CrawlJobs Logo

Senior Offensive Cybersecurity Test Engineer

boeing.com Logo

Boeing

Location Icon

Location:
United States , Berkeley

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

204000.00 - 276000.00 USD / Year
Save Job
Save Icon
Job offer has expired

Job Description:

At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us. The Boeing Company is seeking a Senior Offensive Cybersecurity Test Engineer to support the Boeing Test & Evaluation (BT&E) cyber test capability. The selected applicant will join a highly technical Test & Evaluation team building an offensive cyber test capability in Berkeley, MO. This position will be providing testing services to Boeing Defense Space & Security (BDS) portfolio. The selected applicant will become a Berkeley team member trained across the broader BT&E Product Security Capability team.

Job Responsibility:

  • Lead execution of penetration tests to identify, exploit, and assess a target system’s vulnerabilities in a threat-representative manner on embedded systems and IP-based networks
  • Subject Matter Expert for emulating advanced cyber adversary (advanced persistent threats) tactics, techniques and procedures (TTPs)
  • Lead controlled attack simulations that test the effectiveness of a blue team and its capabilities to detect, block, and mitigate attacks and breaches
  • Develop exploits and malware targeting modern operating systems and defenses
  • Reverse engineering firmware and software to support vulnerability identification
  • Develop cyber test tools as necessary to achieve threat emulation objectives
  • Communicate recommendations for improvements to customer stakeholders via reports or presentations using common frameworks such as MITRE ATT&CK, Cyber Kill Chain, etc.
  • Participate in test design and planning
  • Occasional domestic and international travel as needed

Requirements:

  • Bachelor of Science degree in Engineering, Engineering Technology (including Manufacturing Technology), Computer Science, Data Science, Mathematics, Physics, Chemistry or non-US equivalent qualifications directly related to the work statement
  • 5+ years of experience in product security, cybersecurity research, or a related field
  • 5+ years of experience leading projects or engineering teams
  • 5+ years of experience planning and executing penetration testing of either IT based systems or Avionics embedded systems
  • 5+ years of experience working with Department of Defense (DoD) organizations, projects and/or programs
  • 3+ years of experience leading and mentoring a technical team
  • Able to travel both domestically and internationally
  • Active U.S. Secret Security Clearance (U.S. Citizenship Required)
  • Ability to obtain program access, for which the U.S. Government requires U.S. Citizenship only

Nice to have:

  • Demonstrated ability to engage with stakeholders to define/plan/resource/deliver
  • Experience designing and/or testing product systems
  • Experience working with Product Security (non-IT) Cyber Compliance and/or Avionics Embedded systems risk management assessment
  • Experience facilitating and/or supporting Cyber Table Top, Mission Based Cyber Risk Assessment, or equivalent exercises
  • Experience planning and executing penetration tests in one or more of the following domains: Windows, Linux, VxWorks, and INTEGRITY Operating Systems
  • IP-Based Networks
  • Avionics, Embedded Systems, Non-Standard Ethernet Protocols (ARINC, MIL-STD)
  • RF interfaces
  • Experience evaluating cybersecurity of proprietary protocols, applications, and firmware within a complex, integrated environment
  • Experience coordinating and presenting technical content to a diverse audience
  • Experience with program planning (cost and schedule)
  • Experience with scripting languages such as Bash, Python, PowerShell
  • Experience with Aircraft Platforms, Weapon Systems and/or C5ISR
  • Knowledgeable in Cryptography and Reverse Engineering
  • One or more of the following Certifications: Offensive Security Certified Engineer (OSCE)
  • Offensive Security Certified Professional (OSCP)
  • GIAC Certified Exploit Researcher and Advanced Penetration Testers (GXPN)
  • GIAC Reverse Engineering Malware (GREM)
  • Certified Information System Security Professional (CISSP)
What we offer:
  • Relocation based on candidate eligibility
  • Competitive base pay and variable compensation opportunities
  • Opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work
  • Generous company match to your 401(k)
  • Industry-leading tuition assistance program pays your institution directly
  • Fertility, adoption, and surrogacy benefits
  • Up to $10,000 gift match when you support your favorite nonprofit organizations

