Job Summary:
* Led internal penetration testing efforts and red-team style assessments of critical infrastructure and applications, leveraging expertise in scripting, infrastructure-as-code (IaC), and cloud-native security practices to enhance posture, visibility, and response.
* Designed and executed targeted internal red team / penetration tests across infrastructure, SaaS, APIs, and cloud environments, collaborating with engineering teams to remediate findings through secure architecture and configuration.
* Architectured and built scalable cloud security automation pipelines from first principles, developing durable controls to prevent exploitation at scale.
About the Role:
This is a high-impact position where you will contribute to defining and executing both offensive testing strategies and defensive automation roadmaps. You will be a go-to expert in uncovering vulnerabilities and building robust controls to prevent their exploitation.
Responsibilities:
* Penetration Testing & Offensive Security: Design and execute targeted internal red team / penetration tests across infrastructure, SaaS, APIs, and cloud environments; perform manual and automated testing to simulate real-world attack scenarios, including lateral movement and privilege escalation.
* Security Automation & DevSecOps: Architect and build scalable cloud security automation pipelines from first principles; develop and maintain Terraform modules, CI/CD integrations, and IaC security gates; build and operate security data pipelines to ingest and analyze scan and detection data at scale.