- Plan, execute, and communicate red team exercises to simulate cyber threats, identify vulnerabilities, and evaluate security effectiveness.
- Integrate Offensive Security into SDLC by collaborating with development teams to embed security practices, including threat modeling and proactive testing.
- Conduct regular Vulnerability Assessment and Penetration Testing (VAPT) to discover and exploit security flaws, providing detailed findings and recommendations.
- Develop and employ custom tools and techniques for threat simulation, enhancing preparedness against potential attacks.
- Collaborate closely with defensive teams to improve security strategies based on insights from offensive operations.
- Act as a security training expert, contributing to developer training programs and promoting a security-first mindset.
- Stay updated on the latest cybersecurity trends and offensive techniques to ensure our practices remain effective and current.
- Minimum of 5 years of experience in offensive cybersecurity , with a strong focus on red teaming, penetration testing, or similar activities.
- Expertise in multiple offensive security tools and frameworks, especially MITRE ATT&CK and MITRE ATLAS.
- Solid understanding of OWASP top 10s (Web application, API, CI/CD, LLM, and more).
- Proficiency in API security testing and exploitation.
- Strong understanding of the software development lifecycle and application security.
- Solid knowledge of programming/scripting languages; C# and Python knowledge are essential.
- Strong analytical and problem-solving abilities, coupled with a proactive approach to identifying and mitigating security risks and an ability to think like an adversary.
- On-call rotation (once every 7 weeks)
- Team player with a growth mindset.
- Ability to work independently and manage multiple tasks.
- Strong ethical standards and understanding of the legal implications of penetration testing.
- Exposure to GenAI/LLM red team exercise.
- OS security (Windows & Linux); Kubernetes Security; Cloud security – Azure.
- Certifications such as OSCP, OSCE, or similar.
- Knowledge of regulatory compliance and security standards – NIST-CSF.
- Good understanding of NIST SP -, OSSTMM(Open Source Security Testing Manual).
- Experience in DevSecOps practices.
- Knowledge of mobile applications and device security testing (iOS/Android)
- Contract of employment (umowa o pracę)
- Package of benefits (private medical care - Medicover, sports card, cafeteria system, unlimited access to training platform Percipio and GoFluent, Employee Assistance Program ICAS)
- Hybrid working model from our Technology office in Warsaw
- Work office in Warsaw Spire (we are moving to a new, modern building - Studio), near to metro station Rondo Daszyńskiego
- An opportunity to use and develop your language skills in our international work environment
-
Cloud Security Engineer
Znalezione w: Jobs Search PL C2 - 3 dni temu
Velobank S.a. Warsaw, Polska W pełnym wymiarze godzinTechnologies-expected : Azure Terrafom Azure Dev Ops Microsoft Entra RBAC Conditional Access Azure Keyvault Azure Storage Account Azure Database Azure Databiricks AKS App Service VM Network Defender for Cloud KQL Log Analytics Azure Monitor Azure Policy responsibilities : zarządz ...
-
Network Security Engineer @
Znalezione w: Jobs Search PL C2 - 3 dni temu
Link Group Warsaw, Polska W pełnym wymiarze godzinBiegła znajomość koncepcji, protokołów i technologii związanych z bezpieczeństwem sieciowym (np. · TCP/IP, DNS, VPN, SSL/IPSec, NGFW, IDS/IPS, NAC, Proxy) Doświadczenie w wdrażaniu rozwiązań związanych z segmentacją sieciową, np. · firewalli zonalnych, mikrosegmentacji Doświadcze ...
-
Cloud Security Engineer
Znalezione w: Talent PL Premium - 4 dni temu
in4ge Warsaw, PolskaTwoja rola: · Projektowanie, wdrażanie i utrzymywanie rozwiązań związanych z bezpieczeństwem w infrastrukturze chmurowej · Monitorowanie bezpieczeństwa, wykrywanie i reagowanie na incydenty zagrożenia · Audytowanie i testowanie podatności systemów chmurowych na zagrożenia · Tworz ...
