Senior Security Engineer focusing on offensive and defensive security at Menlo Security. Conducting penetration testing and ensuring cloud architecture security in multi-cloud environments.
Responsibilities
Collaborative Penetration Testing (AWS & GCP): Work in tandem with a peer pentester to conduct deep-dive penetration tests of our products across our multi-cloud environment.
Control Plane: Review IAM policies, service configurations, and cloud-native permission structures.
Data Plane & Web UI: Execute dynamic testing against web interfaces and API endpoints.
Infrastructure Review: Assess the security posture of a hybrid infrastructure that mixes containers and Virtual Machines (VMs) infrastructures.
AI-Augmented Security Assessments: Actively utilize AI and Large Language Models (LLMs) to automate reconnaissance, generate attack vectors, analyze configurations, and draft vulnerability reports.
Pipeline Management: Monitor bug bounty pipelines and external reports, validating findings and managing researcher communication.
Requirements
Multi-Cloud Fluency: Demonstrate a deep architectural understanding of GCP and AWS.
Container Security: Proven experience auditing and hardening managed container services (GKE Autopilot/Standard, EKS, ECS) and self-hosted/unmanaged workloads (K8s, k3s, OCI-runc).
AI Tooling: Demonstrated ability to integrate AI/LLM tools (e.g., Gemini, Claude) into the pentesting lifecycle to increase speed and coverage.
Web Application Security: Expert-level knowledge of web application security principles and offensive testing methodologies, with deep proficiency in OWASP Top 10 vulnerabilities, modern web framework exploitation, and API security (REST, WebSockets). Extensive hands-on experience conducting manual security assessments using Burp Suite Professional, OWASP ZAP, or similar tooling.
Security Automation: Proficiency in Python, Go, or Bash to eliminate "toil."
Infrastructure as Code: Solid grasp of Terraform and cloud-native deployment patterns.
Benefits
All employees may be eligible to become Menlo Security shareholders through eligibility for stock-based compensation grants, which are awarded to employees based on company and individual performance.
Data Platform QA Engineer ensuring quality, reliability, and integrity for Tecsys's cloud - based data platform built on Databricks and AWS. Collaborating closely with Data Platform Developers and Product Owners in Agile environments.
QA Analyst responsible for validating software quality at Toon Boom, leading end - to - end testing and troubleshooting for high - performance applications.
QA Analyst ensuring quality, stability, and reliability of Jesta's cloud - based ERP platform. Collaborating with teams and improving quality practices through manual and automated testing.
Field Quality Inspector ensuring quality control in electrical projects across Western Canada. Collaborating with project teams and managing documentation in a fast - paced environment.
We are hiring a QA Lead to drive end - to - end testing strategies and lead enterprise - scale QA initiatives in a regulated Insurance/BFSI environment.
Lead QA for a multi - phase Salesforce program, defining test frameworks and executing functional, regression, integration, and end - to - end tests. Collaborate with stakeholders to manage defects, support UAT, and advance test automation and QA governance.
Journeyman Electrician Tester ensuring HVAC units pass functional tests, requires Alberta certification. Committed to safety and operates within team or individually during night shifts.
QA Test Developer maintaining and growing automation frameworks at ZayZoon's fintech platform. Collaborating on quality assurance for web and mobile applications to enhance employee financial wellness.
Senior QA Engineer ensuring quality across a data - heavy B2B product. Shaping test strategies and verifying correctness from UI to database integrations.
Senior Software Quality Engineer at Sun Life providing quality assurance in software solutions. Collaborating with teams to implement effective testing strategies and AI approaches.