Additional Information:

Job Posted:
January 07, 2026

Expiration:
January 20, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Boeing - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Offensive Cybersecurity Test Engineer

Senior Detection Engineer

This is a detection engineering role that leverages knowledge of monitoring, ana...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.marriott.com Logo
Marriott Bonvoy
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Sciences or related field or equivalent experience/certification
  • 3+ years of collective experience in Splunk SIEM (Splunk Enterprise Security) threat detection use case development or UEBA (Exabeam) use case development for insider threat use case development
  • 5+ years of experience in security functions such as SOC, CIRT, security engineering, risk management, vulnerability management or technical infrastructure operations, administration, or systems engineering
  • scripting or programming language, including Python
  • Current information security certification such as Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) preferred
  • offensive and defensive security certifications such as CEH, IGAC Cyber Defense, OSCP or other related certifications preferred
  • Splunk Certification, including Splunk Enterprise Security Certified Admin preferred
  • use case development experience on the Exabeam platform preferred
  • working knowledge of the NIST Cyber Security Framework and ISO/IEC 27001:2022 preferred
  • working knowledge of the MITRE ATT&CK Framework preferred
Job Responsibility
Job Responsibility
  • Lead collaboration sessions within the cyber security tower and other business units to devise security monitoring use cases
  • engage and collaborate with other security engineers and architects as needed to keep pace with the evolution of corporate infrastructure and applications and share that knowledge with peers as appropriate
  • document prospective security monitoring use cases with MITRE ATT&ACK mappings using standard templates and methodologies
  • inform and consult other cyber ops teams of required data onboarding and integrations for use case development
  • develop analytics, correlation searches, dashboards, reports and alerts within the SIEM and UEBA platforms
  • solicit feedback for pre-production security monitoring content through peer review process and user acceptance testing for tuning
  • document developed security monitoring content in a documentation registry using department standard templates and methodologies
  • manage field mapping and transmission of security monitoring alerts to the security incident response platform for SOC analyst consumption as outlined in process documentation
  • provide governance support for the content development function entailing content development standards compliance, change management approvals for SIEM or UEBA content, and lifecycle management of developed security monitoring content
  • service operational requests in queue such as analytics content performance tuning, filtering, search refinement, parsing issues
  • Fulltime
Read More
Arrow Right

Senior Penetration Tester

As a Penetration Tester, you'll conduct regular, comprehensive security assessme...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5 years' experience in one or more of the following areas: Penetration Tester, Red/Purple Team Member, Security Engineer
  • Knowledge of technologies up to system level (web frameworks, communications protocols, database systems)
  • Offensive security knowledge of cyber-attack techniques, vulnerabilities, and mitigation strategies
  • Knowledge of penetration testing tools, frameworks, and methodology
  • Skills using Kali Linux, Nmap, PowerShell, Metasploit, Cobalt Strike, OWASP ZAP, Burp Suite
  • Proficiency in scripting
  • Awareness of frameworks such as MITRE ATT&CK and NIST and how they can be applied effectively within an enterprise
  • Familiarity with the latest exploits, tactics, techniques, and procedures (TTP), vulnerability remediation and security trends
  • Cyber security qualifications from Offensive Security, SANS, Pentester Academy, CREST, eLearnSecurity or others
Job Responsibility
Job Responsibility
  • Scoping and executing of complex penetrations test across a wide scope of technologies, products, services, and applications and critical infrastructure companies
  • Helping the team to define and improve the internal security testing programme
  • Documenting technical issues both Cyber and IT related during testing assessments
  • Improve our monitoring services by working in purple style exercises and operating in a red team capacity to improve the ability to detect and respond to threats
  • Supporting incident response by providing context and expertise around cyber threats
  • Mentor to our junior & medior colleagues
What we offer
What we offer
  • Extensive career development opportunities, both local and international
  • Part of a dynamic network of 56,000 professionals at all stages of their careers
  • Wide array of offices to explore
  • Fulltime
Read More
Arrow Right

