68 jobs found

Astranis builds advanced satellites for high orbits, expanding humanity's reach into the solar system. Today, Astranis satellites provide dedicated, secure networks to highly sophisticated customers across the globe-large enterprises, sovereign governments, and the U.S. military. With five satellites on orbit and many more set to launch soon, the company is servicing a backlog of more than $1 billion of commercial contracts. Astranis is the preferred satellite communications partner for buyers with stringent requirements for uptime, data security, network visibility, and customization. Astranis has raised over $750 million from some of the world's best investors, from Andreessen Horowitz to Blackrock and Fidelity, and employs a team of 450 engineers and entrepreneurs. Astranis designs, builds, and operates its satellites out of its 153,000 sq. ft. headquarters in Northern California, USA. Senior Offensive Security Engineer As a Senior Offensive Security Engineer, you will lead penetration testing and adversarial simulation efforts targeting our applications, cloud infrastructure, and corporate networks. You will emulate real world attackers to identify weaknesses across the software and IT stack, and work closely with engineering and IT teams to improve our defenses. Your focus is offensive testing of application and enterprise systems. Role Perform penetration tests of web apps, APIs, backend services, cloud infrastructure, and corporate networks. Conduct threat emulation exercises, red team scenarios, and targeted attack simulations. Assess CI/CD pipelines, IAM configurations, and internal services for exploitable weaknesses. Lead offensive security initiatives and serve as the organization's primary expert for AppSec and enterprise pentesting. Security Research & Adversarial Analysis Track emerging threats, techniques, and vulnerabilities relevant to cloud and enterprise environments. Develop custom exploits or proof of concepts as needed to validate findings. Work with development, infrastructure, and IT teams to validate controls and guide effective remediation. Provide actionable risk assessments from an attacker's perspective. Contribute offensive insights to secure system design guidance. General Product Security Support (Secondary) Assist with code review and threat modeling for software components when offensive insights are needed. Requirements 5+ years of hands on offensive security experience (AppSec, cloud, or enterprise penetration testing). Demonstrated experience leading complex penetration tests for web apps, APIs, and cloud platforms. Strong proficiency in offensive tooling (Burp Suite, Nmap, Metasploit, proxy tools, etc.) and manual testing techniques. Familiarity with cloud native attack vectors (AWS, Azure, GCP). Strong analytical and problem solving skills with an attacker's mindset. Ability to explain complex technical vulnerabilities to a range of audiences. What we offer All positions include a compensation package that includes equity and robust benefits. Base pay is a single component of Astranis's total rewards package, which may also include equity in the form of incentive stock options, high quality company subsidized healthcare, disability and life insurance benefits, flexible PTO, 401(k) retirement, and free on site catered meals. Salary $160,000 - $240,000 USD Citizenship Requirements U.S. Citizenship, Lawful Permanent Residency, or Refugee/Asylee Status Required (To comply with U.S. Government space technology export regulations, applicant must be a U.S. citizen, lawful permanent resident of the United States, or other protected individual as defined by 8 U.S.C. 1324b(a)(3 . Equal Employment Opportunity As set forth in Astranis's Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Description: Oak Grove Technologies, LLC, a dynamic and fast-growing federal contractor, is seeking a highly skilled and motivated Senior Red Cyber Operator to support advanced Red Cyber operations through the execution of red team assessments, offensive cyber operations, and penetration testing. Oak Grove Technologies is a Service-Disabled Veteran-Owned Business based in Raleigh, NC, with a Test and Training Center located near Fort Bragg and Camp Mackall. With over 20 years of expertise in training, consulting, technology, and operational support, the company provides services to the military, government, and law enforcement. Committed to excellence, innovation, and national security, Oak Grove Technologies fulfills federal defense contracts and actively supports veterans through sponsorships and events. Driven by its mission-focused approach, the company seeks top talent to develop impactful solutions. Oak Grove Technologies offers a competitive compensation and benefits package. Requirements: What You'll Be Doing: Cyber Red Team Assessments, Penetration Testing, Offensive Cyber Operations. Performing penetration testing / red team operations to help validate the security of our nation's most critical systems. Sharing your expertise and insight to direct the activities of mid-level operators to guide the team in accomplishing their mission objectives. Antivirus evasion, EDR evasion, offensive infrastructure, phishing and social engineering. Leveraging your expertise with tools like Cobalt Strike to discover vulnerabilities and exploit them to achieve mission objectives. Quickly crafting new scripts and capabilities on-the-fly during operations to ensure you have the capabilities you need for mission success. Working hand-in-hand with our expert development team to ensure design and development of long-term capabilities to enable your mission success. What Desired Skills You'll Bring: 5+ years Offensive Cyber experience, DoD Cyber Red Team Experience, or corporate Red Team experience. Expertise in antivirus evasion, EDR evasion, and/or penetration testing. Red Team Apprentice Course (RTAC), Red Team Journeyman Course (RTJC), Certified Red Team Operator (CRTO) certification, Rogue Ops- Red Team 1 (ROPS), Offensive Security Certified Professional (OSCP), Global Information Assurance Certification, (GIAC) Exploit Researcher & Advanced Penetration Tester (GXPN), GIAC Penetration Tester (GPEN), and/or GIAC Web Application Penetration Tester (GWAP). What Required Skills You'll Bring: U.S. Citizenship and an active Top Secret SCI security clearance is required for this position. Must pass the DCART Senior Operator Aptitude Test using Cobalt Strike before joining DCART as an Operator. Experience in conducting red team assessments, offensive cyber operations, or penetration testing and be prepared to direct the activities of mid-level operators. Mid-Level Operators: 1 year of experience conducting red team assessments, offensive cyber operations, or penetration testing, with 3+ years desired. Senior Level Operators: 3+ years' experience in conducting red team assessments, offensive cyber operations, or penetration testing and ability to direct the activities of mid-level operators, with 5+ years desired. Must hold an IAT Level III certification as defined and described in DoDD 8570.01, 8570.01-M, 8140.01-03, and as amended. Must be capable of meeting apprentice operator requirements in the DCART Operator Training Program within the prescribed timelines, as outlined in the DCART Handbook. Red Cyber Operators are expected to have experience as operators conducting cyber red team assessments, offensive cyber operations, or significant penetration testing experience. Willingness and ability to travel 15% (CONUS/OCONUS) Security Clearance Requirements: U.S. Citizenship and an active Top Secret SCI security clearance is required for this position. Compensation and Benefits: Competitive Pay, PTO, Health Benefits. If you are a highly motivated Senior Red Cyber Operator and ready to apply your expertise in a high-impact role, we encourage you to join our mission. Oak Grove Technologies is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class. Oak Grove Technologies, LLC participates in E-Verify to determine an individual's identity and employment eligibility to work in the United States. E-Verify is a service of DHS and SSA. PIcf6b316ebb95-0590

