Listing Description

SHOULD YOU ACCEPT THIS CHALLENGE...

The Offensive Security Engineer at Pure Storage works closely with security operations, internal development teams, and the product R&D teams to identify security issues. This role uses various offensive security methods (atomic testing, adversary emulation, penetration testing) to identify vulnerabilities in networks and systems.  Additionally, the offensive security function will test and validate deployed detective and defensive capabilities deployed to protect business processes and the enterprise network.

About You

You may “Reference The Fine Manual”, but only as a starting point so you can quickly go out of bounds to identify the previously unknown and better uncover the unexpected.  When you were younger, you got in trouble for taking apart small appliances or “breaking” the Internet yet didn’t get the deserved credit for improvements as you re-imagined them back to a functioning state. 

DEFCON is your Summer Home and Python is your Swiss Army knife .

Required Skills and Responsibilities

• 
  

   Experience in project or program management in a fast-paced environment

  
  


• 
  

  4+ yrs. experience in Red Teaming, penetration testing, systems analysis, or similar

  
  


• 
  

  Advanced understanding of digital communications and Information Technology standards and security trends

  
  


• 
  

  A penchant for documenting established processes and procedures in order to add a level of consistency to an ad-hoc, chaotic environment

  
  


• 
  

  Inquisitive, analytical, imaginative, intelligent, strategic, logical, self-aware, curious, and open-minded

  
  


• 
  

  Desire to learn and grow your skills while working with a diverse team

  
  


• 
  

   Ability to educate and train others

  
  


• 
  

  Strong communications skills in order to foster and support effective partnerships with key groups, stakeholders, and individuals

  
  


• 
  

  Ability to effectively communicate – specifically, threats, vulnerabilities, and risks to key clientele who may not initially understand the security discipline

  
  

Qualifications

Musts

• 
  

  Familiarity with -but not a reliance upon- the tools and scripts in pentesting collections like Kali

  
  


• 
  

  A demonstrated ability to create consistent customer consumable reports 

  
  


• 
  

  Familiarity with the MITRE ATT&CK framework and mapping techniques and procedures to defensive operations

  
  


• 
  

  Experience with application security testing tools such as Burp Suite, Dradis, Metasploit, etc.

  
  


• 
  

  A good understanding of containerization technologies and high comfort level running applications as Docker containers or in a Kubernetes cluster environment

  
  


• 
  

  Understanding and identification of the OWASP Top 10 vulnerabilities

  
  

Preferred

• 
  

  Knowledge of Secure SDLC frameworks

  
  


• 
  

  Experience with DAST and SAST technologies

  
  


• 
  

  Experience with deploying or managing workloads in AWS 

  
  


• 
  

  Experience in performing Purple Team engagements

  
  


• 
  

  Experience on the Blue Team side of information security

  
  


• 
  

  Experience in IT operations

  
  


• 
  

  Security certifications such as GWAPT, Offensive Security, CISSP, CISM or GIAC

  
  

Pure creates opportunities for your development and career growth. 

At Pure, we believe that each Puritan is a leader contributing to the success of our business, regardless of role. We offer an assortment of learning options available to all Puritans, including workshops on leadership, management, career development and more! We’re here to change the world and we hope you join us!  

Popular Perks 

Pure offers an unlimited vacation policy, free lunches, meditation rooms, free yoga classes and employee resource groups, such as Pure Equality and Pure Vets, to encourage all of our employees to maintain mind and body wellness. We offer numerous volunteer opportunities for employees to give back not only to the Bay Area, but across the globe. 

https://hrportal.ehr.com/pure/US/What-To-Do-When/Life-Events/Joining-Pure-Candidates 

The annual base salary range is: $167,000-$251,000. Salary ranges are determined based on role, level and location. For positions open to candidates in multiple geographical locations, the base salary range is reflective of the labor market across the applicable locations. This role may be eligible for incentive pay and/or equity. And because we understand the value of bringing your full and best self to work, we offer a variety of perks to manage a healthy balance, including flexible time off, wellness resources, and company-sponsored team events - check out purebenefits.com for more information. 

#LI-UT1