Offensive Security Engineer

About Platform.sh

The Platform.sh Platform-as-a-Service (PaaS) removes the complexities of cloud infrastructure management and optimizes development-to-production workflows, reducing the time it takes to build and deploy applications. Delivering efficiency, reliability, and security, giving development teams both control and peace of mind. Built for developers, by developers.

Adopted and loved by 16,000+ developers, 7,000 customers, and proven over the last 8 years - Platform.sh provides out-of-the-box capabilities that serve as the launchpad for creative development teams’ out-of-the-box thinking.

We provide 24x7 support, managed cloud infrastructure, and automated security and compliance with an all-in-one PaaS. We give our customers complete control over their data by keeping applications secure and available around the clock.

Platformers are a remote, global workforce, and we thrive in a multicultural team. We are committed to open source and an open, welcoming environment. Our team spans the globe and the experience spectrum. What's our commonality, our cultural fabric? A curious spirit and a thirst for knowledge; an eagerness for innovative ideas and cultures. We believe we can build anything together in an environment that frees you to do your best work.

Bring your expertise and enthusiasm to our growing, global organization. Your contributions, collaboration, and unique point of view are recognized and valued here.

Position Summary:

Join our team as an Offensive Security Engineer at Platform.sh. Are you passionate about securing complex cloud infrastructures? Do you thrive on solving unique security challenges and have a knack for innovative problem-solving? If so, we want you to be part of our dynamic team at Platform.sh where traditional security practices don't quite fit the bill. We're on the lookout for an Offensive Security Engineer who can bring their expertise to our ever-evolving landscape.

As an Offensive Security Engineer, you will be pivotal in designing and implementing robust security measures for our large cloud infrastructure platform. You will collaborate closely with our Director of Security and all our engineering teams, driving security initiatives from concept to completion. Your role will encompass conducting threat modeling, security architecture reviews, code reviews, and communicating vulnerabilities and solutions to both technical and non-technical audiences. Additionally, you'll be an integral part of improving our security culture company-wide.

This role reports to our Director of Security and closely collaborates across our global organization.

What to expect:

• Architect and implement advanced security measures for a sophisticated cloud platform.
• Engage in the design and review of our infrastructure, ensuring its resilience against threats.
• Identify and resolve vulnerabilities in our open-source stack related to LXC/Linux from beginning to end.
• Effectively communicate all discovered vulnerabilities, methods of exploitation, and solutions to both technical and non-technical audiences.
• Review, understand, and challenge Common Vulnerabilities and Exposures (CVE) of our infrastructure stack.
• Collaborate with cross-functional teams to enhance the security of our software stack and contribute to the improvement our overall culture of security.
• Contribute to our active defense strategy by integrating tools to automate and enhance detection and remediation.
• Participate in the on-call rotation to provide expert assistance for both internal and customer-related matters.

What you bring:

• Practical experience in Software Engineering, with at least 3+ years focused on offensive security engineering.
• Proven track-record in designing and implementing security architectures for cloud-based systems.
• Excellent communication skills, with proficiency in English.
• Solid command of Linux systems, including kernel, core utilities, terminal, shell scripting, and more.
• Growth mindset; curious and eager to learn, progress, and innovate.
• Ability to challenge the status-quo and think outside the box.

Bonus points:

• Experience in "capture the flag" (CTF) events, Bug Bounty, or vulnerability research (CVE) is a plus.
• Master's degree in Computer Science, Engineering, Information Technology.
• Security certifications like OSCP, OSCE, OSWE.

Where we hire:

At Platform.sh, remote work isn't just a trend - it's our way of life. The freedom of remote work with the support of a diverse, global team has been our successful model for nearly a decade! Our culture celebrates flexibility and collaboration, empowering you to excel from where you are. To enhance team synergy, we come together (at least) once a year in person, seizing the opportunity to connect, tackle challenges, and foster camaraderie.

How we hire:

We know that a great hire won’t meet every requirement that we’ve outlined. If you can see yourself elevating the team, we want to hear your story. Few of us would be here had we not taken a chance.

You can expect 3 interviews on Google Meet to follow the order below. Should you successfully move through the entire process you will have the opportunity to meet with a variety of Platformers. Our goal is to ensure you can make the most informed decision on whether this role, and our culture aligns with what you’re looking for in your future working environment.

1. 45 Minutes with Talent Acquisition
2. 60 Minutes with Hiring Manager (SVP, Operations and Engineering)
3. 60 Minutes with Team (Engineering IC's)

All roles require background checks.

What we offer:

💡 An innovative product you can believe in. We’re sustainably changing the way companies develop and manage their web applications

🏆 We’re voted as A Best Place to Work by 96% of our employees, Forbes Top 30 Companies for Remote Jobs, and France Best Workplaces for Women

🗣️ Leadership that cares in a flexible, open work environment, where your voice is encouraged. We can always find ways to do better and look forward to hearing your ideas

🌎 Global team, rich with culture and diversity

🧳 Annual team gatherings

💆‍♀️ Wellness budget

🧠 Professional development budget

💻 Office equipment budget

👫 Mentorship Program

🩺 Comprehensive health coverage (US, CA, UK, and FR employees only)

🏝 Generous PTO (geographically dependent)

👶 Inclusive parental leave (geographically dependent)

🤝 Tandem – a pool of linguists from around the world willing to help each other learn new languages.

📈 Company stock options (discretionary)

♾️ Unlimited Platform.sh accounts

You’re welcome here.

At Platform.sh, we take pride in our commitment to being an inclusive and diverse workplace. We strive to create an environment built on trust, support, and respect for all individuals. We welcome everyone, regardless of gender identity and expression, race, ethnicity, disability, sexual orientation, color, religion, creed, gender, national origin, age, marital status, pregnancy, education, languages spoken, or veteran status. We encourage you to be yourself, connect with like-minded individuals, and share your passions.

If you require accommodation at any stage of our recruitment process, please don't hesitate to reach out to your talent acquisition partner. Your comfort and accessibility are important to us.