Astranis builds advanced satellites for high orbits, expanding humanity's reach into the solar system. Today, Astranis satellites provide dedicated, secure networks to highly-sophisticated customers across the globe- large enterprises, sovereign governments, and the US military. With five satellites on orbit and many more set to launch soon, the company is servicing a backlog of more than $1 billion of commercial contracts. Astranis is the preferred satellite communications partner for buyers with stringent requirements for uptime, data security, network visibility, and customization. Astranis has raised over $750 million from some of the world's best investors, from Andreessen Horowitz to Blackrock and Fidelity, and employs a team of 450 engineers and entrepreneurs. Astranis designs, builds, and operates its satellites out of its 153,000 sq. ft. headquarters in Northern California, USA. Senior Product Security Engineer As a Senior Product Security Engineer at Astranis, you are a software engineer with a deep specialization in security, responsible for designing and building secure systems with a focus on areas like cryptography, Public Key Infrastructure (PKI) and zero trust architectures. Your role will involve evaluating processes, operating systems, and applications from a security-first engineering standpoint. While your primary role is to build secure software, your expertise will be used to identify vulnerabilities, conduct risk analyses, and lead security reviews. Responsibilities Audit embedded devices to identify security vulnerabilities and weaknesses. Lead security initiatives and serve as a point of contact for secure software development. Conduct security research and risk assessments on our products, focusing on cryptographic implementations and protocols. Provide expert guidance and support in the implementation of security measures. Collaborate with vendors, partners, and other Astranis software engineers to implement effective remediation strategies. Perform risk assessments to identify and prioritize threats. Lead design teams in developing secure systems and ensure our products are implemented to a high security standard. Collaborate with software development teams to design and implement technical solutions that address identified risks. Requirements 5+ years of experience in software engineering with a focus on security. Strong investigative, analytical problem-solving skills and attention to detail. Experience with secure architecture design for embedded devices. Security expertise as a software specialist in one or more of: C, C++, ARM, cryptography, PKI. Proven experience in threat modeling and security assessments, with commensurate ability in offensive security. Expert proficiency in software development, including auditing and writing secure code. Strong knowledge of security best practices and frameworks. Strong communication skills, both written and spoken. Ability to work collaboratively within a team environment. What we offer All our positions offer a compensation package that includes equity and robust benefits. Base pay is a single component of Astranis's total rewards package, which may also include equity in the form of incentive stock options, high quality company-subsidized healthcare, disability and life insurance benefits, flexible PTO, 401(K) retirement, and free on-site catered meals. Base Salary: $160,000-$240,000 USD U.S. Citizenship, Lawful Permanent Residency, Or Refugee/Asylee Status Required (To comply with U.S. Government space technology export regulations, applicant must be a U.S. citizen, lawful permanent resident of the United States, or other protected individual as defined by 8 U.S.C. 1324b(a)(3 Our mission and our products are meant to connect the world and everyone in it, regardless of gender, race, creed, or any other distinction. We believe in a diverse and inclusive workplace, and we encourage all people to join our team and bring their unique perspective to help make us stronger.

