Offensive Security Engineer

What You’ll Do:
CoreWeave’s Information Security team works to measure and improve the security of internal and external infrastructure and application offerings that provide high-power compute to customers. Security engineers integrate within engineering to act as a security liaison between product, engineering, and security. They provide assurance to business & network partners that CoreWeave’s capabilities and technologies have been adequately hardened.

About the role:
As an Offensive Security Engineer at CoreWeave, you will perform penetration testing, conduct threat modeling, and identify security weaknesses across internal and external systems. You will work closely with engineering teams to provide guidance and develop security best practices, while staying ahead of emerging threats. This role also involves research, developing tooling, and improving the organization’s overall security posture.

• Perform penetration testing as well as purple and red team exercises
• Conduct threat modeling, code reviews, and design reviews for development teams within the business
• Research/stay abreast of new hacking techniques and find ways to counter them
• Find effective solutions to information security related problems
• Develop best practices and improve security standards for the organization while maintaining internal compliance and security posture
• Provide solutions to complex issues; handle multiple tasks in a fast-paced environment; set priorities; meet deadlines per project scope
• Present complex technical information to both technical and non-technical audiences
• Manage time effectively, maintain good technical writing, presentation, and documentation skills
• Work with minimal supervision, maintaining attention to detail and follow-through
• Perform other work-related duties as assigned

Who You Are:

• Proficiency in using at least one programming or scripting language (e.g., Go, Python, C/C++) to solve automatable tasks and perform code