Email Alert for
ⓘ There was an unexpected error processing your request.
Please refresh the page and try again.
If the problem persists, please contact us with your issue.
You can always manage your preferences and update your interests to ensure you receive the most relevant opportunities.
Get ready to discover your next great opportunity.
Materialize
New York, NY, United States
About the Role: As a Staff Security Engineer, you will own the security of our infrastructure and product. As a member of the Cloud team, you will make significant hands-on code contributions to Materialize’s cloud infrastructure. Working across teams, you will level up and scale out our organizational security practices through lightweight toolin
Job Source: MaterializeFastly
New York, NY, United States
Fastly helps people stay better connected with the things they love. Fastly’s edge cloud platform enables customers to create great digital experiences quickly, securely, and reliably by processing, serving, and securing our customers’ applications as close to their end-users as possible — at the edge of the Internet. The platform is designed to ta
Job Source: FastlyGemini
New York, NY, United States
Empower the Individual Through Crypto Gemini is a crypto exchange and custodian that allows customers to buy, sell, store, and earn more than 30 cryptocurrencies like bitcoin, bitcoin cash, ether, litecoin, and Zcash. Gemini is a New York trust company that is subject to the capital reserve requirements, cybersecurity requirements, and banking com
Job Source: GeminiStellar
New York, NY, United States
Interested in working on cutting-edge blockchain technology and creating equitable access to the global financial system? Since 2014, the mission-driven team at the Stellar Development Foundation (SDF) has helped fuel the tremendous growth of the Stellar blockchain network, an open-source platform that operates at high-scale today. Recently, the St
Job Source: StellarDatadog
New York, NY, United States
The Remote Configuration team is building a platform that allows the Datadog backend to safely and reliably change the behaviors of agents and tracers that are deployed in our customers' infrastructure. This platform is being leveraged by many products at Datadog to build exciting new features such as blocking malicious requests, dynamically addin
Job Source: DatadogStartUs GmbH
New York, NY, United States
Spotify listeners, creators and employees trust us to provide a safe digital platform that protects any sensitive information they share with us. Spotify Security is a distributed team that champions and delivers on initiatives with Spotify’s autonomous teams to ensure that our organization keeps information security appropriately prioritized and t
Job Source: StartUs GmbHImprint Content
New York, NY, United States
The Team The Security Engineering team at Imprint is at the forefront of democratizing access to cutting-edge technologies, empowering teams across our organization to innovate and excel. Driven by our vision to redefine the Fintech landscape, our team is committed to building a secure, highly available infrastructure and arming our engineers with
Job Source: Imprint ContentScale AI
New York, NY, United States
We are seeking a highly experienced Staff Security Engineer to assist our overall Security team at Scale. This senior role is crucial for ensuring the comprehensive security of our products, services, and infrastructure. You will leverage your extensive expertise in both application and infrastructure security to conduct in-depth code reviews, secu
Job Source: Scale AINew York, NY, United States
Join a leading fintech company that’s democratizing finance for all.
Robinhood was founded on a simple idea: that our financial markets should be accessible to all. With customers at the heart of our decisions, Robinhood is lowering barriers and providing greater access to financial information. Together, we are building products and services that help create a financial system everyone can participate in.
As we continue to build...
We’re seeking curious, growth minded thinkers to help shape our vision, structures and systems; playing a key-role as we launch into our ambitious future. If you’re invigorated by our mission, values, and drive to change the world — we’d love to have you apply.
Robinhood has a primary in-office working environment; please be sure you have reviewed the preferred working location(s) for this role before applying.
About the team:
Robinhood is looking for an Offensive Security Engineer who is passionate about Red Teaming, Adversarial Simulation, and breaking / fixing systems, to join the Red Team.
The Red Team is a core pillar of the Offensive Security team and situated within the Safety & Productivity Engineering organization. The Red Team works with teams across Robinhood to ensure our products, services, and processes are secure through threat modeling, penetration testing, adversarial simulations, and red teaming.