A leading financial technology company in San Francisco seeks a Senior Security Engineer to lead their Offensive Security program. You will attack services and infrastructure to uncover vulnerabilities, collaborate with various teams, and drive security improvements. Ideal candidates should have over 4 years of experience in offensive security and demonstrate technical leadership in a fast-paced environment.

Senior Penetration Tester job at JPMorgan Chase & Co Brooklyn, NY. Job Description This role is also open to Wilmington DE Columbus OH Plano, TX Washington, DC. Join our dedicated team in a role where your expertise in risk assessments and cybersecurity exercises propels forward our mission of safeguarding our operations and enhancing resiliency. This position offers the unique opportunity to shape our security posture and contribute to our continuous improvement in an environment that values innovation and teamwork. As an Assessments & Exercises Senior Associate in the Cybersecurity & Technology Controls team, you will help enhance the firm's cybersecurity or resiliency posture by using industry-standard assessment methodologies and techniques to proactively identify risks and vulnerabilities in people, processes, and technology. Collaborate with the team to design and execute risk-driven tests and simulations. Evaluate preventative controls, incident response processes, and detection. Your ability to make informed decisions and foster continuous improvement will allow you to contribute to the achievement of the team's operational goals and the mitigation of cyber and resiliency risks. As part of the penetration test team, your primary responsibility will be performing hands on penetration testing of some of the firms most critical web and mobile applications. You will work with application developers to not only understand root cause and mitigate vulnerabilities, but also to identify where vulnerabilities can be identified earlier in the Software Development Life Cycle (SDLC). As a successful candidate within our team, you are expected to demonstrate an eagerness to learn, the promote to excel, excellent technical knowledge of security concepts, and proven expertise in penetration testing. Job responsibilities Collaborate with other Assessments & Exercises team members to conduct testing and simulations - such as penetration tests, technical controls assessments, cyber exercises, or resiliency simulations, and contribute to the development and refinement of assessment methodologies to ensure alignment with industry standards and regulatory requirements Partner with subject matter experts to evaluate controls for effectiveness and impact on operational risk, as well as opportunities to automate control evaluation Develop comprehensive assessment reports, including detailed findings, risk assessments, and remediation recommendations, and effectively communicate these insights to relevant stakeholders as you contribute to decisions that yield continuous improvement Utilize threat intelligence and security research to stay informed about emerging threats, vulnerabilities, industry best practices, and regulations. Apply this knowledge to enhance the firm's assessment strategy Required qualifications, capabilities, and skills 3+ years of experience in cybersecurity or resiliency, with a focus on offensive security testing, assessments, or simulation exercises Experience conducting manual penetration tests against a wide variety of applications and technologies including web, API, and mobile (Android & iOS) applications Expertise in common cybersecurity threats and technology resiliency risks pertaining to the US financial services sector Proficiency in at least two security assessment methodologies (e.g., Open Worldwide Application Security Project (OWASP) Top Ten, National Institute of Standards and Technology (NIST) Cybersecurity Framework, offensive testing tools, or resiliency testing equivalents) Demonstrated collaboration, communication (written and verbal), and executive reporting skills, with the ability to work effectively with cross-functional teams and convey complex cybersecurity concepts and recommendations to diverse stakeholders Preferred qualifications, capabilities, and skills Proficiency in security concepts for both Windows and Unix-like Operating Systems Additional experience in testing thick clients, internal and external facing infrastructures, and cloud platforms (AWS/Azure/GCP) Experience in source code review and/or building software with multiple programming languages (i.e. Python, Java, Rust, etc.) Experience in reverse engineering thick clients and mobile applications Certifications like OSWE, CREST (CRT, CCT), OSCP, OSCE, GXPN, GWAPT, GPEN, GMOB, BSCP About Us JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management. We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans About the Team Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success.