Senior Product Security Engineer

Cloud Software Group is one of the world’s largest cloud solution providers, ser...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
cloud.com Logo
Cloud Software Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, Engineering, or equivalent experience
  • 5+ years of experience in offensive security, penetration testing, or red teaming
  • Solid understanding of basic networking, web technologies, and computer systems
  • Familiarity with at least one scripting or programming language (e.g., Python, JavaScript, Bash, PowerShell)
  • Demonstrated interest in cybersecurity (capture the flag participation, open-source contributions, hacking challenges, security coursework, etc.)
  • Strong problem-solving and communication skills
  • Eagerness to learn and adapt in a fast-paced security environment
Job Responsibility
Job Responsibility
  • Simulate real-world attacker tactics, techniques, and procedures (TTPs) to assess and improve the security posture of applications, APIs, and infrastructure
  • Identify, exploit, and document vulnerabilities in products and supporting systems using both manual techniques and automated tools
  • Develop and execute custom attack scenarios, including phishing, social engineering, and lateral movement campaigns, to test organizational defenses
  • Prepare comprehensive assessment reports, including reproduction steps and actionable remediation guidance for engineering teams
  • Stay current with the latest security threats, adversary methodologies (e.g., MITRE ATT&CK framework), and offensive security tooling
  • Assist in simulating adversary attacks to identify vulnerabilities and logic flaws in web and product features
  • Help develop automation scripts, tools, and documentation to support security testing activities
  • Continuously learn and apply the latest security testing techniques, tools, and industry best practices
Read More
Arrow Right

Senior Consultant - Offensive Security

The Senior Consultant on the Offensive Security team is focused on assessing and...
Location
Location
Japan
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of professional experience with risk assessment tools, technologies, and methods focused on Information Assurance, Information Systems/Network Security, Infrastructure Design, and Vulnerabilities Assessments
  • Demonstrate a deep understanding of how malicious software works (i.e.-malware, trojans, rootkits, etc.)
  • Ability to modify known and/or craft custom exploits manually without dependence on consumer tools such as Metasploit
  • Knowledge of tools and techniques used to conduct network, wireless, and web application penetration testing
  • Familiarity with web application penetration testing and code auditing to find security gaps and vulnerabilities
  • Knowledge and experience in conducting cyber risk assessments using industry standards
  • Experience with penetration testing, administering, and troubleshooting major flavors of Linux, Windows, and major cloud IaaS, PaaS, and SaaS providers (i.e., AWS, GCP, and Azure)
  • Experience with security assessment tools
  • Knowledge of network vulnerability assessments, web and cloud application security testing, network penetration testing, red teaming, security operations, or 'hunt'
  • Knowledge of computer forensic tools, technologies, and methods
Job Responsibility
Job Responsibility
  • Conducts periodic scans of networks to find and detect vulnerabilities
  • Performs client penetration testing to find any vulnerabilities or weaknesses that might be exploited by a malicious party, using open-source, custom, and commercial testing tools
  • Ability to assist in scoping engagements by clearly articulating various penetration approaches and methodologies to audiences ranging from highly technical to executive personnel
  • Report generation that clearly communicates testing and assessment details, results, and remediation recommendations to clients
  • Develop scripts, tools, and methodologies to automate and streamline internal processes and engagements
  • Conducts IT application testing, cybersecurity tool and systems analysis, system and network administration, and systems engineering support for the sustainment of information technology systems (mobile application testing, penetration testing, application, security, and hardware testing)
  • Conduct threat hunting and/or compromise assessment engagements to identify active or dormant indicators of compromise (IoCs) using Crypsis and Palo Alto Networks’ threat hunting tools (and/or client owned hunting instrumentation where applicable)
  • Conduct cloud penetration testing engagements to assess specific workloads (i.e., AWS, GCP, Azure, containers, or other PaaS and SaaS instances) for vulnerabilities and subsequently attempt to exploit identified weakness after receiving permission from client stakeholders
  • Provide recommendations to clients on specific security measures to monitor and protect sensitive data and systems from infiltration and cyber-attacks including response and recovery of a data security breach
  • Ability to perform travel requirements as needed to meet business demands
What we offer
What we offer
  • FLEXBenefits wellbeing spending account with over 1,000 eligible items selected by employees
  • mental and financial health resources
  • personalized learning opportunities
  • Fulltime
Read More
Arrow Right

