>

Job Summary


Job Type
Permanent

Seniority
Senior
Mid

Years of Experience
At least 5 years

Tech Stacks
Docker
Node.js
Kubernetes
Ruby
C++
C
Go
Python
AWS

Job Description


Apply
The goal of an Offensive Security Engineer is to proactively identify and help mitigate technical risk across all BitMEX systems, people, and processes. They will achieve this through a combination of penetration testing, adversary simulation, red/purple teaming, ongoing vulnerability assessment activities and tools development while working closely alongside the Detection & Response, AppSec and Infrastructure Security teams.

Responsibilities

  • Discover vulnerabilities in BitMEX Corporate infrastructure before a malicious external actor does.
  • Discover vulnerabilities in BitMEX Production infrastructure before a malicious external actor does.
  • Discover vulnerabilities in BitMEX Physical (office, badging) infrastructure before a malicious external actor does.
  • Discover vulnerabilities in BitMEX Executive infrastructure (homes, private/home offices) before a malicious external actor does.

Qualifications

  • 5+ years of experience in security testing, vulnerability and/or red team assessment at a top tech or finance company.
  • Experience performing physical penetration tests.
  • Experience performing “Purple Team” exercises using the Mitre ATT&CK Framework.
  • Strong software development skills in Python, Golang, NodeJS, Ruby, C, C++, or similar.
  • Deep knowledge of Amazon Web Services, GCP, and general Cloud infrastructure security.
  • Deep understanding of DevOps/CICD environments, attack vectors and mitigating controls. Familiarity with Docker/Kubernetes.
  • Comfortable operating across a wide variety of platforms, operating systems, and technologies.
  • Ability to work collaboratively and cross functionally with the other security teams.

Salaries

There are no salaries from BitMEX that are similar to this job

View more salaries from BitMEX


NodeFlair Insights of BitMEX