Astranis builds advanced satellites for high orbits, expanding humanity's reach into the solar system. Today, Astranis satellites provide dedicated, secure networks to highly-sophisticated customers across the globe- large enterprises, sovereign governments, and the US military. With five satellites on orbit and many more set to launch soon, the company is servicing a backlog of more than $1,000,000,000 of commercial contracts. Astranis is the preferred satellite communications partner for buyers with stringent requirements for uptime, data security, network visibility, and customization. Astranis has raised over $750,000,000 from some of the world's best investors, from Andreessen Horowitz to Blackrock and Fidelity, and employs a team of 450 engineers and entrepreneurs. Astranis designs, builds, and operates its satellites out of its 153,000 sq. ft. headquarters in Northern California, USA. Senior Offensive Security Engineer As a Senior Offensive Security Engineer, you will lead penetration testing and adversarial simulation efforts targeting our applications, cloud infrastructure, and corporate networks. You will emulate real world attackers to identify weaknesses across the software and IT stack, and work closely with engineering and IT teams to improve our defenses. Your focus is offensive testing of application and enterprise systems. Role: Offensive & Penetration Testing (Primary) Perform penetration tests of web apps, APIs, backend services, cloud infrastructure, and corporate networks. Conduct threat emulation exercises, red team scenarios, and targeted attack simulations. Assess CI/CD pipelines, IAM configurations, and internal services for exploitable weaknesses. Lead offensive security initiatives and serve as the organization's primary expert for AppSec and enterprise pentesting. Security Research & Adversarial Analysis Track emerging threats, techniques, and vulnerabilities relevant to cloud and enterprise environments. Develop custom exploits or proof of concepts as needed to validate findings. Collaboration & Remediation Support Work with development, infra, and IT teams to validate controls and guide effective remediation. Provide actionable risk assessments from an attacker's perspective. Contribute offensive insights to secure system design guidance. General Product Security Support (Secondary) Assist with code review and threat modeling for software components when offensive insights are needed. Requirements: 5+ years of hands on offensive security experience (AppSec, cloud, or enterprise penetration testing). Demonstrated experience leading complex penetration tests for web apps, APIs, and cloud platforms. Strong proficiency in offensive tooling (Burp Suite, Nmap, Metasploit, proxy tools, etc.) and manual testing techniques. Familiarity with cloud native attack vectors (AWS/Azure/GCP). Proficiency in at least one scripting or exploitation oriented language (Python, Go, JavaScript, etc.). Strong analytical and problem solving skills with an attacker's mindset. Ability to explain complex technical vulnerabilities to a range of audiences. What we offer: All our positions offer a compensation package that includes equity and robust benefits. Base pay is a single component of Astranis's total rewards package, which may also include equity in the form of incentive stock options, high quality company subsidized healthcare, disability and life insurance benefits, flexible PTO, 401(K) retirement, and free on site catered meals. Astranis pay ranges are informed and defined through professional grade salary surveys and compensation data sources. The actual base salary offered to a successful candidate will additionally be influenced by a variety of factors including experience, credentials & certifications, educational attainment, skill level requirements, and the level and scope of the position. Base Salary 160,000 - 240,000 USD U.S. Citizenship, Lawful Permanent Residency, or Refugee/Asylee Status Required (To comply with U.S. Government space technology export regulations, applicant must be a U.S. citizen, lawful permanent resident of the United States, or other protected individual as defined by 8 U.S.C. 1324b(a)(3 Our mission and our products are meant to connect the world and everyone in it, regardless of gender, race, creed, or any other distinction. We believe in a diverse and inclusive workplace, and we encourage all people to join our team and bring their unique perspective to help make us stronger.

Overview Zachary Piper Solutions is seeking a Principal Cyber Architect to support a library modernization program for Geospatial Intelligence in Rancho Bernardo, CA. The team is seeking a skilled engineer to lead security teams with the specification, development, and application of computer systems for a rapidly developing environment. Clearance: TS/SCI required. Location: Rancho Bernardo, CA (100% on-site). This job opens for applications on 9/19/2025. Applications for this job will be accepted for at least 30 days from the posting date. Responsibilities Lead multidisciplinary systems engineering teams to deliver secure and resilient solutions across complex environments. Oversee Assessment and Authorization (A&A) processes for DoD systems in alignment with the Risk Management Framework (RMF), ensuring compliance and operational readiness. Support full-spectrum systems engineering activities, including CONOPS, requirements definition and allocation, cybersecurity architecture and implementation, verification and validation, and continuous monitoring throughout deployment and sustainment phases. Contribute to the design and evaluation of offensive cybersecurity architectures, focusing on defense-in-depth strategies and threat mitigation. Integrate Development Security Operations (DevSecOps) practices into system lifecycles, enabling secure CI/CD pipelines and containerized deployments. Develop and assess comprehensive system security documentation, including security CONOPS, risk matrices, control traceability, test procedures, and POA&Ms. Perform vulnerability assessments to validate system compliance with RMF controls and DISA STIGs, identifying and mitigating security gaps. Analyze static and dynamic code scans to ensure application security and adherence to development-related STIG requirements. Support customer engagements through travel, including technical meetings, product demonstrations, integration activities, and system testing. Qualifications Active TS/SCI clearance 6-8+ years of related information security and network engineering experience Certifications: IAT III/ISC2 CISSP (CISM, CASP+, GCIH, GSLC, CEH) Experience with A&A tools: ACAS, Nessus, SCAP Scanner, STIG viewer, Tenable Demonstrated experience in national cybersecurity policies; DoD A&A processes and procedures and industry best practices on complex systems Expertise with offensive architecting, threat modeling and attack vector analysis Experience leading and coordinating security test events to achieve accreditation milestones Understanding of offensive security tactics, techniques, and procedures (TTPs) Working knowledge of EVMS systems and project management tools such as CPI and IMS Experience with Open Container Initiative (OCI) including Platform One, Iron Bank and Repo One Experience with Cyber Failure Mode, Effects, and Criticality Analysis (FMECA) Compensation Total compensation based on experience level - $160,000-$210,000+ (based on experience level) Full Benefits: PTO, 11 Paid Holidays, Sick leave as required by state law, Cigna Medical, Dental, and Vision, 401k with ADP Certification reimbursement Long-term program (4+ years) supporting NERVE - National Geospatial Agency Contract mobility and job stability through Zachary Piper Solutions Location & Clearance Location: Rancho Bernardo, CA (on-site). Clearance: TS/SCI required. Seniority level Mid-Senior level Employment type Full-time Job function Engineering and Information Technology Industries IT Services and IT Consulting