Senior Offensive Security Engineer

As a Senior Offensive Security Engineer, you will be a key member of our corpora...
Location
Location
Poland , Warszawa
Salary
Salary:
Not provided
https://www.bosch.pl/ Logo
Robert Bosch Sp. z o.o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4-8 years of professional industry experience
  • At least 5 years dedicated to cybersecurity roles
  • Extensive, hands-on experience and deep technical knowledge in penetration testing
  • Wide-ranging security knowledge base, primarily focused on enterprise IT
  • Excellent written and verbal communication skills in English
  • Proven ability to create high-quality reports and present complex technical findings
  • Strong analytical skills to assess reports, identify patterns, and evaluate effectiveness
  • Passion for continuous learning
  • Relevant industry certifications such as OSCP, GPEN, GWAPT, GXPN, or CISSP are highly desirable
  • Experience in Red Teaming, threat modeling, or vulnerability research
Job Responsibility
Job Responsibility
  • Critically assess multiple penetration test reports from various internal and external teams to ensure the quality, accuracy, and completeness of the findings
  • Evaluate the efficacy of penetration testing teams and vendors to build a panel of trusted, high-quality security partners
  • Conduct independent, hands-on penetration tests to validate the quality of assessments performed by other teams
  • Support the development and implementation of the corporate cybersecurity resilience roadmap by providing an adversarial perspective
  • Serve as a key liaison between the central cybersecurity team and business stakeholders, clearly articulating risks and recommendations to peers and senior management
  • Interface with development and infrastructure teams to strengthen secure development and operational practices throughout the organization
What we offer
What we offer
  • Annual bonus
  • Hybrid work with flexible working hours
  • Referral Bonus Program
  • Copyright costs for IT employees
  • Professional support and possibility to share knowledge and best practices
  • Ongoing development opportunities in a multinational environment
  • Broad access to professional trainings (incl. language courses), conferences and webinars
  • Private medical care and life insurance
  • Cafeteria System with multiple benefits (incl. MultiSport, shopping vouchers, cinema tickets, etc.)
  • Prepaid Lunch Card
  • Fulltime
Read More
Arrow Right

