2

Offensive Security Engineer Remote Jobs in Ohio (NOW HIRING)

Senior Security Engineer

Cincinnati, OH · On-site +1

$109K - $150K/yr

REMOTE - Cincinnati, Charlotte, Boca, Portland, San Jose, Chicago TOP SKILLS: Top 3 Required Skills: Experience managing data protection and security controls in MS O365 (SharePoint, OneDrive, Teams ...

The Principal Network Security Engineer provides technical and engineering expertise for the ... Remote roles will also have the opportunity to come together in our offices for moments that matter.

The Principal Network Security Engineer provides technical and engineering expertise for the ... Remote roles will also have the opportunity to come together in our offices for moments that matter.

Aug 3, 2026 Vulnerability Management Engineer Remote $92 / hourly as W2 About the Role Join our ... Act as the bridge between security and engineering. Guide technology owners through routing ...

next page

Showing results 1-20

Offensive Security Engineer Remote information

What is the difference between Offensive Security Engineer Remote vs Penetration Tester?

AspectOffensive Security Engineer RemotePenetration Tester
CertificationsOSCP, OSWE, CEHOSCP, CEH, GPEN
Work EnvironmentRemote, collaborative security teamsOften client-site or remote assessments
Industry UsageSecurity teams, cybersecurity firmsConsulting firms, security assessments
Search & Comparison IntentUnderstanding roles, skills, and remote opportunitiesJob scope, certifications, and remote work options

Offensive Security Engineer Remote and Penetration Tester roles share overlapping skills and certifications like OSCP and CEH. However, Offensive Security Engineers typically work within security teams on ongoing security infrastructure, often remotely, focusing on offensive security strategies. Penetration Testers usually perform specific security assessments, sometimes on-site, and may have a broader consulting focus. Both roles are vital in cybersecurity but differ in scope and work environment.

What are the key skills and qualifications needed to thrive as an Offensive Security Engineer (Remote), and why are they important?

To thrive as an Offensive Security Engineer (Remote), you need strong expertise in penetration testing, vulnerability assessment, and cybersecurity principles, often supported by a degree in computer science or a related field. Familiarity with tools like Metasploit, Burp Suite, and Kali Linux, as well as certifications such as OSCP or CEH, is typically required. Attention to detail, problem-solving skills, and effective written communication are critical soft skills for success in this role. These abilities are essential for identifying vulnerabilities, reporting findings clearly, and helping organizations strengthen their security posture against evolving threats.

What are some common challenges faced by remote Offensive Security Engineers, and how can they be addressed?

Remote Offensive Security Engineers often face challenges such as coordinating effectively with geographically dispersed teams, maintaining secure access to sensitive systems, and staying updated on rapidly evolving threat landscapes. Overcoming these hurdles typically involves strong communication skills, leveraging secure collaboration tools, and establishing regular check-ins with colleagues. Additionally, continuous learning through online resources and industry forums is vital to remain effective and proactive in identifying and addressing security vulnerabilities.

What does an Offensive Security Engineer do, especially when working remotely?

An Offensive Security Engineer is responsible for proactively identifying and mitigating security vulnerabilities in an organization’s systems, networks, and applications. Working remotely, they perform penetration testing, vulnerability assessments, and simulated cyberattacks to discover weaknesses before malicious actors can exploit them. They also provide detailed reports and recommendations to help organizations improve their overall security posture. Remote Offensive Security Engineers use a variety of tools and collaborate with other security professionals to ensure effective communication and secure operations across distributed environments.
What are the most commonly searched types of Offensive Security Engineer jobs in Ohio? The most popular types of Offensive Security Engineer jobs in Ohio are:
What are popular job titles related to Offensive Security Engineer Remote jobs in Ohio? For Offensive Security Engineer Remote jobs in Ohio, the most frequently searched job titles are:
What job categories do people searching Offensive Security Engineer Remote jobs in Ohio look for? The top searched job categories for Offensive Security Engineer Remote jobs in Ohio are:
What cities in Ohio are hiring for Offensive Security Engineer Remote jobs? Cities in Ohio with the most Offensive Security Engineer Remote job openings:
Infographic showing various Offensive Security Engineer Remote job openings in Ohio as of July 2026, with employment types broken down into 91% Full Time, 7% Part Time, and 2% Contract. Highlights an 87% Physical, 4% Hybrid, and 9% Remote job distribution.
Application Security & Remediation Engineer

Application Security & Remediation Engineer

Aquent

Canton, OH • On-site, Remote

$90 - $92/hr

Temporary

Posted 13 days ago


Job description

Placement Type:
Temporary
Salary:
$90-92 Hourly
$92 / hourly as W2
Start Date:
Aug 3, 2026
Application Security & Remediation Engineer
Remote
$92 / hourly
As an Application Security & Remediation Engineer on our Attack & Pentest team, you will bridge the gap between offensive security discovery and defensive engineering. You won't just find vulnerabilities; you will own the critical process of validating exploitability, calculating real-world business risk, and collaborating directly with engineering teams to ensure effective remediation.
This is a highly technical, hands-on role perfect for an offensive security professional who wants to maximize their impact by ensuring vulnerabilities are not just documented, but permanently resolved.
Core Responsibilities
  • Advanced Triage & Exploitation: Review, validate, and replicate incoming vulnerability reports (including internal testing, automated tooling, and crowdsourced programs). Assess severity and business impact, and build clear proof-of-concept (PoC) reproductions.
  • Remediation Consultation: Partner closely with application security, DevOps, and engineering teams to provide clear, actionable remediation guidance and architectural context.
  • Targeted Retesting: Perform manual and automated validation testing of remediated applications and infrastructure to verify that code fixes are robust and complete.
  • Vulnerability Orchestration: Monitor remediation timelines against organizational SLAs, coordinate with development squads to unblock complex fixes, and escalate systemic risks when necessary.
  • Data & Metrics: Maintain high-fidelity records within our vulnerability management ecosystem and contribute to executive-level metrics regarding corporate risk posture.
  • Strategic Process Improvement: Identify patterns in recurring vulnerabilities to recommend systemic guardrails, CI/CD tooling enhancements, or developer training initiatives to eliminate bug classes at the source.
Required Qualifications
  • Experience: 3+ years of hands-on experience in offensive security, penetration testing, or technical application security engineering (web apps, APIs, cloud-native infrastructure).
  • Triage Mastery: Proven experience analyzing and prioritizing vulnerabilities at scale using framework methodologies (CVSS, CWE, OWASP Top 10).
  • Technical Communication: Exceptional ability to write reproducible PoCs and translate complex cryptographic, logic, or code flaws into clear remediation steps for developers.
  • Ecosystem Knowledge: Deep understanding of modern SDLC practices, Git-based workflows, and how security testing integrates into the development lifecycle.
  • Tools: Proficient with core offensive testing tooling (e.g., Burp Suite Pro, Caido, Nuclei) and familiarity with ticketing/vulnerability management platforms (e.g., Jira, DefectDojo).
Preferred Qualifications
  • Certifications: OSCP, GWAPT, GPEN, BSCP, or equivalent practical offensive security certifications.
  • Automation: Scripting capabilities (Python, Bash, Go) to automate routine validation and retesting workflows.
  • Cloud & Modern Infrastructure: Foundational security knowledge of cloud environments (AWS/Azure/GCP) and containerized environments (Kubernetes/Docker).
  • Industry Experience: Familiarity with securing highly regulated environments (e.g., financial services, healthcare) and handling bug bounty programs