Search Remote Jobs

Offensive Security Lead

Job not on LinkedIn

đŸ”„ 1 minute ago

đŸ‡ȘđŸ‡ș Europe – Remote

⏰ Full Time

🟠 Senior

đŸ‘źâ€â™‚ïž Cybersecurity / Security Engineer

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Nebius Group

Nebius Group

1001 - 5000 employees

🏱 Enterprise

☁ SaaS

AI ‱ Enterprise ‱ SaaS

Nebius Group is building one of the world’s leading AI infrastructure companies, focusing on providing the necessary compute, storage, and tools for developers in the AI space. Based in Europe and listed on Nasdaq, Nebius has a global presence with R&D centers across Europe, North America, and Israel. The company's primary offering is an AI-centric cloud platform designed for intensive AI workloads, complemented by various other businesses involved in generative AI development, edtech, and autonomous technology.

📋 Description

‱ Build and lead a red team function within Product Security Team, hiring and developing offensive security engineers. ‱ Validate and extend early-stage Secure SDLC threat models via continuous penetration testing, assessing threat severity and mitigation status while challenging assumptions made during threat modeling and system development. Automate routine validations to keep pace with increasing feature flow, reserving manual analysis for genuinely complex cases. ‱ Plan and execute full-scoped red team engagements against Nebius cloud platform - including compute, storage, inference, networking, orchestration layers, and internal tooling. Identify threats, which are able to impact an organization's operations. Work closely with Detection & Response and other security engineering teams to run purple team exercises, validate detection coverage, and close gaps collaboratively. ‱ Research novel attacks against GPU infrastructure (e.g., closed-source firmware and vendor driver binaries, device passthrough exploits, SR-IOV/IOMMU misconfigurations, RDMA/InfiniBand fabric attacks, etc.), the inference stack (e.g., vLLM, TRT-LLM), and AI platform managed services (e.g., managed Slurm). Assess tenant-isolation boundaries and how they can be broken at the low-level stack. ‱ Conduct targeted assessments of new products and infrastructure changes before they ship. ‱ Deliver clear, actionable reports for both technical audiences and leadership - with prioritized findings and remediation guidance. ‱ Establish red team processes, tooling, and a methodology that scales as the platform grows.

🎯 Requirements

‱ 6+ years in offensive security - penetration testing, red teaming, or adversary simulation - with at least 1-2 years leading or mentoring a team. ‱ Deep experience attacking cloud-native environments: Kubernetes privilege escalation, cloud IAM abuse, virtualization and container escapes. ‱ Strong fundamentals across the attack lifecycle: initial access, persistence, lateral movement, data exfiltration. ‱ Proficiency developing custom tooling and post-exploitation capabilities (Python, Go, or similar). ‱ Experience running purple team exercises and working constructively with blue teams. ‱ Ability to write clear, senior-level reports with business-contextualized risk (not just raw findings) that engineers can easily use.

đŸ–ïž Benefits

‱ Competitive compensation ‱ Career growth and learning opportunities ‱ Flexibility and ownership ‱ Collaborative and innovative culture ‱ Opportunity to work on impactful AI projects ‱ International environment and talented teams

Apply Now

Similar Jobs

🕒 July 7

Sporty Group

501 - 1000

đŸ“± Media

🎼 Gaming

đŸŽČ Gambling

Offensive Security Engineer enhancing security by testing vulnerabilities at Sporty Group. Collaborating with IT and security teams to improve defenses.

đŸ‡ȘđŸ‡ș Europe – Remote

⏰ Full Time

🟡 Mid-level

🟠 Senior

đŸ‘źâ€â™‚ïž Cybersecurity / Security Engineer

DNS

Firewalls

Linux

Python

🕒 July 5

Intel 471

201 - 500

🔒 Cybersecurity

☁ SaaS

🏱 Enterprise

Senior Security Engineer improving security of platforms, products, and engineering processes for Intel 471. Leading application security, secure SDLC, and cloud security initiatives.

đŸ‡ȘđŸ‡ș Europe – Remote

💰 Private Equity Round on 2021-09

⏰ Full Time

🟠 Senior

đŸ‘źâ€â™‚ïž Cybersecurity / Security Engineer

🕒 July 3

Maze

11 - 50

🔒 Cybersecurity

🏱 Enterprise

Security Research Lead at Maze impacting AI's understanding of real risk in cybersecurity. Leading vulnerability research and external narratives for security product credibility.

đŸ‡ȘđŸ‡ș Europe – Remote

⏰ Full Time

🟠 Senior

đŸ‘źâ€â™‚ïž Cybersecurity / Security Engineer

🕒 June 26

Maze

11 - 50

🔒 Cybersecurity

🏱 Enterprise

Security Engineer at Maze focusing on cloud and application security in a fast-growing environment. Establishing a strong internal security foundation to support business scalability.

đŸ‡ȘđŸ‡ș Europe – Remote

đŸ’” €100k - €130k / year

⏰ Full Time

🟡 Mid-level

🟠 Senior

đŸ‘źâ€â™‚ïž Cybersecurity / Security Engineer

🕒 June 10

UserGems 💎

11 - 50

đŸ€ B2B

đŸ€– Artificial Intelligence

☁ SaaS

Senior Security Engineer for UserGems managing security operations and compliance programs. Overseeing SOC 2 and ISO implementation, and running customer security processes.

đŸ‡ȘđŸ‡ș Europe – Remote

đŸ’” €80k - €100k / year

💰 $20M Series A on 2021-10

⏰ Full Time

🟠 Senior

đŸ‘źâ€â™‚ïž Cybersecurity / Security Engineer