Mid - Senior Cybersecurity Engineer

Join the leading AU fintech company as a Senior Cybersecurity Engineer who will ...
Location
Location
Philippines , Manila
Salary
Salary:
Not provided
moneyme.com.au Logo
MONEYME
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Information Technology, or a related discipline
  • Professional certifications such as CEH, OSCP or equivalent are highly regarded
  • Equivalent practical experience may be considered in lieu of formal qualifications
  • 3+ years of experience in cybersecurity engineering experience with strong focus on application security
  • Demonstrated ownership of vulnerability remediation from discovery through validation
  • Practical experience implementing and tuning SAST and DAST programs
  • Strong familiarity with OWASP Top 10 and OWASP API Security Top 10
  • Experience working directly with software engineers and platform teams
  • Experience embedding security into the software development lifecycle
  • Experience operating in regulated or high-risk environments
Job Responsibility
Job Responsibility
  • Own application security across web, mobile, and API systems
  • Identify and prioritize vulnerabilities using SAST, DAST, and threat modelling
  • Assess findings against OWASP Top 10 and OWASP API Security risks
  • Drive remediation with engineering teams and validate fixes
  • Embed security into the software development lifecycle
  • Conduct threat modelling during design and architecture
  • Perform security reviews for new features and changes
  • Integrate SAST, DAST, dependency, and container testing into CI CD pipelines
  • Define risk based security gates and tune rulesets
  • Assess high risk flows involving authentication, sensitive data, APIs, and third party integrations
What we offer
What we offer
  • HMO on Day 1 + 1 free dependent
  • 15 days of vacation leaves and 15 days of sick leave
  • 1 birthday leave
  • Health and wellbeing initiatives like weekly sports activities and MONEYME Olympics
  • Fun filled company activities - summer outings, team building, team lunch or dinner, Halloween event, year-end party and so much more!
  • Complimentary snacks in the office
  • MONEYME Merchandise - hoodie, T-shirt, tumbler, notebook, and id lace
  • Quarterly champion awards & reward trips
Read More
Arrow Right
New

Senior Information Security Engineer

Wells Fargo is seeking a Senior Information Security Engineer.
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
March 09, 2026
Flip Icon
Requirements
Requirements
  • 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • Bachelor’s degree in computer science, Information Security, or a related field - or equivalent work experience
  • 4+ years of Penetration testing, offensive security or Red teaming experience
  • Good understanding of OWASP top 10, SANS top 25 and application security testing, threats, vulnerabilities and attacks
  • 4+ years of experience in at least one of the following practices like Security requirements, Threat Modeling, static Analysis/Code Review, Application Security Risk Assessments, Security Design Requirements
  • 4+ years of experience in initiating scan using scanners like HCL AppScan or Invicti or WebInspect and troubleshooting any scanner related issues
  • Understanding of one or more programming languages and ability to analyze vulnerabilities and perform false positive analysis as part of DAST is a must
  • Comfortable in scripting in Python or PowerShell
  • Ability to performing cloud security assessments
  • Ability to work on Git hub
Job Responsibility
Job Responsibility
  • Lead or participate in computer security incident response activities for moderately complex events
  • Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
  • Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
  • Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
  • Review and correlate security logs
  • Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
  • Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
  • Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
  • Perform application security assessments / penetration testing engagements on web, mobile, thick client applications and API/web services covering multiple techniques and procedures
  • Scan the applications using automated scanners like HCL AppScan, Invicti or Web Inspect and perform false positive analysis
  • Fulltime
Read More
Arrow Right

Senior Penetration Tester

Join NTT DATA as a Senior Penetration Tester and enhance our cybersecurity capab...
Location
Location
Romania , Bucuresti
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in penetration testing across web apps, APIs, containers, networks, OS, databases, and cloud platforms
  • Strong experience in technical writing and producing detailed security reports
  • Deep understanding of offensive security operations and secure development practices
  • Familiar with OWASP Top 10, NIST, CIS, MITRE ATT&CK, and threat actor methodologies
  • Skilled in scripting languages: Python, PowerShell, Ruby, Bash
  • Advanced exploit development and evasion techniques
  • Proficient in tools: Kali, Metasploit, Nessus, Nuclei, Nmap, Burp Suite, PowerSploit, Impacket
  • Flexible, analytical, and adaptable
  • degree or certifications (OSCP, OSEP, etc.) preferred but not required
Job Responsibility
Job Responsibility
  • Perform network penetration, web application testing, source code reviews, threat analysis, and social-engineering assessments
  • Develop scripts, tools, or methodologies to enhance NTT DATA, Inc’s Purple Team and Security Operations capabilities
  • Monitor available open source intelligence feeds for any NTT DATA related information
  • Develop detailed threat models
  • Thoroughly document techniques, tactics and proofs of concept used during security testing and red team exercises
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy