Senior Offensive Security Engineer

Ivanti is a company dedicated to enhancing security through innovative solutions in a dynamic environment. The Senior Offensive Security Engineer will be responsible for assessing the security of applications, networks, and systems by simulating cyberattacks and managing disclosure programs to resolve vulnerabilities.

Responsibilities:

• Assess security of applications, networks, and systems by simulating cyberattacks
• Manage disclosure programs and collaborate with internal teams to prioritize and resolve vulnerabilities, and conduct penetration tests
• Establish and maintain communication channels with the security research community to promote awareness of the responsible disclosure program and encourage participation
• Receive and triage vulnerability reports submitted by external researchers through various channels, such as email, web form, or bug bounty platform
• Collaborate with internal security teams to assess the severity and impact of reported vulnerabilities and prioritize them for resolution based on risk
• Facilitate communication and collaboration between researchers and relevant stakeholders, including development teams, IT operations, and product managers, to ensure timely resolution of identified security issues
• Track the progress of vulnerability remediation efforts and ensure that issues are addressed within agreed-upon timelines

Requirements:

• 5 years of experience in cybersecurity, with a focus on penetration testing and vulnerability assessment
• Responsible Disclosure Program (VDP) and Bugbounty program management
• CEH, Offensive Security Certified Professional (OSCP), or other relevant certifications
• Strong understanding of networking protocols, operating systems, and web applications
• Proficiency in using penetration testing tools such as Metasploit, Nmap, Burp Suite, etc
• Knowledge of common cybersecurity threats and attack vectors