Offensive Security Engineer

1 week ago

Singapore PAYPAL PTE. LTD. Full time

**Job Description Summary**:
This offensive security engineer will lead and execute security engagements that combine both red team and purple team methodologies. Your role will involve designing and executing sophisticated cyberattacks, simulating advanced persistent threats and collaborating closely with the defense (blue) teams to improve detection, response, and overall security posture. You will work to challenge, assess, and enhance the organization’s security operations, ensuring that defenses are robust and responsive to current and evolving threats.

**Key Responsibilities**:
**Red Team**:

- Execute adversarial simulations mimicking real-world threat actors (APTs, insider threats, etc.).
- Research and simulate evolving cyber threats, vulnerabilities, and tactics, techniques, and procedures (TTPs) of adversaries.
- Develop custom scripts, tools, and payloads to bypass security controls and detection.

**Purple Team**:

- Collaborate with the blue team to optimize detection and response mechanisms.
- Facilitate knowledge sharing and training during real-time testing engagements, emphasizing skill development across red, blue, and purple teams.
- Test the effectiveness of existing security controls, offer insights for enhancement, and assist in adjusting strategies.Provide real-time attack/defense simulations to measure the accuracy and effectiveness of the blue team’s response.

**Reporting and Documentation**:

- Prepare detailed, actionable reports that communicate findings, risks, and remediation recommendations to both technical and non-technical stakeholders.
- Work with leadership to develop strategic security roadmaps based on testing results.

**Required Skills & Qualifications**:

- Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or equivalent experience.
- 5+ years of experience in offensive security (Red Teaming, Penetration Testing, or related fields).
- Deep understanding of adversary tactics, techniques, and procedures (TTPs), such as those outlined by MITRE ATT&CK.
- Strong proficiency with offensive security tools (e.g., Cobalt Strike, Metasploit, Burp Suite, BloodHound, Mimikatz).
- Knowledge of both Windows and Linux operating systems, scripting (e.g., Python, PowerShell, Bash), and familiarity with cloud environments (AWS, Azure, GCP).
- Experience working collaboratively in a purple team environment with a focus on improving defensive capabilities.
- Strong analytical and problem-solving skills, with a proactive and collaborative mindset.Industry certifications such as OSCP, OSCE, CRTO, CRTP, CRTE, CEH, GPEN,GXPN or similar.

**Preferred Qualifications**:

- Experience conducting stealth red team engagements, including lateral movement, persistence, and data exfiltration.
- Proficiency in attack automation and tool development.
- Familiarity with blue team operations and defensive security technologies (SIEMs, EDR, IDS/IPS).
- Contributions to open-source security tools or published research on offensive security topics.

  • Offensive Security Engineer

    7 days ago

    Singapore Traveloka Full time

    Overview It\'s fun to work in a company where people truly BELIEVE in what they\'re doing! Securing an organization and its information systems requires a holistic approach that includes continuous security verification, extending beyond standard testing and assessment methods. By assuming the role of a threat actor, the Offensive Security Team delivers...

  • Offensive Security Engineer

    2 weeks ago

    Singapore - Local Office Traveloka Full time $120,000 - $180,000 per year

    It's fun to work in a company where people truly BELIEVE in what they're doing‎ ‎ Job DescriptionSecuring an organization and its information systems requires a holistic approach that includes continuous security verification, extending beyond standard testing and assessment methods. By assuming the role of a threat actor, the Offensive Security Team...

  • Offensive Security Engineer

    2 weeks ago

    Singapore Shopee Full time

    Offensive Security Engineer (Red Team) - Information Security Join to apply for the Offensive Security Engineer (Red Team) - Information Security role at Shopee . Job Responsibilities Design and perform APT adversary emulation to assess infrastructure, systems, and applications against confidentiality, integrity, authentication, availability, authorization,...

  • Cyber Security Engineer

    3 days ago

    Singapore watchTowr Full time

    Overview watchTowr is the Preemptive Exposure Management capability trusted by Fortune 500 companies and critical infrastructure providers. By combining proactive threat intelligence, real attacker telemetry, and automated red teaming, watchTowr continuously identifies and validates real exposure - so security teams can outrun real-world threats. When...

  • Senior Cyber Threat Analyst

    2 weeks ago

    Singapore Marina Bay Sands Pte Ltd Full time

    Senior Cyber Threat Analyst (Offensive Security, Threat Hunting & Incident Response)LOVE WHAT YOU DO? THERE IS A PLACE FOR YOU HERE!Be part of our diverse and inclusive team. Job Responsibilities Adversarial Simulation: Perform comprehensive analyses and simulations to mimic cyber threats and identify vulnerabilities. Execute intel-led security testing and...

  • Head of Offensive Security

    2 days ago

    Singapore SEKURO OPERATIONS PTE. LTD. Full time $120,000 - $200,000 per year

    Head of OffsecSekuro is a trusted provider of information security consulting services. We are currently recruiting a smart, experienced and motivated security professional to join manage our Technical Assurance OFFSEC team and engagements in Asia. The role involves working with mid-market to enterprise level clients. The successful candidate will have a lot...

  • Senior / Lead Offensive Cybersecurity Engineer (VAPT)

    3 days ago

    Singapore Assurity Trusted Solutions Full time

    Assurity Trusted Solutions (ATS) is a wholly owned subsidiary of the Government Technology Agency (GovTech). As a Trusted Partner over the last decade, ATS offers a comprehensive suite of products and services ranging from infrastructure and operational services, authentication services, governance and assurance services as well as managed processes. In a...

  • Senior / Lead Offensive Cybersecurity Engineer (VAPT)

    3 days ago

    Singapore Assurity Trusted Solutions Pte Ltd Full time

    Senior / Lead Offensive Cybersecurity Engineer (VAPT)Assurity Trusted Solutions (ATS) is a wholly owned subsidiary of the Government Technology Agency (GovTech). As a Trusted Partner over the last decade, ATS offers a comprehensive suite of products and services ranging from infrastructure and operational services, authentication services, governance and...

  • Offensive Cybersecurity Engineer

    1 week ago

    Singapore Assurity Trusted Solutions Full time $80,000 - $240,000 per year

    Assurity Trusted Solutions (ATS) is a wholly owned subsidiary of the Government Technology Agency (GovTech). As a Trusted Partner over the last decade, ATS offers a comprehensive suite of products and services ranging from infrastructure and operational services, authentication services, governance and assurance services as well as managed processes. In a...

  • Lead Cybersecurity Architect, Offensive/defensive Security

    22 hours ago

    Singapore JPMorganChase Full time

    Join one of the world's most influential companies and leverage your skills in cybersecurity to have a real impact on the financial industry. **Job responsibilities** - Engages technical teams and business stakeholders to discuss and propose technical approaches to meet current and future cybersecurity needs - Defines the technical target state of their...