-
Junior Security Operations Engineer
Znalezione w: Jobs Search PL C2 - 4 dni temu
7n Sp. Z O.o. Warsaw, Polska W pełnym wymiarze godzinTechnologies-expected : Mac OS Unix GCP AWS Kubernetes SIEM technologies-optional : Python about-project : Poszukujemy Junior Sec Ops Engineera dla naszego klienta, jednego z największych banków w Wielkiej Brytanii z siedzibą w Londynie. · Firma oferuje rozwiązania zapewniające u ...
-
Network Security Engineer
Znalezione w: Jobs Search PL C2 - 4 dni temu
Devire Warsaw, Polska W pełnym wymiarze godzinNetwork Security Engineer (Web Proxies)Łódź, Łódzkie | Warszawa, Mazowieckie | Gdańsk, Pomorskie | (+0 więcej PLN Your future company Devire Outsourcing IT is a form of partnership dedicated to self-employed IT specialists, executing projects for our Clients - leading IT Companie ...
-
Security Lead Engineer
Znalezione w: Jobs Search PL C2 - 3 dni temu
Relout Sp. Z O.o. Warsaw, Polska W pełnym wymiarze godzinTechnologies-expected : AWS Linux Docker Serverless technologies-optional : Python Type Script about-project : We are currently looking for a Security Lead Engineer, willing to join a project for our strategic client – one of the largest manufacturing companies from Sweden, offe ...
-
Cloud Security Engineer
Znalezione w: Jobs Search PL C2 - 1 dzień temu
Mindbox S.a. Warsaw, Polska W pełnym wymiarze godzinTechnologies-expected : AWS Google Cloud Platform Terraform Kubernetes about-project : We're looking for a Cloud security engineer to join our Client's growing Technology team. · Working within the security team you'll play a key part in securing their cloud native Iaa S and Paa ...
-
Cloud Security Engineer
Znalezione w: Talent PL Premium - 3 dni temu
Michael Page Warsaw, PolskaWork closely with the Cloud Security Architects to implement our cloud reference architecture · Work with IT team, as well as with business owners of cloud applications to implement reference architecture to meet business requirements · Integrate with cloud projects and verify th ...
-
Application Security Engineer
Znalezione w: Talent PL Premium - 4 dni temu
Goldman Sachs Warsaw, PolskaBusiness Unit Overview · Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop mor ...
-
Security Engineering Manager
Znalezione w: Talent PL Premium - 6 dni temu
DLA Piper Warsaw, PolskaThe role · The Security Engineering team is responsible for supporting our Security Operations team by leading the configuration, selection, maintenance and development of essential security technologies that continue to mature our ability to detect, investigate and mitigate thre ...
-
Cyber Security Engineer
Znalezione w: Jobs Search PL C2 - 4 dni temu
Robert Bosch Sp. Z O.o. Warsaw, Polska W pełnym wymiarze godzinTechnologies-expected : Python Bash SQL Power Shell Linux responsibilities : Develop and maintain cyber security tools (Python, Shell) Automate cyber security processes (Python, SQL, Ansible, Terraform, Azure Dev Ops) Monitor and analyze cyber security operations Integrate tools ...
-
Cyber Security Engineer
Znalezione w: Adzuna PL C2 - 2 dni temu
XTB Warszawa, Polska W pełnym wymiarze godzinSzukamy osoby do działu bezpieczeństwa IT w XTB, która będzie współpracowała z zespołami wytwórczymi nad podniesieniem kultury bezpieczeństwa w wytwarzaniu oprogramowania. · XTB to przede wszystkim innowacyjność i ciągły rozwój. Tworzymy największą regulowaną firmę inwestycyjną i ...
-
Cloud Security Engineer @
Znalezione w: Jobs Search PL C2 - 4 dni temu
Avenga Warsaw, Polska W pełnym wymiarze godzin5+ years of experience on similar position Excellent knowledge of AWS and/or GCP Iaa S and Paa S Experience of designing secure cloud environments Strong understanding of cloud security tooling and monitoring capabilities Automation and scripting experience Experience with Terraf ...
