Offensive Security Engineer

Posted 4 Days Ago
Be an Early Applicant
Remote
Junior
Fintech • Financial Services
The Role
The Offensive Security Engineer will conduct proactive penetration testing, vulnerability assessments, and security risk evaluations. They will assist in developing strategies to identify exploits, document findings, collaborate with teams to address vulnerabilities, and simulate cyberattacks to evaluate security controls.
Summary Generated by Built In
Overview

Shift4 (NYSE: FOUR) is boldly redefining commerce by simplifying complex payments ecosystems across the world. As the leader in commerce-enabling technology, Shift4 powers billions of transactions annually for hundreds of thousands of businesses in virtually every industry. For more information, visit www.shift4.com.

Offensive Security Engineer

 

Shift4 is expanding globally and hiring a key Offensive Security Engineer for their Information Security team. This individual will be responsible for supporting Shift4’s cybersecurity defense through proactive penetration testing, vulnerability assessments, and security risk evaluations. This is a Junior level position where an individual is proactive in building their skills in ethical hacking and exploit discovery, helping identify and address security flaws in network infrastructure, applications, and systems. The Offensive Security Engineer will work closely with senior engineers to gain hands-on experience with attack simulation and assist in improving overall security posture.

This role is onsite based at any of the following Shift4 locations: Las Vegas, NV / Tampa, FL / Atlanta, GA / Center Valley, PA / Morrisville, NC


Responsibilities:

  • Assist in developing and executing offensive security strategies to uncover potential exploits.
  • Identify security risks and weaknesses, delivering detailed reports with mitigation recommendations.
  • Conduct vulnerability assessments and penetration testing of web applications, networks, and systems.
  • Collaborate with security teams to help triage and remediate identified vulnerabilities.
  • Use automated tools and manual techniques to identify and exploit vulnerabilities.
  • Simulate cyberattacks to assess the organization’s security controls.
  • Conduct social engineering campaigns to identify areas and individuals in need of training
  • Stay up-to-date with emerging cybersecurity threats, tools, and methodologies.
  • Participate in red teaming exercises to emulate real-world attack scenarios.
  • Document findings and assist in the creation of reports for both technical and non-technical audiences.
  • Work with cross-functional teams to ensure vulnerabilities are resolved in a timely manner.
  • Follow industry best practices and regulatory compliance standards in security testing.

Qualifications:

  • Bachelor’s degree in Computer Science, Cybersecurity, Information Security, or a related field, or equivalent practical experience. 
  • Minimum of 1 year of experience in hands-on professional work experience with penetration testing, to include required tools (e.g., Burp Suite, Metasploit, Nmap) and the use of basic security concepts, including network security, application security, and common attack vectors.
  • Knowledge of programming or scripting languages (e.g., Python, Bash).
  • Strong problem-solving skills with attention to detail.
  • Good communication skills, both written and verbal.
  • Ability to work collaboratively in a team environment.


Additional skills that are a plus to have: 

  • Knowledge of common vulnerability databases and security frameworks (e.g., OWASP Top 10, Mitre Att&ck).
  • Familiarity with security monitoring and alerting tools (e.g., SIEM systems).
  • Industry certifications (e.g., CompTIA Security+, CEH, OSCP, CompTIA PenTest+, eJPT, GIAC Security Essentials (GSEC), etc.).
  • Basic knowledge of cloud security principles and platforms (AWS, Azure, GCP)




We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity and/or expression, status as a veteran, and basis of disability or any other federal, state or local protected class.


Top Skills

Bash
Python
The Company
HQ: Pennsylvania, NY
835 Employees
On-site Workplace
Year Founded: 1999

What We Do

Shift4 (NYSE: FOUR) is boldly redefining commerce by simplifying complex payments ecosystems across the world. As the leader in commerce-enabling technology, Shift4 powers billions of transactions annually for hundreds of thousands of businesses in virtually every industry.

Similar Jobs

Headway Logo Headway

Senior Security Software Engineer

Consumer Web • Healthtech • Professional Services • Social Impact • Software
Easy Apply
Remote
USA
624 Employees
Remote
Dallas, TX, USA
944 Employees
Remote
Canada, KS, USA
124 Employees
Remote
United States
124 Employees

Similar Companies Hiring

Zone & Co Thumbnail
Software • Professional Services • Fintech • Consulting
Amsterdam, NL

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account