... analytics, and incident response playbooks based on threat emulation outcomes • Validates ... and offensive security tooling • Contributes to the development of red team methodologies ...
... analytics, and incident response playbooks based on threat emulation outcomes • Validates ... and offensive security tooling • Contributes to the development of red team methodologies ...
You'll develop innovative offensive cyber capabilities that help protect the nation and the world ... analyzing and troubleshooting complex computer networks. Ideally you'll have experience with ...
You'll develop innovative offensive cyber capabilities that help protect the nation and the world ... analyzing and troubleshooting complex computer networks. Ideally you'll have experience with ...
You'll develop innovative offensive cyber capabilities that help protect the nation and the world ... analyzing and troubleshooting complex computer networks. Ideally you'll have experience with ...
You'll develop innovative offensive cyber capabilities that help protect the nation and the world ... analyzing and troubleshooting complex computer networks. Ideally you'll have experience with ...
Director - Offensive Security - Red Team
$168K - $264K/yr
FICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 100 ... The Opportunity As Director of Offensive Security, you will serve as a strategic leader shaping ...
Director - Offensive Security - Red Team
$168K - $264K/yr
FICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 100 ... The Opportunity As Director of Offensive Security, you will serve as a strategic leader shaping ...
... analysis briefings • Maintain strict operational security (OPSEC) and mission compliance ... supporting offensive cyber or exploitation missions • Demonstrated experience with exploit ...
... analysis briefings • Maintain strict operational security (OPSEC) and mission compliance ... supporting offensive cyber or exploitation missions • Demonstrated experience with exploit ...
Be Seen First
Senior Penetration Tester / Offensive Security Analyst
Dallas, TX · Remote
$45 - $47/hr
Senior Penetration Tester / Offensive Security Analyst Location: Remote Contract: 6+ Months & Extendable Pay rate - $47/hr on W2/Danta Technologies payroll (OR) $55/hr on C2C Client is looking for a ...
New
Quick apply
Be Seen First
Senior Penetration Tester / Offensive Security Analyst
Dallas, TX · Remote
$45 - $47/hr
Senior Penetration Tester / Offensive Security Analyst Location: Remote Contract: 6+ Months & Extendable Pay rate - $47/hr on W2/Danta Technologies payroll (OR) $55/hr on C2C Client is looking for a ...
New
Dive into exciting opportunities in Cybersecurity, IT, Data Analytics and more. Propel your career ... This position is offensive in nature and works closely with government officials and senior ...
Dive into exciting opportunities in Cybersecurity, IT, Data Analytics and more. Propel your career ... This position is offensive in nature and works closely with government officials and senior ...
Senior Offensive Security Engineer
San Francisco, CA · Hybrid
$134K - $185K/yr
The ideal candidate will be an offensive cybersecurity professional with a passion for analyzing codebases, testing hypotheses, and designing tools to impact web applications and their infrastructure.
Senior Offensive Security Engineer
San Francisco, CA · Hybrid
$134K - $185K/yr
The ideal candidate will be an offensive cybersecurity professional with a passion for analyzing codebases, testing hypotheses, and designing tools to impact web applications and their infrastructure.
Senior Security Engineer, Offensive Security
New York, NY · Hybrid
$125K - $171K/yr
Improve the efficiency of offensive operations through thoughtful use of automation and AI, accelerating reconnaissance, vulnerability analysis, and reporting workflows * Partner with the Detection ...
Senior Security Engineer, Offensive Security
New York, NY · Hybrid
$125K - $171K/yr
Improve the efficiency of offensive operations through thoughtful use of automation and AI, accelerating reconnaissance, vulnerability analysis, and reporting workflows * Partner with the Detection ...
Senior Specialist - Offensive Security
Maple Grove, MN · On-site +1
$130K - $160K/yr
You could be on the front lines of our offensive security team, simulating real-world attacks to ... Agile thinking and analysis that lead to win-win and innovative solutions * Strong written and ...
Senior Specialist - Offensive Security
Maple Grove, MN · On-site +1
$130K - $160K/yr
You could be on the front lines of our offensive security team, simulating real-world attacks to ... Agile thinking and analysis that lead to win-win and innovative solutions * Strong written and ...
Senior Specialist - Offensive Security
Maple Grove, MN · Remote
$130K - $160K/yr
You could be on the front lines of our offensive security team, simulating real-world attacks to ... Agile thinking and analysis that lead to win-win and innovative solutions * Strong written and ...
Senior Specialist - Offensive Security
Maple Grove, MN · Remote
$130K - $160K/yr
You could be on the front lines of our offensive security team, simulating real-world attacks to ... Agile thinking and analysis that lead to win-win and innovative solutions * Strong written and ...
... analysis, and decision-making, accelerating discovery and driving faster innovation. The Position ... You will build and run a standing offensive capability thatoperatesagainst production with ...
