Multi Media, LLC

Senior Offensive Security Engineer

Multi Media, LLC

full-time

Posted on:

Origin:  • 🇺🇸 United States

Visit company website
AI Apply
Manual Apply

Salary

💰 $154,928 - $179,872 per year

Job Level

Senior

Tech Stack

AWSCloudDjangoGoGoogle Cloud PlatformKubernetesPostgresPython

About the role

  • Multi Media, LLC is looking for an experienced Senior Offensive Security Engineer to join our growing Security team. In this role, you’ll lead red team operations across our technology stack, from cloud infrastructure and Kubernetes to CI/CD pipelines, APIs, and beyond. Your mission is to act as a realistic threat actor, constantly simulating and challenging our defenses. You’ll partner closely with our blue team and engineering to turn findings into improved detections and preventative controls, creating a tight feedback loop that makes us more resilient.
  • You’ll be a hands-on offensive security engineer who thrives on challenging assumptions and breaking systems in controlled ways. As a core member of our offensive security team, you'll lead red teaming and penetration testing exercises across our entire environment. Your work will go beyond traditional hacking, starting with threat modeling our systems to identify potential attack vectors and then simulating realistic attack scenarios against our GCP infrastructure, CI/CD pipelines, and emerging technologies like AI and agentic systems to stay ahead of real-world threats. If you're a creative problem-solver who enjoys helping blue teams sharpen their skills and empowering engineers to build more secure products, this role is for you.
  • Lead red team operations and penetration tests across our full stack: from cloud infrastructure (GCP), Kubernetes, and CI/CD pipelines to internal applications, databases, and APIs.
  • Develop and execute creative attack scenarios to proactively find vulnerabilities in our systems and identify new attack paths.
  • Proactively red team our AI and machine learning systems, including testing for prompt injection, data poisoning, model evasion, and other adversarial machine learning attacks.
  • Partner with the blue team to conduct purple team exercises, using findings to directly improve detection coverage, incident response playbooks and SOAR automation, and overall security posture.
  • Identify and exploit vulnerabilities in emerging areas to help shape how we test and secure new technologies.
  • Provide detailed reporting of vulnerabilities, attack paths, and remediation recommendations to engineering and leadership teams.
  • Mentor other engineers on offensive security practices and partner with detection teams to ensure findings directly improve monitoring and defense capabilities.

Requirements

  • Bachelor's degree or equivalent practical experience.
  • 5+ years of experience in offensive security, penetration testing, or red team operations.
  • Proven success conducting red team engagements against cloud infrastructure (GCP, AWS) and Kubernetes environments.
  • Deep, hands-on experience in full-stack penetration testing, including web applications (Django), databases (PostgreSQL), cloud infrastructure (GCP), and CI/CD pipelines.
  • Ability to identify and exploit vulnerabilities to gain access to sensitive systems (e.g., repos, staff tools, data stores).
  • Strong scripting/programming experience for exploit development and automation (Python, Go).
  • Excellent communication skills, with the ability to explain vulnerabilities and risks to both technical and non-technical audiences.
  • A proactive, curious mindset with a reputation for creative problem-solving.