Senior Security Engineer - Red Team (Remote)

InsiderOne LLC

Job Overview

Location

Istanbul, Turkiye

Job Type

Full-time

Full Job Description

📋 Description

• Join Insider One—Turkey’s fastest-growing SaaS unicorn and the world’s #1 unified marketing & customer-engagement platform—as a Senior Security Engineer – Red Team and become the human edge that protects 2.2 billion daily requests and 2 billion instant notifications. You will operate at cloud scale, simulating nation-state-level attacks against a micro-service mesh that spans 450 servers, 100 TB of historical data, and the digital lives of 25 % of global internet users.
• Own the complete red-team lifecycle: from scoping and threat-modeling to stealthy exploitation, post-exploitation persistence, and purple-team debriefs. You will design advanced adversary-emulation campaigns that target web, mobile, and API surfaces, ensuring that Fortune-500 brands such as Samsung, Nike, and Sephora can trust Insider One with their most sensitive customer data.
• Perform deep-dive penetration tests on React SPAs, REST/GraphQL APIs, mobile SDKs, and internal Go micro-services. You will chain low-severity bugs into high-impact attack narratives, craft reproducible proof-of-concepts, and translate technical risk into executive-ready business impact statements that influence board-level decisions.
• Conduct targeted source-code reviews using SAST suites (Fortify, Checkmarx, Veracode) and manual analysis to uncover logic flaws, cryptographic misconfigurations, and broken authorization before code ever reaches production. You will embed security gates into our GitHub Actions–based SDLC and coach 200+ engineers on secure-coding best practices through pair-programming and threat-modeling workshops.
• Research and weaponize emerging attack vectors—cloud container escape techniques, AI prompt-injection, server-side request forgery on GraphQL, and OAuth token replay—inside isolated Kubernetes labs. Your findings will feed our threat-intel pipeline and directly shape the quarterly security roadmap for a platform trusted by 1,200 enterprise customers.
• Build and maintain a continuous red-team infrastructure: containerized attack labs, Cobalt-Strike-compatible C2 frameworks, phishing portals, and adversary-emulation playbooks fully automated via Python, Go, or Bash. You will treat infrastructure as code, ensuring every campaign is version-controlled, repeatable, measurable, and compliant with ISO 27001 and SOC 2 Type II controls.
• Collaborate with blue-team defenders on joint purple-team exercises, sharing TTPs, tuning detections, and validating 500+ SIEM rules in Splunk and Datadog. Your insights will close the feedback loop, turning red-team lessons into measurable improvements in mean time to detect (MTTD) and mean time to respond (MTTR).
• Deliver hands-on secure-coding workshops for QA and Development teams, translating OWASP Top 10 theory into practical labs. You will create bite-sized micro-learning modules, host lunch-and-learn red-team demos, and champion a culture where security is everyone’s responsibility.
• Support incident-response escalations when critical vulnerabilities are discovered in the wild. You will act as a technical lead, coordinating containment, eradication, and recovery efforts while communicating transparently with customers and internal stakeholders.
• Maintain meticulous documentation: threat-model diagrams, campaign playbooks, vulnerability write-ups, and remediation guides published in our internal knowledge base. Your artifacts will become the gold standard for security excellence across 30 global offices.
• Stay plugged into the global security community: present at Insider DevTalks, contribute to open-source tooling, and mentor junior security engineers. You will represent Insider One at conferences, CTFs, and bug-bounty programs, amplifying our reputation as a security-first organization.

🎯 Requirements

• 5+ years of offensive-security experience with proven red-team or advanced penetration-testing engagements against cloud-native architectures
• Hands-on mastery of modern attack frameworks (Cobalt Strike, BloodHound, Mythic, Caldera) and the ability to write custom implants in Python, Go, or Rust
• Deep understanding of AWS, Kubernetes, and micro-service security, including container escape, IAM privilege escalation, and service-mesh exploitation
• Strong knowledge of web and mobile security (OWASP Top 10, GraphQL abuse, OAuth/JWT weaknesses, iOS/Android jailbreak techniques)
• Experience integrating security into CI/CD pipelines (GitHub Actions, Terraform, Helm) and automating adversary-emulation workflows with Infrastructure-as-Code
• Excellent written and verbal communication skills in English; Turkish fluency is a plus for local stakeholder engagement

🏖️ Benefits

• Fully remote-first culture with flexible hours and quarterly on-site gatherings in Istanbul or global hubs
• Competitive salary plus equity in a billion-dollar SaaS unicorn with a clear IPO trajectory
• Annual training & conference budget (Black Hat, DEF CON, local B-Sides) and dedicated time for open-source contributions
• Premium private health insurance, mental-wellness stipend, and family-care support across Turkey and EMEA
• 30 days paid vacation, birthday leave, and a quarterly recharge week when the entire company powers down

Skills & Technologies

Python

React

Kubernetes

GitHub

Senior

Onsite

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

InsiderOne LLC

Visit Website

About InsiderOne LLC

InsiderOne LLC is a data-driven intelligence platform that aggregates and analyzes consumer, market, and competitive information to help businesses make faster strategic decisions. By combining proprietary data sources, AI analytics, and expert verification, it delivers real-time dashboards, alerts, and reports for product, marketing, and investment teams across retail, technology, and finance sectors.

View Company Profile