-
Network Security Engineer
Znalezione w: Talent PL Premium - 6 dni temu
TopTalents Warsaw, PolskaZakres obowiązków / opis stanowiskaConfiguring, troubleshooting and maintaining Network Security solutions for our Customers · Actively mitigating and ultimately resolving all incidents and problems related to the maintained solutions · Assessing, planning and implementing change ...
-
Cyber Security Engineer
Znalezione w: Talent PL Premium - 4 dni temu
Bosch Warsaw, Polska W pełnym wymiarze godzinJob Description · Tasks: · Automate security event handling processes in collaboration with incident response, threat intelligence and SOC teams · Look for possibilities for improvements, propose and finally implement them · Close collaboration with experts in Poland, Germany, I ...
-
Remote Security Engineer
Znalezione w: Adzuna PL C2 - 1 dzień temu
Connectis Warszawa, Polska W pełnym wymiarze godzinWspólnie z naszym Partnerem, globalną prywatną wytwarzającą produkty konsumenckie oraz artykuły przemysłowe poszukujemy specjalisty na stanowisko Security Engineera. Nasz Partner skupia się na linii produktów z własną marką oraz markami prywatnymi obsługujące rynki instytucjonaln ...
-
Supply Chain Security Engineer
Znalezione w: Talent PL Premium - 2 dni temu
11101 Citibank Europe plc Poland Warsaw, Polska W pełnym wymiarze godzinWe are excited to announce an opening for a Software Supply Chain Security Senior Engineer empathetic with the challenges that development teams face in delivering software in large, heterogeneous organizations. If you are passionate about engineering excellence and building the ...
-
Supply Chain Security Engineer
Znalezione w: Talent PL Premium - 3 dni temu
Citi Warsaw, Polska W pełnym wymiarze godzinWe are excited to announce an opening for a Software Supply Chain Security Senior Engineer empathetic with the challenges that development teams face in delivering software in large, heterogeneous organizations. If you are passionate about engineering excellence and building the ...
-
Cyber Security Engineer ELK
Znalezione w: Talent PL Premium - 6 dni temu
Bosch Warsaw, Polska W pełnym wymiarze godzinJob Description · As a Cyber Security Engineer responsible for infrastructure with focus on ELK stack (Elasticsearch, Logstash, and Kibana), you will focus on the further development and operation of various security solutions in the endpoint protection area. · You will work in a ...
-
Senior Network Security Engineer
Znalezione w: Talent PL Premium - 2 dni temu
Bosch Group Warsaw, Polska W pełnym wymiarze godzinJob DescriptionJoin our global team to help design, implement, improve and operate our worldwide Internet Breakouts as well as the VPN Services for Bosch Users and partners. · Ensure that the security infrastructure deployment and configurations align with industry standards, com ...
Offensive Security Engineer - Warsaw, Polska - C.H. Robinson
Opis
C.H. Robinson is seeking an to join our Warsaw office/global team. In this role, you'll lead red team exercises, fortifying our applications' security. Your expertise will integrate offensive security practices into our SDLC, identifying vulnerabilities and bolstering our digital resilience against threats. You'll embody C.H. Robinson Technology's core values, exhibiting knowledge of our business, entrepreneurial spirit, teamwork, excellent customer service, passion, tech-savvy, effective communication, respect, accountability, strong work ethic, and work-life balance.
Responsibilities:
Required Qualifications:
Preferred Qualifications:
What does C.H. Robinson offer you?
Questioning if you meet the mark? Studies have shown that women, people of color, and individuals with disabilities may be less likely to apply unless they match the job description exactly. Here at C.H. Robinson, we're building a diverse and inclusive workplace where all employees feel they belong. If this position excites you, we welcome you to apply whether you check all the preferred qualifications or just a few. You may just be our next great fit