... analysis, and decision-making, accelerating discovery and driving faster innovation. The Position ... You will build and run a standing offensive capability thatoperatesagainst production with ...
The Assistant Football Coach Offensive Line will assist the head coach in organization, planning ... Video Analysis of play execution/ game strategy * Compliance education * Budget management
Quick apply
The Assistant Football Coach Offensive Line will assist the head coach in organization, planning ... Video Analysis of play execution/ game strategy * Compliance education * Budget management
... analysis, and/or dynamic interception. You must be comfortable owning systems end to end and ... Experience with vulnerability research, CTF, or offensive security * Engineering experience at xAI ...
... analysis, and/or dynamic interception. You must be comfortable owning systems end to end and ... Experience with vulnerability research, CTF, or offensive security * Engineering experience at xAI ...
The Assistant Football Coach Offensive Line will assist the head coach in organization, planning ... Video Analysis of play execution/ game strategy * Compliance education * Budget management
The Assistant Football Coach Offensive Line will assist the head coach in organization, planning ... Video Analysis of play execution/ game strategy * Compliance education * Budget management
Director of Offensive Security
Dallas, TX · On-site
... analysis, and decision-making, accelerating discovery and driving faster innovation. The Position ... You will build and run a standing offensive capability that operates against production with ...
Director of Offensive Security
Dallas, TX · On-site
... analysis, and decision-making, accelerating discovery and driving faster innovation. The Position ... You will build and run a standing offensive capability that operates against production with ...
... Analyze adversary systems, applications, and network architectures to enable exploitation • ... supporting offensive cyber operations • Stay current on emerging exploitation techniques ...
... Analyze adversary systems, applications, and network architectures to enable exploitation • ... supporting offensive cyber operations • Stay current on emerging exploitation techniques ...
The Assistant Football Coach Offensive Line will assist the head coach in organization, planning ... Video Analysis of play execution/ game strategy * Compliance education * Budget management
The Assistant Football Coach Offensive Line will assist the head coach in organization, planning ... Video Analysis of play execution/ game strategy * Compliance education * Budget management
Sr. Offensive Security Engineer
San Francisco, CA · On-site
$138K - $184K/yr
... an offensive security engineering mindset to join us as a Senior Offensive Security Engineer ... Conduct root-cause analysis and digital forensics post-incident to reconstruct attacker timelines ...
Sr. Offensive Security Engineer
San Francisco, CA · On-site
$138K - $184K/yr
... an offensive security engineering mindset to join us as a Senior Offensive Security Engineer ... Conduct root-cause analysis and digital forensics post-incident to reconstruct attacker timelines ...
Performs manual application security testing, including deep-dive code-assisted analysis and ... Supports penetration testing and offensive security initiatives by providing application-layer ...
Performs manual application security testing, including deep-dive code-assisted analysis and ... Supports penetration testing and offensive security initiatives by providing application-layer ...
Offensive Analyst information
See salary details
$36.5K - $54K
24% of jobs
$54.5K is the 25th percentile. Wages below this are outliers.
$54K - $71.4K
16% of jobs
The median wage is $80.6K / yr.
$71.4K - $88.9K
18% of jobs
$104.8K is the 75th percentile. Wages above this are outliers.
$88.9K - $106.3K
18% of jobs
$106.3K - $123.8K
11% of jobs
$123.8K - $141.2K
4% of jobs
$141.2K - $158.7K
1% of jobs
$158.7K - $176.1K
1% of jobs
$176.1K - $193.6K
2% of jobs
$193.6K - $211K
2% of jobs
$211K - $228.5K
2% of jobs
$36.5K
$97.7K
$228.5K
How much do offensive analyst jobs pay per year?
What are some common challenges faced by Offensive Analysts when conducting penetration tests within organizations?
What is the difference between Offensive Analyst vs Defensive Analyst?
| Aspect | Offensive Analyst | Defensive Analyst |
|---|---|---|
| Credentials | Typically requires cybersecurity certifications like OSCP, CEH, or GIAC certifications | Similar certifications such as CISSP, GIAC certifications, or CEH are common |
| Work Environment | Engages in proactive testing, penetration testing, and simulating attacks to identify vulnerabilities | Focuses on monitoring, threat detection, and defending against cyber threats |
| Employer & Industry Usage | Used by cybersecurity firms, IT departments, and government agencies to identify security gaps | Commonly employed in security operations centers (SOCs) and enterprise security teams |
While both roles require cybersecurity knowledge and certifications, Offensive Analysts focus on simulating attacks to find vulnerabilities, whereas Defensive Analysts work to detect and prevent cyber threats. Both are essential for comprehensive cybersecurity strategies.
What is an Offensive Analyst?
What are the key skills and qualifications needed to thrive as an Offensive Analyst, and why are they important?

