Chargé.e d’Etudes et Travaux en systèmes électromécaniques de sécurité at RATP Infrastructures. Responsible for ensuring technical compliance and supervising project activities on - site.
About the role
- Offensive Security Engineer performing penetration testing and AI security evaluations in a global, flexible team environment. Requires extensive experience and knowledge of SaaS and AI security.
Responsibilities
- Work in a team-orientated, fast-paced, global, and flexible environment
- Perform penetration testing across our entire product and infrastructure
- Perform SaaS-based red team exercises with specific goal oriented objectives
- Continuously evolve your skills toward AI evaluation and knowledge based on emerging tactics, techniques and procedures related to AI agent vulnerabilities
- Collaborate with our AI Security, threat intelligence, threat monitoring and threat engineering teams to understand our threats, provide practical validations of threats and ensure our protections and incident response are continuously refined
- Provide actionable insights for our Product Development team regarding vulnerabilities
Requirements
- At least 7 years of professional experience in the field of offensive security.
- A strong knowledge of modern web application architecture and the vulnerabilities often associated with them.
- A strong knowledge of LLMs including their unique security threats, and how embedded vectors impact performance
- Proficiency in offensive security tooling such as a web proxy like Burp Suite, Nmap, Kali and a scripting language of your choice.
- Experience with AWS and its security features
- Experience with developing or testing AI systems at scale.
- Experience with AI Security tools (e.g., promptfoo, etc.)
- Experience with MacOS & Apple infrastructure and its security features
- 10+ years of professional experience in the field of offensive security
- Professional certifications related to offensive security, including but not limited to: OSCP, CEH, CPT, GPEN, OSCE, OSWP, OSWE, OSEE, OSDA, PNPT, CPENT, CRTO, GXPN
- Published vulnerabilities, bug bounty reputation or other contributions to the industry
- Talks, conference appearances or other professional event experience
Benefits
- flexible work arrangements
- professional development opportunities
- bonuses
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Technical lead for Ford’s EV charging and energy ecosystem. Partner with product teams to design security controls and develop requirements.
Senior Infrastructure Security Engineer handling cloud security and infrastructure lifecycle for Zocks, a fintech startup. Responsible for security initiatives and compliance readiness in a rapidly growing team.
Data Center Security Officer ensuring safety and security for data center clients through patrols and monitoring. Conducting reports and maintaining client security requirements.
Cybersecurity Specialist overseeing the protection of clients' technology systems and networks. Implementing cybersecurity policies and conducting evaluations against cyber threats in a supportive working environment.
Senior Cybersecurity Incident Responder at ZEISS handling technical incident response activities. Collaborating with cyber defense teams to ensure effective incident management and resolution.
Information Security Manager responsible for steering InfoSec programs globally at ZEISS. Leading cross - functional initiatives and risk management strategies in a high - tech environment.
Providing security incident management for industrial environments at Telefónica Tech. Utilizing various monitoring platforms to enhance security posture.
Endpoint Security Engineer at Booz Allen designing and operationalizing data protection controls. Safeguarding sensitive data across enterprise systems and leading technical operations.
Senior Security Adviser handling governance and US integration tasks at Boeing. Liaising with US - based partners and coordinating crisis management for international security operations.