Security Engineer II

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent experience).
• 3-5 years of experience in cybersecurity, penetration testing, or offensive security (preferred but not required).
• Internship or hands-on lab experience in ethical hacking or Red Teaming is highly desirable.
• Familiarity with penetration testing tools (e.g., Metasploit, Nmap, Burp Suite, Nessus, Wireshark).
• Basic understanding of networking protocols (TCP/IP, DNS, HTTP) and operating systems (Windows, Linux).
• Knowledge of vulnerability assessment tools and techniques.
• Foundational knowledge of scripting languages (Python, PowerShell, Bash) or willingness to learn.
• Awareness of attack frameworks such as MITRE ATT&CK and OWASP Top 10.
• CompTIA Security+ or equivalent entry-level certifications required.
• Analytical thinking and problem-solving skills.
• Ability to work collaboratively in a fast-paced, team-oriented environment.
• Excellent communication skills, with the ability to write clear and concise technical reports.
• Passion for offensive security and a strong desire to learn and grow in the field.
• High level of integrity and a strong commitment to ethical hacking principles.

Nice To Haves

• Offensive Security certifications (e.g., OSCP) are a plus.

Responsibilities

• Conduct vulnerability scans and assessments on applications, networks, and systems.
• Assist in executing penetration tests to identify security gaps and exploit potential vulnerabilities.
• Participate in simulated adversarial attacks (e.g., phishing campaigns, lateral movement scenarios, etc.).
• Use tools such as Metasploit, Burp Suite, Nmap, and other frameworks to identify and exploit security weaknesses.
• Document and communicate findings in detailed technical reports.
• Collaborate with Blue Teams, SOC analysts, and other security teams to improve clients security posture.
• Provide actionable recommendations and scopes to improve security controls and reduce attack surface.
• Assist in creating and updating Red Team methodologies, tools, and playbooks.
• Lead/assist in Incident Response efforts in event of a security breach
• Assist in ticket escalations from Blue Team
• Triage security tickets from various alert systems.
• Assist in developing and maintaining SOP’s
• Develop collateral for client meetings
• Consult with clients on security posture and possible improvements
• Provide recommendations based on security posture, Company objectives, and threat landscape
• Participate/lead client consultative meetings
• Provide scopes for security projects
• Implement scoped security projects
• Stay updated on the latest attack techniques, tools, and frameworks used by adversaries.
• Participate in training, certifications, and hands-on exercises to improve offensive security expertise.
• Continuously test new tools, scripts, and frameworks to enhance the Red Team’s toolkit.
• Assist in developing and maintaining scripts, custom tools, and exploits to simulate threat actor behavior.
• Support automation of repetitive tasks to improve testing efficiency
• Performs additional duties as assigned.

Benefits

• Group health insurance (PPO plans, High Deductible Health plan, HMO)
• Dental benefits
• Vision PPO plan
• Voluntary worksite benefits (critical illness and accident coverage, short-term disability insurance, supplemental life and pet insurance)
• Employer provided Life/AD&D insurance
• Employer provided LTD (Long-Term Disability insurance)
• Employee Assistance Program
• 401K plan with employer match
• Financial Advisory Services
• Permissive time off policy
• Parental leave (Maternity and Paternity)
• On-site fitness center
• Monthly on-call bonus