A leading aerospace firm in San Francisco is seeking a Senior Offensive Security Engineer to lead penetration testing efforts targeting applications and infrastructure. The ideal candidate will have over 5 years of hands-on offensive security experience and expertise in tools like Burp Suite and Metasploit. This role offers a competitive salary between $160,000 and $240,000, equity options, and comprehensive benefits including subsidized healthcare and flexible PTO.

A pioneering space technology firm in Northern California is looking for a Senior Offensive Security Engineer. You will lead penetration testing efforts across various platforms, collaborate with multiple teams, and track emerging security threats. The role requires at least 5 years in offensive security and expertise in tools such as Burp Suite and Nmap. A competitive salary package ranging from $160,000 to $240,000 is offered, including equity and comprehensive benefits.

About The Role Uber is looking for a Senior Staff Engineer to lead the technical vision and execution for our Competitive Intelligence domain. This role operates at the intersection of core business strategy and market-level decision systems such as pricing, incentives, and marketplace configuration. The role spans both offensive and defensive workstreams, requiring a systems thinker who can operate across high-stakes ambiguity and deep technical complexity. On the offensive side, you will help derive meaningful, actionable insight from incomplete, noisy, and often unreliable data sources to better understand market dynamics, competitor behavior, and pricing strategy. You will build systems that extract signal from chaos, integrating low-trust external data into internal pricing and incentive systems, and shaping narratives that guide Uber's most strategic decisions. On the defensive front, you will oversee the architecture and technical leadership needed to prevent scraping and data abuse, protecting the integrity of the platform and preserving the value of Uber's proprietary data. This includes work in adversarial machine learning, bot detection, and the design of resilient, real-time defenses at scale. This role offers the opportunity to define the direction of critical, high-impact systems that shape Uber's competitive edge, while mentoring engineers and partnering closely with senior leadership across product, engineering, data science, and security. What You Will Do Lead the design and development of systems that extract strategic insights from unreliable and fragmented market data. Architect and guide the implementation of real-time defenses against scraping and data abuse, including adversarial machine learning and bot detection to protect Uber's data and platform integrity at scale. Drive cross-functional initiatives by partnering with data science, security, product, and engineering teams to align technical solutions with business priorities and long-term strategy. Mentor senior engineers across multiple teams, providing technical direction, setting engineering standards, and fostering a culture of high-quality system design, experimentation, and resilience. Basic Qualifications Master's Degree or equivalent in Computer Science, Engineering, Mathematics or related field with 7+ years of software development experience. Proficiency in one of the programming languages (e.g., C, C++, Java, Python, or Go). Experience driving large-scale system modernization, performance optimizations, and deployment safety improvements. Ability to lead large technical initiatives and drive cross-team collaboration across platform, security, and infrastructure teams. Preferred Qualifications Cybersecurity knowledge: understanding of web scraping techniques and countermeasures. Awareness of network security, HTTP protocols, and API security. Experience in modern machine learning algorithms (e.g., tree-based, supervised, deep, or probabilistic learning) and unsupervised learning techniques (e.g., clustering, anomaly detection, neural networks). Familiarity with machine learning libraries such as TensorFlow/PyTorch, Scikit-Learn, or Spark MLlib; understanding of feature engineering and dimensionality reduction. Understanding of causal ML and reinforcement learning; awareness of ethical considerations and regulatory compliance related to data privacy and machine learning. Note: For San Francisco, CA-based roles and Seattle, WA-based roles, the base salary range is USD 257,000 to USD 285,500 per year. All US locations include eligibility for Uber's bonus program, potential equity awards, and other compensation; benefits details are available at

A prominent financial institution is seeking a Senior Penetration Tester to join their Cybersecurity & Technology Controls team. This role involves performing hands-on penetration testing of critical web and mobile applications, conducting risk assessments, and collaborating with other teams to enhance security posture. Ideal candidates should have at least 3 years of experience in cybersecurity, especially in offensive security testing. This position offers a competitive compensation package with various benefits emphasizing employee wellness and diversity.

