Remote Senior Offensive Security Engineer

Description:

• We are seeking a Senior Security Engineer to build and lead our Offensive Security program.
• In this role, you will attack Chime’s services, applications, and infrastructure to discover security issues and report them to our internal technology teams.
• This position will offer you the opportunity to grow your technical and leadership skills while being part of a collaborative and dynamic team that finds joy in problem-solving and innovating together at Chime.
• The ideal candidate will be an offensive cybersecurity professional with a passion for analyzing codebases, testing hypotheses, and designing tools to impact web applications and their infrastructure.
• This Engineer will work closely with teams throughout Information Security and provide technical leadership and advice to teams and leaders throughout Chime.
• You will be in direct contact with teams in a variety of business verticals, giving you first-hand knowledge about how Chime is built and operates at a deep, technical level.
• Additionally, you will leverage the knowledge you gain about Chime to find new ways to break services, processes, and infrastructure throughout the company.
• The base salary offered for this role and level of experience will begin at $157,590 and go up to $218,900.
• Full-time employees are also eligible for a bonus, competitive equity package, and benefits.
• The actual base salary offered may be higher, depending on your location, skills, qualifications, and experience.

Requirements:

• You must have 4+ years of combined experience in either an offensive security, red teaming, or application security role.
• Experience in conducting surreptitious cloud-based attacks is required.
• You should have experience with developing custom tools and payloads that bypass defensive products and remain undetected in a mature network environment.
• The ability to perform unsupervised red team engagements and experience with performing adversarial simulation is necessary.
• You must be able to explain vulnerabilities and weaknesses to non-technical stakeholders.
• Relevant certifications such as OSCP, OSCE, OSEE, Certified Red Team Operator (CRTO), and GIAC Red Team Professional certification (GRTP) are nice to have.

Benefits:

• Our in-office work policy is designed to keep you connected, with four days a week in the office and Fridays from home for those near one of our offices.
• In-office perks include backup child, elder, and/or pet care, plus a subsidized commuter benefit to support your regular commute.
• We offer a competitive salary based on experience.
• Employees receive a 401k match along with great medical, dental, vision, life, and disability benefits.
• There is a generous vacation policy and company-wide Chime Days, which are bonus paid days off.
• You will have 1% of your time off to support local community organizations of your choice.
• An annual wellness stipend is provided to use towards eligible wellness-related expenses.
• Up to 24 weeks of paid parental leave is available for birthing parents and 12 weeks for non-birthing parents.
• Access to Maven, a family planning tool, includes a $15k lifetime reimbursement for egg freezing, fertility treatments, adoption, and more.
• We host in-person and virtual events to connect with fellow Chimers, including cooking classes, guided meditations, and more.
• This position offers a challenging and fulfilling opportunity to join one of the most experienced teams in FinTech and help millions unlock financial progress.