The Role
Are you excited by the idea of thinking like an adversary to protect organizations from advanced threats? Does the challenge of overcoming sophisticated defenses get your blood pumping? Are you excited about joining Moveworksβs Red Team and helping build it up from the ground floor? If so, we have the perfect opportunity for you.
At Moveworks, our mission is to leverage AI to transform the way companies support their employees. As a Red Team Security Engineer, you will play a crucial role in designing, building, and expanding our Red Team while performing highly impactful security engagements. You'll collaborate closely with our Blue Team to conduct Purple Team exercises, ensuring that our detection and response capabilities are top-notch. In our dynamic team, you'll take on multiple roles essential for the success of the Red Team, including social engineering, malware development, infrastructure building, and operations. Lastly, you will have the opportunity to learn how to be a successful Red Teamer.
Join us to elevate your adversarial skills and gain deep insights into AI at the fastest-growing AI startup in its field. You'll have access to a wealth of expertise from skilled AI practitioners, allowing you to explore various interests. This unique opportunity will accelerate your career, nurturing your creativity, problem-solving abilities, and innovative thinking.
What you'll do:
- Perform Red Team engagements.
- Identify vulnerabilities across our services, endpoints, networks, and physical security.
- Build tools and infrastructure for Red Team engagements.
- Create bypasses for security tools such as EDR and other monitoring solutions.
- Design and emulate threat actors in Red and Purple team engagements.
- Use social engineering techniques to gain initial access to systems.
- Be a sparring partner with the SOC to test and improve detection and response capabilities.
- Learn and develop the skills necessary to become a successful Red Teamer.
- Maintain an attackerβs mindset with the depth to dive into detailed analysis when needed.
- Work closely with Machine Learning, Search, Product, Infrastructure, Data, and Frontend Teams to ensure secure solutions.
- Empower teams to make informed security-related decisions.
Β
What you bring to the table:
- 3+ years in Penetration Testing, Red Teaming, Vulnerability Research, and/or Application Security.
- 2+ years of experience in Python, JavaScript, Golang, and C/C++.
- Experience with Infrastructure as Code (IaC) tools like Terraform.
- Skilled in working with containers and orchestration services like Kubernetes.
- Proven ability to build long-lasting relationships with various teams.
- Capability to successfully execute Red Team engagements.
- Expert understanding of network security, application security, authentication, authorization, identity systems, encryption, and secure coding practices.
- Experience with cloud platforms such as AWS, GCP, and/or Azure.
- Strong curiosity about engineering disciplines outside of your immediate expertise and a constant desire to learn.
- Experience working in environments with compliance requirements like SOC2, HIPAA, ISO27001, FedRAMP, etc.
- BS or higher in Computer Science or a related field.
Base Salary Compensation Range: $160,000-188,000