computer Science or a related field
We are an equal opportunity employer and we are committed to building a diverse and talented workforce. We do not discriminate on the basis of race, sex, religion, colour, national origin, gender, gender identity, sexual orientation, age, marital status, veteran status, medical condition, disability, or any other class or characteristic protected by applicable law. We welcome candidates from all backgrounds to join us!
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Automation AWS Azure Bash Blue team C Cloud Cobalt Strike Computer Science GCP Java Metasploit Nmap Offensive security PowerShell Python R&D Ruby Vulnerabilities
Perks/benefits: Career development
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.