Databricks Enterprise Lead Security Architect - Principal IT Software Engineer Join Databricks as a Lead Security Architect and influence the company's security strategy across multi cloud platforms. Responsibilities Design and implement secure, scalable reference architectures for Databricks IT across Cloud Infrastructure, SaaS, Custom Built Applications, and Data & AI systems. Establish and enforce security controls for workspace isolation, Unity Catalog data governance, VPC configurations, PrivateLink, and IP allow lists. Lead IAM strategy: SSO, SCIM provisioning, RBAC, and MFA best practices for enterprise identities. Secure data at rest and in transit using customer managed keys; implement data exfiltration prevention measures. Develop cluster security policies and conduct compliance monitoring for HIPAA, PCI DSS, and FedRAMP. Conduct offensive security tests, threat modeling, and support incident response, vulnerability management, and red team activities. Mentor security engineers and developers on secure design and best practices. Qualifications Bachelor's degree in Computer Science, Information Security, Engineering, or a related field. Preferred: Master's degree in Information Security. Minimum 12 years in cybersecurity with 5+ years in security architecture or senior technical roles. Experience designing and securing complex multi cloud environments (AWS, Azure, GCP). Hands on experience with Terraform, IaC, scripting, and security automation. Deep knowledge of IAM systems (Okta, SailPoint, VDI, Entra ID) and data protection practices. Proficiency with SIEM/XDR, cloud native threat detection, OWASP, API security, and web application security. Certifications such as CISSP, CCSP, CEH, AWS Security Specialty, and/or AWS Solutions Architect - Professional are preferred. Benefits We offer a comprehensive benefits package, equity, performance bonuses, and the opportunity to work with world class data & AI technology. Diversity & Inclusion Databricks is committed to fostering a diverse and inclusive culture where everyone can excel. We comply with equal employment opportunity standards. Pay Range Transparency Zone 1 Pay Range: $258,300 - $361,575 USD. Job Information Seniority Level: Mid Senior Level Employment Type: Full time Job Function: Information Technology

A leading satellite communications company in San Francisco is looking for a Senior Offensive Security Engineer to lead penetration testing and adversarial simulations. The candidate should have over 5 years of offensive security experience, a strong knowledge of offensive tools, and an analytical mindset. Responsibilities include assessing vulnerabilities in applications and infrastructure, collaborating with teams for effective remediation, and contributing to system security. This role offers a competitive salary and a diverse work environment.

Join to apply for the Senior Application Security Engineer role at Zip The simple task of buying software, services, or tools at work has become hopelessly complicated at even the most innovative companies in the world. Today, enterprises spend $120T+ per year globally (>30 times larger than annual consumer e-commerce spend) and rely on vendors more than ever before to run their businesses. Our cofounders started Zip in 2020 to address this seemingly intractable problem with a purpose built procurement platform that provides a simple, consumer grade user experience. Within the last 4 years, Zip has created a new category and developed the leading solution in this $50B+ TAM space. Today, the world's leading companies like OpenAI, Snowflake, Anthropic, Coinbase, and Prudential rely on Zip to manage billions of dollars in spend. We have a world class team coming from category defining companies like Airbnb, Meta, Stripe, Salesforce, Apple, and Google. With a $2.2 billion valuation and $370 million in funding from Y Combinator, Tiger Global, BOND, DST Global, and CRV, we're focused on developing cutting edge technology, expanding into new global markets, and-above all-driving incredible value for our customers. Join us! The Security team at Zip is responsible for protecting the confidentiality and integrity of our customers' data. As our first Application Security Engineer, you will take on a dynamic and high impact role. You will lead our efforts to build foundational security guardrails, launch key security initiatives, and solidify trust customers place in us. Your contributions will be pivotal to the success of Zip's rapid growth as we launch new products, such as AI Agents and an App Marketplace, and enter into new markets, including EMEA and the Federal government space. We move quickly to solve a wide range of complex technical and product challenges. While we are an experienced team that can provide constant guidance and mentorship, we value engineers who can autonomously scope and solve complex technical challenges. Responsibilities Design and implement technical controls to eliminate or mitigate classes of security vulnerabilities. Support the development of secure products through design reviews, threat models, static/dynamic scans, and hands on security assessments. Validate, triage, and coordinate security findings from bug bounty and third party pentests. Mentor security analysts and security champions on security best practices and techniques. Qualifications Experience writing production quality code for security tooling and services Strong written and verbal communication with internal and external stakeholders A solid understanding of security risks and the ability to balance security with business requirements Experience with web applications, APIs, and cloud environments. At Zip, our stack includes Python, React, GraphQL, Kubernetes, and AWS Nice to haves Familiarity with compliance frameworks such as SOC 2, ISO 27001, and FedRAMP Hands on experience in offensive security (e.g., through bug bounty programs or CTFs) Perks & Benefits ? Start up equity ? Full health, vision & dental coverage ?️ Catered lunches & dinners for SF employees ? Commuter benefit ? Team building events & happy hours ? Flexible PTO ? Apple equipment plus home office budget ? 401k plan We're looking to hire Zipsters and that means hiring people who take ownership, communicate openly, have an underdog mindset, and are excited to increase the pace of innovation for every business in the world. We encourage all candidates to apply even if your experience doesn't exactly match up to our job description. We are committed to building a diverse and inclusive workspace where everyone (regardless of age, religion, ethnicity, gender, sexual orientation, and more) feels like they belong. We look forward to hearing from you! Seniority level Mid Senior level Employment type Full time Job function Information Technology Industries Software Development Referrals increase your chances of interviewing at Zip by 2x Get notified about new Senior Application Security Engineer jobs in San Francisco, CA. The salary range for this role is $160,000 - $220,000. The salary for this position is determined based on a variety of job related factors that may include location, relevant experience, education, or particular skills and expertise.

