Senior Offensive Security Engineer

chime· 69 open roles

Location TBD On-siteFull-time3 weeks ago

Salary

$181,000 - $250,000

Experience

Mid

Job Type

Full-time

Posted

3 weeks ago

Apply Now

Get more other jobs in your inbox

Verified daily — no ghost listings.

About This RoleAI processing…

About the role We are seeking a Senior Security Engineer to build and lead our Offensive Security program. In this role, you will attack Chime’s services, applications, and infrastructure to discover security issues and report them to our internal technology teams. This position will offer you the opportunity to grow your technical and leadership skills while being part of a collaborative and dynamic team that finds joy in problem-solving and innovating together at Chime. The ideal candidate will be an offensive cybersecurity professional with a passion for analyzing codebases, testing hypothe

Key Responsibilities

1
Independently manage complete red team exercises.
2
Partner with Engineering, Product, IT, and other business functions to drive security improvement across the organization
3
Research emerging attack vectors, vulnerabilities and techniques
4
Utilize your offensive skills to identify weaknesses and build defenses against those who may point their attacks at Chime
5
Develop custom payloads and exploits
6
Emulate adversaries like cybercriminals and insider threats by attacking web applications, cloud platforms and supporting services(Kubernetes / Container Orchestration platforms etc.)
7
Collaborate closely with detection engineers to build high fidelity alerting based on emerging attack vectors and tactics, techniques and procedures
8
Participate in purple-team exercises to mature the security program

Requirements

4+ years of combined experience in either an offensive security, red teaming, or application security role.
Experience in conducting surreptitious cloud based attacks
Experience with developing custom tools and payloads which bypass defensive products, and remain undetected in a mature network environment
Ability to perform unsupervised red team engagements and experience with performing adversarial simulation
Ability to explain vulnerabilities and weaknesses to non-technical stakeholders
(Nice to have) Relevant certifications: OSCP (Offensive Security Certified Professional), OSCE (Offensive Security Certified Expert) and OSEE (Offensive Security Exploitation Expert), Certified Red Team Operator (CRTO), GIAC Red Team Professional certification (GRTP)

Perks & Benefits

🏢 Our in-office work policy is designed to keep you connected - with four days a week in the office and Fridays from home for those near one of our offices, plus team and company-wide events depending on location. Whether you’re coming in regularly or are part of our fully remote program, you’ll stay engaged with your work and teammates.

💻 In-office perks including backup child, elder, and/or pet care, plus a subsidized commuter benefit to support your regular commute

💰 Competitive salary based on experience

✨ 401k match plus great medical, dental, vision, life, and disability benefits

🏝 Generous vacation policy and company-wide Chime Days, bonus company-wide paid days off

🫂 1% of your time off to support local community organizations of your choice

👟 Annual wellness stipend to use towards eligible wellness related expenses

👶 Up to 24 weeks of paid parental leave for birthing parents and 12 weeks of paid parental leave for non-birthing parents

👪 Access to Maven, a family planning tool, with $15k lifetime reimbursement for egg freezing, fertility treatments, adoption, and more.

🎉 In-person and virtual events to connect with your fellow Chimers—think cooking classes, guided meditations, music festivals, mixology classes, paint nights, etc., and delicious snack boxes, too!

💚 A challenging and fulfilling opportunity to join one of the most experienced teams in FinTech and help millions unlock financial progress