Senior Offensive Security Engineer

Ivanti is a company that focuses on enhancing security posture through cutting-edge cybersecurity technologies. The Senior Offensive Security Engineer will assess the security of applications, networks, and systems by simulating cyberattacks, while managing disclosure programs and collaborating with internal teams to resolve vulnerabilities.

Responsibilities:

• Assess security of applications, networks, and systems by simulating cyberattacks
• Manage disclosure programs and collaborate with internal teams to prioritize and resolve vulnerabilities, and conduct penetration tests
• Establish and maintain communication channels with the security research community to promote awareness of the responsible disclosure program and encourage participation
• Receive and triage vulnerability reports submitted by external researchers through various channels, such as email, web form, or bug bounty platform
• Collaborate with internal security teams to assess the severity and impact of reported vulnerabilities and prioritize them for resolution based on risk
• Facilitate communication and collaboration between researchers and relevant stakeholders, including development teams, IT operations, and product managers, to ensure timely resolution of identified security issues
• Track the progress of vulnerability remediation efforts and ensure that issues are addressed within agreed-upon timelines

Requirements:

• 5 years of experience in cybersecurity, with a focus on penetration testing and vulnerability assessment
• Responsible Disclosure Program (VDP) and Bugbounty program management
• CEH, Offensive Security Certified Professional (OSCP), or other relevant certifications
• Strong understanding of networking protocols, operating systems, and web applications
• Proficiency in using penetration testing tools such as Metasploit, Nmap, Burp Suite, etc
• Knowledge of common cybersecurity threats and attack vectors