A leading financial institution in Washington, DC, is seeking a Senior Penetration Tester to drive the security of critical banking applications. The successful candidate will plan, execute, and report on penetration tests, collaborating with development and security teams. Ideal applicants will have at least 5 years of experience in offensive security, strong technical skills in penetration testing, and a commitment to continuous learning. The role offers competitive compensation and benefits within a collaborative work environment.

Perform security architecture design review and threat analysis of firmware and hardware , to ensure security properties and robustness of our complex software products Identify vulnerabilities in our firmware, build proof of concepts, and drive remediation via secure code reviews, fuzz and penetration testing Recommend security controls, evangelize and drive adoption of new or improved tools, practices, and plans to increase product robustness and reliability. Collaborate with engineers, customers, and/or partners to perform internal or external security audits on our products to ensure the security quality. Respond to product security incidents, coordinate engineering teams and partners to solve security related issues Work with other parts of our company on a broad range of technologies and initiatives to enhance security. Research and exploit side-channel, fault, and advanced physical attacks Requirement BS+ in Computer Engineering, Computer Science, or Electrical Engineering. 7+ years of relevant work experience Programming background in ARM/RISCV assembly, Python, C, C++, and/or RUST Knowledge of embedded system architecture and security (e.g. Android/Linux, ARM trust zone, hypervisor/virtualization etc.). Knowledge of hardware/software vulnerabilities and their exploit techniques Experience with security design review or threat modeling throughout hardware to software. Experience with secure code review, analysis, vulnerability assessment, hacking/attack analysis. Motivated by pursuing difficult and novel problems in a highly complex environment Excellent at multitasking, organizing, and prioritizing complex projects to meet deadlines Listens for nuances and digs into details to understand systems deeply Preferred Requirement experience on any automotive grade platform such as AUTOSAR, QNX, Android Automotive, etc. JTAG, debugging, binary instrumentation frameworks, Reverse-engineering (IDA Pro, Ghidra) ISO21434 or ISO 26262 compliance experience TARA or HARA methodology and execution experience CACSE (Certified Automotive Cyber-Security Expert) certificate CACSP (Automotive Cyber-Security Professional) certificate Salary range: $180,000- $260,000 Employee may be eligible for performance bonus, short and long term incentive programs. Actual total compensation will be dependent upon the individual's skills, experience and qualifications. In addition, MediaTek provides a variety of benefits including comprehensive health insurance coverage, life and disability insurance, savings plan, Company paid holidays, Paid time off (PTO), Parental leave, 401K and more. MediaTek is an Equal Opportunity Employer that is committed to inclusion and diversity to all, regardless of age, ancestry, color, disability (mental and physical), exercising the right to family care and medical leave, gender, gender expression, gender identity, genetic information, marital status, medical condition, military or veteran status, national origin, political affiliation, race, religious creed, sex (includes pregnancy, childbirth, breastfeeding and related medical conditions), and sexual orientation. Seniority level Seniority levelMid-Senior level Employment type Employment typeFull-time Job function IndustriesSemiconductor Manufacturing Referrals increase your chances of interviewing at MediaTek by 2x Sign in to set job alerts for "Security Engineer" roles. Mountain View, CA $180,000.00-$210,000.00 1 month ago Santa Clara, CA $135,000.00-$250,000.00 5 months ago Software Engineer II (Full Time) United States San Jose, CA $123,600.00-$174,000.00 5 days ago Mountain View, CA $125,000.00-$188,000.00 1 month ago Palo Alto, CA $175,000.00-$200,000.00 2 weeks ago San Francisco Bay Area $115,000.00-$160,000.00 1 month ago Fremont, CA $100,000.00-$160,000.00 2 weeks ago Menlo Park, CA $147,000.00-$208,000.00 2 weeks ago Security Engineer - Security Risk Management Redwood City, CA $100,000.00-$150,000.00 6 days ago San Jose, CA $166,400.00-$222,100.00 2 hours ago Sunnyvale, CA $141,000.00-$202,000.00 1 week ago Information Security Engineer - GeneralistSenior Infrastructure and Security EngineerSecurity Engineer, Detection & Incident ResponseSenior Security Engineer - Northwest region (San Jose, CA) Palo Alto, CA $175,000.00-$225,000.00 1 hour ago Software Engineer, Credit Cards & Banking PlatformSecurity Engineer Investigator, Insider Trust Mountain View, CA $204,000.00-$259,000.00 1 week ago Security