Senior Engineer, Offensive Security

📋 Description

• • As a Senior Engineer, Offensive Security at Twilio Inc., you will be at the forefront of safeguarding our cutting-edge communication platforms and services. This role is critical in proactively identifying and mitigating security vulnerabilities before they can be exploited, ensuring the integrity and confidentiality of our systems and customer data.
• • You will be responsible for the day-to-day execution of comprehensive penetration tests, moving beyond automated scanning to perform in-depth manual exploitation of complex systems. Your expertise will extend to contributing to larger, more sophisticated Red Team campaigns, simulating real-world adversaries to test our defenses.
• • A key aspect of this role involves performing full-stack penetration testing across a variety of technologies, including web applications, APIs, and mobile applications (iOS/Android). You will meticulously analyze these components for security weaknesses, employing both manual techniques and leveraging automated tools.
• • You will conduct internal and external network audits, assessing the security posture of our network infrastructure and cloud environments (AWS, Azure, Kubernetes) using a diverse set of security tooling. This includes identifying misconfigurations, particularly in IAM roles, and testing for vulnerabilities like container escapes.
• • A significant responsibility will be the triage and validation of vulnerabilities reported through automated scanners and bug bounty programs. You will be adept at distinguishing between false positives and genuine threats, escalating critical findings to the appropriate teams for swift remediation.
• • In this role, you will also engage with emerging technologies by performing initial prompt injection and jailbreak tests on AI prototypes, services, and applications. You will utilize established checklists, such as the OWASP Top 10 for LLMs, to assess the security of these advanced systems.
• • You will be tasked with drafting high-quality, detailed technical reports. These reports will clearly articulate the "path to compromise," providing developers with precise, reproducible steps to understand and fix identified vulnerabilities.
• • Maintaining and updating the team's testing infrastructure is crucial. This includes managing and configuring essential tools like Burp Suite Professional and setting up basic command-and-control (C2) listeners to support offensive operations.
• • You will provide direct, hands-on technical guidance to engineering teams, assisting them in patching and remediating vulnerabilities such as Cross-Site Scripting (XSS), SQL Injection (SQLi), and Insecure Direct Object References (IDOR).
• • A core part of your contribution will be designing and leading multi-week Red Team operations. These operations will meticulously mimic the tactics, techniques, and procedures (TTPs) of specific Advanced Persistent Threats (APTs) to rigorously test the detection and response capabilities of our Security Incident Response Team (SIRT).
• • You will develop custom payloads, droppers, and obfuscated scripts designed to bypass Endpoint Detection and Response (EDR) and Antivirus (AV) solutions, ensuring stealthy and effective testing.
• • Furthermore, you will architect and build automated testing frameworks for AI systems. This involves utilizing tools like PyRIT, Promptfoo, or Garak to systematically test AI models for vulnerabilities related to sensitive data leakage and other adversarial attacks.
• • You will collaborate closely with the SIRT and Detection Engineering teams in purple teaming exercises. This collaboration aims to fine-tune SIEM alerts and detection rules based on the techniques observed during offensive engagements, enhancing our overall security monitoring.
• • You will play a strategic role in overseeing Twilio's bug bounty program. This includes analyzing submission trends to identify recurring security issues and providing recommendations for broad architectural security improvements across the organization.
• • This role offers a unique opportunity to work in a remote-first environment, contributing to a global team that is shaping the future of communications. You will be empowered to make a significant impact on Twilio's security posture while growing your career in a dynamic and innovative company.