Demo
Salary Resume Critique Job Openings

Senior Security Engineer, Offensive Security

DFINITY Foundation
San Francisco, CA Full Time
POSTED ON 1/19/2025
AVAILABLE BEFORE 4/17/2025

We are seeking an experienced Offensive Security Engineer to join our growing security team with a focus on offensive security, threat research, and exploit development. You will identify vulnerabilities, understand how they function behind the scenes, and develop patterns and tools to mitigate risks. If you have a strong technical background, are passionate about offensive security, and enjoy working in decentralized environments, we want to hear from you.

Key Responsibilities :

Red Team Strategy & Execution

  • Lead and design sophisticated Red Team operations targeting Internet Computer Protocol, governance, subnets, nodes, and system dApps.
  • Develop adversary emulation plans to test both platform and infrastructure defenses, identifying weaknesses before they can be exploited.

Exploit Development & Vulnerability Research

  • Research, develop, and test advanced exploits against the Internet Computer Protocol and infrastructure.
  • Maintain an internal repository of exploits, scripts, and tools for advanced offensive security operations.

    • Infrastructure Security

  • Strengthen the security of Internet Computer Operating Systems (ICOS) running on virtual machines by implementing advanced hardening measures.
  • Perform vulnerability assessments and penetration tests on the ICOS environment and the overall Internet Computer infrastructure to identify and mitigate risks.
  • Harden and assess security for internal Kubernetes clusters and associated services, ensuring robust defense mechanisms against container-based attacks.
  • Perform security testing across cloud-native infrastructures, CI / CD pipelines, and microservices environments, identifying lateral movement paths and privilege escalation risks.

    • Tool Development & Automation

  • Build and maintain custom offensive security tools for exploit delivery, post-exploitation automation, and Red Team simulations.
  • Develop secure operational tools to streamline complex engagements and support security monitoring, threat detection, and incident handling.

    • Collaboration & Incident Handling

  • Partner with cross-functional teams, including blockchain developers, DevOps, and infrastructure engineers, to embed security best practices throughout the development lifecycle.
  • Lead incident response efforts involving blockchain or internal systems, conducting thorough post-mortems and implementing mitigation strategies.
  • Publish security advisories and report CVEs.

    • Requirements :

  • Extensive experience planning and executing Red Team engagements in complex, distributed environments, simulating advanced persistent threats (APTs) across blockchain and / or traditional infrastructure.
  • Skilled in adversary emulation, lateral movement techniques, privilege escalation, and exfiltration tactics.
  • Proven experience in identifying and exploiting vulnerabilities specific to blockchain ecosystems is a plus. This includes distributed consensus mechanisms, smart contract execution, and inter-node communication.
  • Strong understanding of kernel-level vulnerabilities, hypervisor security, and virtualized environments.
  • Strong understanding of SELinux.
  • Expertise in securing Kubernetes clusters and traditional infrastructure, with a focus on container security.
  • Proficiency in working with QEMU virtualization technologies and AMD SEV-SNP secure enclaves is a plus.
  • This is a hybrid-onsite position, based out of our soon-to-be-opened office in the heart of San Francisco.

    • Base Salary Range : $175,000 - $240,000 / yr

    This position can be considered across multiple levels. Total compensation at DFINITY consists of base salary generous bonus and is determined based on multiple factors including job leveling, areas of expertise, educational background, geographic location, and overall experience.

    In addition to the cash components of our offers, we have generous benefits including top tier medical, dental, and vision insurance; disability insurance; life insurance; 401(k); flexible PTO policy in addition to paid holidays.

    About DFINITY and the Internet Computer :

    Before applying for this role, please read the following information about this opportunity found below.

    DFINITY is a leading contributor to the Internet Computer Protocol (ICP), with a mission to bring the world's compute onto the secure ICP network. Built on its unique third-generation blockchain technology, ICP enables the development and operation of a new generation of unstoppable, tamper-proof, fully decentralized web applications. Its powerful technology can run entire AI models within smart contracts, representing a major advancement for secure AI. Through seamless integration with Bitcoin, Ethereum, and other networks, ICP facilitates multi-chain operations for digital assets and web3.

    Join our team of over 250 talented individuals, including world-renowned cryptographers, distributed systems engineers, programming language experts, and industry leaders, who are shaping the future of the internet and web3. DFINITY was founded in 2016 by entrepreneur and crypto theoretician, Dominic Williams.

    All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

    J-18808-Ljbffr

    Salary : $175,000 - $240,000

    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Senior Security Engineer, Offensive Security?

    Sign up to receive alerts about other jobs on the Senior Security Engineer, Offensive Security career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $139,945 - $168,577
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $70,462 - $84,818
    Income Estimation: 
    $77,991 - $108,747
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $111,725 - $147,313
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $139,945 - $168,577
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $139,945 - $168,577
    Income Estimation: 
    $164,835 - $201,088
    Income Estimation: 
    $135,994 - $168,063
    Income Estimation: 
    $161,209 - $233,553
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Job openings at DFINITY Foundation

    Growth Marketing Lead
    DFINITY Foundation
    Hired Organization Address San Francisco, CA Full Time
    In this role you will support DFINITY's continuous growth across all digital channels, in collaboration with the rest of...
    View More Jobs at DFINITY Foundation

    Not the job you're looking for? Here are some other Senior Security Engineer, Offensive Security jobs in the San Francisco, CA area that may be a better fit.

    Senior Security Engineer, Offensive Security and Blockchain

    DFINITY, San Francisco, CA

    Senior Software Engineer, Platform

    Material Security, San Francisco, CA

    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!