Engineer, Google Distributed Cloud Air-Gapped Compliance Sunnyvale, CA $197,000.00-$291,000.00 1 week ago Senior Security Engineer, Endpoint SecuritySoftware Engineer - Mapping & Localization San Jose, CA $130,000.00-$182,000.00 1 month ago We're unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Astranis is on a mission to bridge the digital divide by connecting the four billion people worldwide who currently lack internet access. We're doing this by building the next generation of smaller, more cost-effective spacecraft to bring the world online. As a team, we've launched two satellites into orbit, signed ten commercial deals worth over $1 billion in revenue, raised over $500 million from top global investors, and recruited a team of over 300 world-class engineers. We all work out of our (legendary) San Francisco office, which was once used to build ships during the World Wars. Our satellites, which operate from geostationary orbit (GEO), weigh only 400 kg and utilize a proprietary software-defined radio payload. Each satellite can connect over two million people, and we're very excited for the impact we'll soon have in the Philippines, Peru, Mexico, and more! Backed by substantial funding and a passionate, collaborative team, we offer a rewarding work environment where you'll learn and make a significant impact, no matter where you are in your career. Apply and join us on our journey towards global connectivity! Offensive Cyber Security Engineer Are you passionate about breaking things to make them better? Our dynamic team is on the hunt for an Offensive Cyber Security Engineer with a knack for ethical hacking, security testing, and the relentless pursuit of securing digital assets against cyber threats. If you're eager to deploy your skills in an environment that values innovation, creativity, and out-of-the-box thinking, we're looking for you! Role Conduct proactive penetration testing, vulnerability assessments, and red team exercises across our digital landscape to identify and mitigate potential security threats before they become incidents Collaborate with defense teams to enhance our security posture by providing detailed feedback and recommendations based on your findings Develop and refine our offensive security strategies, tools, and methodologies to ensure we stay ahead of adversaries Participate in the creation of security awareness programs and training to bolster our human firewall Keep abreast of the latest cybersecurity threats, trends, and tools to ensure our defenses are always one step ahead Requirements 3+ years of experience Proven track record in offensive security roles with hands on experience in penetration testing, vulnerability assessment, and ethical hacking In-depth knowledge of network security protocols, cryptography, payloads, and exploit development Familiarity with security tools and software such as Metasploit, Nmap, Burp Suite, etc Strong understanding of operating systems, database security, and application security principles Excellent problem solving skills, with the ability to think creatively about challenging cyber security scenarios Ability to communicate technical vulnerabilities and risks to non technical stakeholders. Bonus Certifications such as OSCP, CEH, or GPEN Experience with scripting languages to automate tasks and develop custom exploits Knowledge of cloud security principles and experience conducting security assessments in cloud environments Familiarity with the development lifecycle and the integration of security into DevOps practices Previous experience in a similar environment What we offer All our positions offer a compensation package that includes equity and robust benefits. Base pay is a single component of Astranis's total rewards package, which may also include equity in the form of incentive stock options, high quality company subsidized healthcare, disability and life insurance benefits, flexible PTO, 401(K) retirement, and free on site catered meals. Astranis pay ranges are informed and defined through professional grade salary surveys and compensation data sources. The actual base salary offered to a successful candidate will additionally be influenced by a variety of factors including experience, credentials & certifications, educational attainment, skill level requirements, and the level and scope of the position. Base Salary $130,000 - $180,000 USD U.S. Citizenship, Lawful Permanent Residency, or Refugee/Asylee Status Required (To comply with U.S. Government space technology export regulations, applicant must be a U.S. citizen, lawful permanent resident of the United States, or other protected individual as defined by 8 U.S.C. 1324b(a)(3 Our mission and our products are meant to connect the world and everyone in it, regardless of gender, race, creed, or any other distinction. We believe in a diverse and inclusive workplace, and we encourage all people to join our team and bring their unique perspective to help make us stronger.