Offensive Security Engineer (Red Team) - Information Security
Join to apply for the
Offensive Security Engineer (Red Team) - Information Security
role at
Shopee .
Job Responsibilities
Design and perform APT adversary emulation to assess infrastructure, systems, and applications against confidentiality, integrity, authentication, availability, authorization, and non-repudiation standards.
Translate requirements into test plans, develop and execute scripts or codes to identify vulnerabilities, following established standards and procedures.
Responsible for weaponization capabilities within the red team.
Research and identify undiscovered vulnerabilities (0-day) during red team engagements.
Requirements
Bachelor’s degree or higher in Computer Science, Information Technology, Programming & Systems Analysis, Engineering, or related fields.
At least 2 years of experience in red team roles or relevant security positions.
Strong security development skills, proficiency in Python, Go, with experience in web crawling and distributed development.
Ability to audit code, identify vulnerabilities such as command injection, insecure deserialization, stack overflows, and independently develop exploits.
Experience with frameworks like Puppeteer, Playwright, RabbitMQ, ELK, Yaklang, etc.
Excellent communication skills and teamwork spirit.
Self-motivated with quick learning ability.
Preferred Experience
Experience in penetration testing, red teaming, and familiarity with ATT&CK Framework kill chains (e.g., initial access, Windows AD testing, lateral movement).
Experience in APT offensive and defensive operations.
Proven record of bug bounty awards, contributions as Github star authors, etc.
Additional Details
Seniority level: Mid-Senior level
Employment type: Full-time
Job function: Information Technology
Industries: Software Development, Internet Marketplace Platforms, Technology, Information and Internet
Referrals can double your chances of interviewing at Shopee.
#J-18808-Ljbffr