Senior Security Engineer

Bishop Fox is the leading authority in offensive security, providing solutions ranging from continuous penetration testing, red teaming, and attack surface management to product, cloud, and application security assessments. We’ve worked with more than 25% of the Fortune 100, half of the Fortune 10, eight of the top 10 global technology companies, and all of the top global media companies to improve their security. Our Cosmos platform was named Best Emerging Technology in the 2021 SC Media Awards and our offerings are consistently ranked as “world class” in customer experience surveys. We're an active participant in the security community and have published more than 16 open source tools and 50 security advisories in the last five years. Learn more at bishopfox.com or follow us on Twitter.

We are hiring a senior security engineer who will help accelerate future growth for our firm.

What You’ll Do

Do you like to build things or break things? If the answer is you like to build things that break things then we’re looking for you. With Bishop Fox, your responsibilities will include development, maintenance, and rapid deployment of custom penetration testing, red team, and general offensive security tooling. You’ll work closely with the Bishop Fox application security, network security, and red teams to develop tailored solutions to offensive security challenges at scale

Responsibilities will include but not be limited to:

• Creating innovative tools to support consultants on penetration testing engagements.
• Partnering with Cosmos and Consulting teams to advance automation efforts.
• Developing scripts to automate repetitive processes, such as ingesting tool output and generating findings templates, improving existing scanning and exploitation tools, and crafting custom exploits.
• Supporting and maintaining current inventory of custom tools and platforms.

Why Bishop Fox

We believe that what we do makes an impact, and our culture reflects it in the best possible way. Every one of us plays a role in our success. We value our time and our well-being, we love what we do, and we look out for one another. Bishop Fox offers competitive salaries, flexible schedules, and a one-of-a-kind environment. For the right candidate, it will feel like a second home.

Your Education and Experience

In addition to the above, the following is a list of skills and traits that describe you. If you have most of these, we’d like to speak with you.

Professional Experience

• 5+ years of application-focused offensive security experience in supporting a variety of engagements with clients from a variety of industries
• 10+ years of professional experience in the IT Field, including several years of client security consulting experience
• Advanced relevant academic training is a bonus, i.e., Bachelor’s in Computer Science

Technical Skills

• Expertise with one or more of Python, Golang, and JavaScript/TypeScript
• Expertise with Amazon cloud environments, understanding its major technologies such as IAM, EC2, VPC, EBS, S3, and Lambdas.
• Expertise with infrastructure as code (Terraform).
• Expertise with Git and preferably experience with Github Actions CI/CD.
• Understanding security fundamentals and common vulnerabilities (e.g., OWASP Top Ten) in addition to more modern web app and enterprise app vulnerabilities
• Additional experience in IT, security engineering, system and network security, authentication and security protocols, and/or applied cryptography
• Network and web-related protocol knowledge (e.g., TCP/IP, UP, IPSEC, HTTP, HTTPS, routing protocols)
• Superior communication skills (i.e., written and verbal) - including the ability to work as a mentor on engagements
• Experience with software development/engineering with either a full-stack or backend development focus is highly preferred

Soft Skills

• Highest integrity and trustworthiness
• A respect for confidentiality
• Team player mindset
• Excellent decision-making skills
• An amenable personality
• Strong leadership skills; experience in the world of high-tech consulting will serve you well here
• Highest standards of accuracy, precision, and organization
• Proven ability to think creativity with plenty of ambition and motivation

Bishop Fox has always offered its employees the ability to work remotely, and this role could work remotely in the United States, Canada, or Mexico.

Interested? Apply today.

All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, or veteran status.