Posted 21 days ago
Senior Offensive Security Engineer
HPSenior Offensive Security Engineer
Perks & benefits
Health InsurancePaid Leave
Requirements
5+ years offensive security experience, Threat modeling expertise, Vulnerability exploitation expertise, Embedded systems testing, Hardware-assisted attack techniques, Proficiency in Go, Python, Java, or TypeScript
Skills
Penetration TestingPythonThreat ModelingEmbedded SystemsGo
About the role
Responsibilities
- Lead penetration tests and security assessments for product and feature releases
- Conduct continuous security engagements to identify vulnerabilities and drive remediation
- Advise engineering and product teams on remediation strategies and validate fixes
- Assess attack surfaces across internet-facing services, APIs, and device interfaces (Wi-Fi, BLE, USB)
- Perform threat modeling and security architecture reviews to shape product decisions
- Define and lead end-to-end risk reduction initiatives with internal and external stakeholders
- Shape the offensive security roadmap, including assessment scope, tooling, and methodology standards
Requirements
- 5+ years of experience as an offensive security engineer or equivalent
- Expertise in threat modeling (e.g., STRIDE) and mapping adversary techniques (e.g., MITRE ATT&CK)
- Expertise in identifying and exploiting common vulnerabilities (e.g., OWASP Top 10, SANS 25)
- Hands-on experience testing embedded systems, firmware, and device software (JTAG, UART, SPI/I2C)
- Demonstrated experience with hardware-assisted attack techniques like fault injection or side-channel analysis
- Proficiency in Go, Python, Java, or TypeScript for building offensive tooling and automation
- Ability to communicate security findings and strategic recommendations to engineering and executive stakeholders
Preferred Qualifications
- Experience securing AI products or edge-connected systems at scale
- Experience building or maturing an offensive security practice within a product-focused organization
- Experience validating technical controls for compliance standards like SOC 2, ISO 27001, or PCI DSS
- Security research background with demonstrated findings, CVE disclosures, or public community contributions
Benefits
- Health, dental, and vision insurance
- Long term and short term disability insurance
- Life insurance and employee assistance program
- Flexible spending account
- Generous time off, including 4-12 weeks of fully paid parental leave and 11 paid holidays
About the Company
HP IQ is HP’s new AI innovation lab. Combining startup agility with HP’s global scale, we’re building intelligent technologies that redefine how the world works, creates, and collaborates. We are assembling a diverse, world-class team focused on creating an intelligent ecosystem across HP’s portfolio.
ScoutJobs Agent
Get matches like this delivered daily
Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.
Get started — it's freeSenior Offensive Security Engineer
HP · San Francisco