Here are some examples of things our team does frequently that you’ll be heavily involved with:
Red Teaming to validate assumptions, facilitate decisions, and improve our ability to detect and respond to incidents.
Perform threat modeling against critical and new services. Articulate the actual security risk to risk working groups.
Penetration testing our critical infrastructure, production applications, networks, offices, and processes.
Sparring with Detection and Response and other stakeholders via Adversarial Simulations to prepare for incidents.
Partnering with the physical security team to conduct assessments of Robinhood properties.
Serving as a technical advocate and Subject Matter Expert for privacy and security decisions, designs, and discussions.
Driving innovative ideas to implementation as the company evolves and grows.
Conduct vulnerability research to understand latest TTPs, exploits, and forward looking capabilities
Leaving things better than you found them by partnering to fix the issues and not just finding broken things.
What you’ll do day-to-day:
Evangelize the Offensive Security Team’s Findings and Projects with stakeholders throughout the company and collaborate with other teams to create solutions that balance security with other priorities.
Mentor and provide guidance to the members of the Offensive Security team.
Utilize threat modeling to identify threats and shape Red Team priorities and exercises.
Plan and execute long term, broadly scoped, black box Red Team exercises utilizing vulnerability research, exploit development, and utilizing public proof of concept code.
Perform penetration testing, code reviews, and design/architecture reviews.
Write tooling to assist with and automate Red Team assessments.
Plan and participate in Adversarial Simulation exercises with various security teams
Lead Security Incidents when Pentest or Red Team findings require them.
Publish blog posts and present talks at security conferences.
About you:
5+ years of experience being a Senior member of a Red Team and mentoring other team members.
Passion and demonstrated experience for challenging security assumptions.
Excellent written and verbal communication skills and ability to communicate your findings at many different levels of abstraction from Engineers to Executives
Passion for fixing security issues and not just identifying security issues.
Familiarity with common network protocols and standards such as DNS and TCP/IP.
Experience with MacOS and Linux.
Experience with leveraging components of a modern software development stack to attack companies, including CI, container orchestration systems (Kubernetes/Docker), cloud providers (AWS, GCP), etc and be able to give hardening suggestions.
Experience/knowledge of defensive tools/techniques (IDS/IPS, Packet Capture, Network Analysis, AV, EDR, etc.) and how to evade them.
Deep understanding of Mitre’s ATT&CK Framework
Strong understanding of the security fundamentals of access and identity
Comfortable reading / writing python, go, and javascript
Ability to research and execute a testing plan to access a new technology or process
Demonstrated experience working with a distributed team
Proficiency to communicate over a text-based medium (Slack, JIRA Issues, GitHub issues, & Email) and can succinctly document technical details.
Bonus points:
Experience in the Financial Technology domain
Experience being a technical lead at other organizations
Base pay for the successful applicant will depend on a variety of job-related factors, which may include education, training, experience, location, business needs, or market demands. You can view comp zones for our US office locations in the table below. For other locations not listed, compensation can be discussed with your recruiter during the interview process.
Office locations (by comp zone)
US Zone 1: Menlo Park, NYC, Seattle, Washington DC
US Zone 2: Denver, Westlake (Dallas), Chicago
US Zone 3: Lake Mary
Click here to learn more about Robinhood’s Benefits.
Robinhood promotes diversity and provides equal opportunity for all applicants and employees. We are dedicated to building a company that represents a variety of backgrounds, perspectives, and skills. We believe that the more inclusive we are, the better our work (and work environment) will be for everyone. Additionally, Robinhood provides reasonable accommodations for candidates on request and respects applicants' privacy rights. To review Robinhood's Privacy Policy please visit Robinhood - US Applicant Privacy Policy. If you are an applicant located in the UK or EEA, please visit the Robinhood - UK/EEA Applicant Privacy Policy.
Email Alert for Staff Security Engineer jobs in New York, NY, United States
ⓘ There was an unexpected error processing your request.
Please refresh the page and try again.
If the problem persists, please contact us with your issue.
You can always manage your preferences and update your interests to ensure you receive the most relevant opportunities.
Get ready to discover your next great opportunity.