Life at MX
We are driven by our moral imperative to advance mankind - and it all starts with our people, product and purpose. We always carry a deep sense of drive and passion with us. If you thrive in a challenging work environment, surrounded by incredible team members who will help you grow, MX is the right place for you. Come build with us and be part of an award-winning company that s helping create meaningful and lasting change in the financial industry.
Job Summary
MX Technology, Inc. is a dynamic and rapidly growing financial company committed to helping to empower the world to be financially strong. Our team is passionate about driving innovation and achieving excellence in everything we do. We are seeking a highly motivated and versatile Offensive Application Security Engineer to join our team and contribute to our continued success.
The Offensive Security Engineer will lead our Offensive Security program, focused on running penetration testing, red teams, and purple teams. The engineer will be responsible for performing various types of assessments, including but not limited to internet, intranet, wireless, web application penetration testing, mobile application penetration testing, in addition to threat modeling and source code reviews.
Job Description:
-
Perform penetration testing to identify and exploit security vulnerabilities affecting MXs assets
-
Lead and execute complex third party Red Team engagements, simulating real-world attacker scenarios to uncover critical vulnerabilities across our network and applications
-
Execute red and purple team exercises to highlight gaps in our security posture
-
Understand the risk of identified vulnerabilities given likelihood and impact of exploitation.
-
Clearly communicate findings to internal stakeholders including technical staff and senior leadership
-
Partner with engineering and technical teams to develop remediation plans and track completion.
-
Participate in knowledge sharing by mentoring junior team members and presenting findings, including opportunities to present at external conferences.
Must Haves :
-
Bachelors Degree or higher in information security technology, Computer Science or related technical discipline
-
Deep understanding of attack surfaces, including hands-on experience with various Cybersecurity technologies and standards (MITRE ATT&CK framework)
-
A minimum of 5 years of work experience in penetration testing, scripting languages (Python, PowerShell, Java, Perl), and offensive tools
-
Hands on experience with testing frameworks such as the PTES and OWASP
-
Experience with responsible disclosure and publicly reported CVEs.
-
Experience in using C2s and developing and deploying custom C2 and implants.
-
Updated and familiarized with the latest exploits and security trends
-
Applicable knowledge of Windows client/server, Unix/Linux systems, Mac OS, and cloud technologies such as AWS and Google Cloud
-
Excellent writing and communication skills, attention to detail, and critical thinking skills
-
Extensive experience conveying complex data in simple, concise language
Work Environment
In this role, a significant aspect of the job involves working in the office for a standard 40-hour workweek. We believe that the collaborative nature of our work and the face-to-face interactions among team members are essential for fostering a dynamic and productive work environment. Being present in the office enables seamless communication, facilitates quick decision-making, and encourages spontaneous collaboration that contributes to the overall success of our projects. We value the synergy that comes from having our team members physically together, allowing for immediate problem-solving, idea exchange, and team building.
Compensation
The expected earnings for this role could be comprised of a base salary and other forms of cash compensation, such as bonus or commissions as applicable.
This pay range is just one component of MXs total rewards package. MX takes a number of factors into account when determining individual starting pay, including job and level they are hired into, location, skillset, peer compensation.
**Please note applicants applying for this position must have the legal right to work in India without the need for sponsorship. We are unable to provide work sponsorship for this role, and candidates should be able to verify their eligibility to work in the country independently. Proof of eligibility to work in India will be required as part of the hiring process.
Work Environment
In this role, a significant aspect of the job involves working in the office for a standard 40-hour workweek. We believe that the collaborative nature of our work and the face-to-face interactions among team members are essential for fostering a dynamic and productive work environment. Being present in the office enables seamless communication, facilitates quick decision-making, and encourages spontaneous collaboration that contributes to the overall success of our projects. We value the synergy that comes from having our team members physically together, allowing for immediate problem-solving, idea exchange, and team building.
Compensation
The expected earnings for this role could be comprised of a base salary and other forms of cash compensation, such as bonus or commissions as applicable.
This pay range is just one component of MX s total rewards package. MX takes a number of factors into account when determining individual starting pay, including job and level they are hired into, location, skillset, peer compensation.
**Please note applicants applying for this position must have the legal right to work in India without the need for sponsorship. We are unable to provide work sponsorship for this role, and candidates should be able to verify their eligibility to work in the country independently. Proof of eligibility to work in India will be required as part of the hiring process.
