Offensive Security Engineer

Our Company: At red violet, we build proprietary technologies and apply analytical capabilities to deliver identity intelligence. Our technology powers critical solutions, which empower organizations to operate with confidence. Our solutions enable the real-time identification and location of people, businesses, assets, and their interrelationships.

Requirements

• Hands-on experience in penetration testing, offensive security, or red team operations
• Strong experience testing web applications, APIs, and cloud environments (AWS preferred)
• Demonstrated knowledge of AI/ML security risks, including LLM abuse patterns and model-level attacks
• Proficiency with common penetration testing tools (e.g., Burp Suite, Metasploit, Nmap, cloud-native tooling)
• Strong understanding of: OWASP Top 10, OWASP API Security Top 10, Cloud attack paths and IAM abuse, and MITRE ATT&CK
• Ability to write clear, developer-friendly remediation guidance
• Comfortable scripting or automating testing tasks (Python, Bash, PowerShell preferred)
• Excellent communication skills and ability to work cross-functionally
• Experience testing AI APIs, LLM platforms, or ML pipelines in production environments
• Familiarity with AI risk frameworks (e.g., NIST AI RMF)
• Experience in regulated or high-trust environments
• Relevant certifications include: OSCP, OSCE, CRTO, GPEN, GXPN, Cloud security certifications, AI-security or ML-adjacent coursework or certifications

Benefits

• Flexible PTO policy
• Medical, dental and vision coverage
• Commuter benefits
• In-office healthy snacks
• Team events