Job description
Central Hudson is seeking a diligent and experienced Offensive Security Engineer to join their team. This role involves conducting intelligence-led threat emulation and purple team exercises to simulate real-world adversaries and validate security controls, while partnering closely with various teams to enhance detection and response capabilities.
Responsibilities:
• Conducts targeted offensive testing activities in support of threat emulation and detection validation across networks, applications, cloud environments, and endpoints
• Executes intelligence‑driven threat emulation exercises that replicate real‑world adversaries, campaigns, and tactics, techniques, and procedures (TTPs)
• Performs vulnerability remediation testing to validate the effectiveness of fixes and compensating controls
• Maps emulated activity to MITRE ATT&CK techniques and track detection coverage and gaps
• Develops and maintains custom tools, scripts, and payloads to support testing activities
• Safely exercises adversary techniques to evaluate the effectiveness of security controls and detections
• Partners with blue team, SOC, and engineering teams to test detection and response capabilities
• Implements, maintains, and enhances red team tooling and infrastructure to support penetration testing, adversary emulation, and purple team exercises
• Leads and executes purple team exercises in close coordination with the SOC and Blue Team, sharing findings, techniques, and actionable recommendations to strengthen detection, response, and recovery capabilities
• Assists in tuning and validating security controls, alerts, analytics, and incident response playbooks based on threat emulation outcomes
• Validates security detections across SIEM, EDR, identity, and cloud platforms using repeatable and measurable testing scenarios
• Produces clear, actionable reports detailing emulated adversary behavior, detection gaps, response gaps, and prioritized remediation guidance
• Presents results to technical teams and leadership, translating technical risk into business terms
• Tracks remediation progress and re-test identified issues
• Stays current on emerging threats, adversary techniques, and offensive security tooling
• Contributes to the development of red team methodologies, frameworks, and documentation
• Supports threat intelligence–driven testing aligned with real-world attack trends
• Consumes and operationalizes threat intelligence to inform adversary selection, scenario design, and testing priorities
• Promotes and raises awareness by educating others about the importance of cybersecurity
• Builds relationships with government and local agencies to promote collaborative information sharing
• Stays updated with the latest cybersecurity trends, threats, and technologies
• Participates in on-call as needed to respond to security incidents outside of regular working hours
• Provides support for storm restoration efforts
Qualifications:
Required:
• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science or related field of study. In lieu of a bachelor’s degree, an associate degree in the aforementioned fields and 3 years of information security engineering or related experience or a high school diploma or equivalency degree and 5 years of information security engineering or related experience will be considered
• Strong knowledge of network, application, and cloud security, including operating systems (Windows and Linux)
• Working knowledge of common offensive security tools, including but not limited to: Metasploit, Cobalt Strike (or equivalents), Burp Suite, Nmap, BloodHound, and CrackMapExec
• Knowledge of vulnerability remediation testing and validating the effectiveness of security controls
• Demonstrated experience collaborating closely with SOC or Blue Team functions to improve detection and incident response maturity
• Ability to develop scripts or tools using Python, PowerShell, Bash, or C#
• Solid understanding of security operations and detection technologies, including SIEM, EDR, IDS/IPS, and endpoint protection, to support adversary‑emulation and purple‑team activities
• Familiarity with industry security frameworks and methodologies, such as: MITRE ATT&CK, NIST 800‑61 (Incident Response), SANS / CIS Critical Security Controls
• Strong analytical and problem‑solving skills with the ability to assess complex security issues
• Excellent written and verbal communication skills, including the ability to clearly document findings and communicate risk to both technical and non‑technical audiences
• Ability to work independently with minimal supervision and respond professionally to constructive feedback
• Ability to work nights, weekends, holidays during a critical cyber incident or event
• Valid driver’s license
Preferred:
• 3+ years of hands-on experience performing offensive security activities such as penetration testing, detection validation, adversary emulation, red teaming, or exploitation of applications, networks, and cloud environments
• Familiarity with evaluating security controls and risk exposure through an attacker’s lens, including validation of compensating controls and secure design assumptions
• Experience identifying security weaknesses through threat modeling, attack simulations, and exploitation, with the ability to translate findings into actionable remediation guidance
• Experience in Energy & Utilities or services industry
• Relevant certifications such CISSP, CEH, GPEN, GCIH, OSCP, OSWE, or similar offensive security focused credentials
Company:
Central Hudson Gas & Electric Corporation is a regulated transmission and distribution utility serving approximately 300,000 electric customers and 80,000 natural gas customers in New York State’s Mid-Hudson Valley. Founded in 1900, the company is headquartered in Poughkeepsie, USA, with a team of 501-1000 employees. The company is currently Late Stage.
About Central Hudson
Sourced by ZipRecruiter
Industry
Utilities
Company size
501 - 1,000 Employees
Headquarters location
Poughkeepsie, NY, US
Year founded
1900