Staris AI is a Series A ventured-backed firm that is reinventing application security with its innovative AI-powered penetration testing. As an Offensive Security Engineer, you'll be instrumental in advancing automated software attack and simulation, focusing on executing autonomous security assessments and improving AI-driven attack simulations.
Responsibilities:
- Own the execution and quality of autonomous security assessments, ensuring results are accurate, validated, and actionable for customers
- Drive the continuous improvement of AI-driven attack simulations and automated exploitation workflows to expand coverage, reliability, and assessment depth
- Apply offensive security expertise to identify realistic attack paths, validate findings, and reduce false positives across modern application and cloud environments
- Partner with engineering and research teams to operationalize new attack techniques and strengthen the platform’s autonomous testing capabilities
- Use insights from diverse target environments and customer feedback to improve assessment logic, remediation quality, and overall platform effectiveness
Requirements:
- Minimum of 5 years of experience in application security assessment, source code auditing, bug hunting or similar areas
- Knowledge of offensive application security fundamentals
- Knowledge of relevant open-source technologies for attack automation (e.g. Tools, Libraries, Frameworks, etc.)
- Experience working with relevant software assessment technologies (e.g. SAST, DAST, Fuzzing, etc.)
- Prior emphasis on distributed systems and micro-service architectures
- Familiarity with prompt engineering, generative AI models, and their APIs
- Bachelor's degree in a related field (e.g. Computer Science, Information Technology, Cybersecurity, etc.)
- Strong English language communication skills