Offensive Security Engineer

Cyprus

Apply now Apply later

Your role at Exness:

We are looking for an Offensive Security Engineer to join the Information Security Team. Your mission: design and emulate cutting-edge real-world adversaries, expose critical security gaps before attackers do, and contribute to the resilience of Exness. If you thrive on thinking like an attacker and you want to be part of Red Team Operations, we want you on our team.

You will:

  • Participate in Red Team exercises that are intelligence-driven to test company cybersecurity protections, detections and response.
  • Be part of continuous adversary emulation activities in multiple domains: physical, social engineering, cloud, etc.
  • Build and maintain a secure and resilient Red Team infrastructure automating functions where possible.
  • Assist cybersecurity defense teams improve security protections and detections providing subject matter expertise on attacker tradecraft and mindset.
  • Continuously research new offensive security tactics, techniques, and procedures.
  • The team primarily conducts Red Team operations, while also providing Penetration Testing services.

What makes you a great fit:

  • At least 3 years of experience in any offensive cybersecurity role, performing penetration tests, web application assessments, etc.
  • Experience using command & control tools and relevant attack frameworks and writing tailored tools and exploits.
  • Understand OPSEC principles and apply them to avoid detections.
  • Experience executing social engineering related attacks.
  • Professional level certification such as OSEP, OSWE, OSED, OSMR, CRTO, CRTL, CRTE, PACES are highly appreciated.
  • Strong scripting abilities using Bash, Python, PowerShell and/or programming languages (C, C#, etc.).
  • Solid understanding of macOS security mechanisms and techniques to bypass them during offensive operations.
  • Experience attacking different cloud environments (AWS, GCP, Azure).
  • Experience with container platforms such as Docker and Kubernetes, including security configuration and isolation techniques.

Would be an advantage:

  • Experience in the Trading sector.

What we offer along the way:

  • Competitive and attractive compensation
  • Extensive learning opportunities, such as professional training and certifications, soft skills development, free English courses, and trading workshops
  • Flight tickets, hotel or apartment accommodation for your first month in Cyprus, migration support, and legal help for you and your family
  • Health and life insurance for employees, spouses, and children, including vaccinations, tests, mental health care, and coverage for vision and dental care
  • Generous time off, including 21 days of annual leave and paid sick leave
  • Education allowance for your children’s school and kindergarten fees 
  • Access to our very own sports club with dedicated coaches, free Sanctum Club memberships for you and your spouse, corporate SUPs, jet skis, etc
  • A branded company car with a parking space near the office
  • Outstanding team-building experiences and Exness community gatherings

Your journey after applying:

  1. First interview with Talent Acquisition Specialist (up to 45 minutes)
  2. Short online English test (for non-native speakers)
  3. Technical Interview (1 hour)
  4. Final interview (1 hour) 
Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  1  0  0

Tags: AWS Azure Bash C Cloud Docker Exploits GCP Kubernetes MacOS Offensive security OSWE Pentesting PowerShell Python Red team Scripting

Perks/benefits: Career development Competitive pay Health care Team events

Region: Middle East
Country: Cyprus

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.