1

Offensive Security Jobs (NOW HIRING)

As an Offensive Security Engineer at CoreWeave, you will lead efforts to identify and mitigate security risks across internal and external systems. You'll perform penetration testing, conduct threat ...

You will join a team working with world-class offensive security researchers. The work is critical directly shapes the security posture of Apple. You will conduct offensive research into AI-specific ...

AI Offensive Security Engineer

Austin, TX · On-site

$136K - $228K/yr

Role Overview eBay seeks an AI Offensive Security Engineer to proactively identify and exploit vulnerabilities in AI/ML systems before adversaries do. This is a hands-on technical role focused on ...

Senior Offensive Security Engineer

OR · On-site +1

$114K - $156K/yr

Are you an experienced Senior Offensive Security Engineer that wants to work with cutting-edge cybersecurity technologies and contribute to enhancing our overall security posture? At Ivanti, we work ...

Senior Offensive Security Engineer Reports to: Director, Product Security and Incident Response Location: Remote Compensation Range: $170,000.00 to $185,000.00 base plus bonus and equity What We Do:

Senior Offensive Security Engineer

$117K - $160K/yr

Are you an experienced Senior Offensive Security Engineer that wants to work with cutting-edge cybersecurity technologies and contribute to enhancing our overall security posture? At Ivanti, we work ...

Senior Offensive Security Engineer Reports to: Director, Product Security and Incident Response Location: Remote Compensation Range: $170,000.00 to $185,000.00 base plus bonus and equity What We Do:

You will own the offensive security strategy end-to-end, directing the emulation of sophisticated real-world adversaries to surface hidden risks, rigorously validate defensive controls, and deliver ...

Offensive Security Engineer

Tempe, AZ · On-site

$100K - $120K/yr

The Offensive Security Engineer is a hybrid role combining hands-on penetration testing, adversary simulation, and security engineering. This position is responsible for proactively identifying ...

next page

Showing results 1-20

Offensive Security information

See salary details

$57K

$133K

$186K

How much do offensive security jobs pay per year?

As of Jul 2, 2026, the average yearly pay for offensive security in the United States is $132,962.00, according to ZipRecruiter salary data. Most workers in this role earn between $111,000.00 and $150,000.00 per year, depending on experience, location, and employer.

What is an Offensive Security job?

An Offensive Security job involves proactively identifying and exploiting security vulnerabilities in systems, networks, and applications to help organizations strengthen their defenses. Professionals in this field, such as ethical hackers and penetration testers, simulate real-world cyberattacks to find weaknesses before malicious actors can exploit them. They use various tools, techniques, and frameworks to assess security risks, provide recommendations, and improve overall cybersecurity posture. Offensive security experts often work for security firms, enterprises, or government agencies to ensure robust digital protection.

What is the job description of offensive security?

Offensive security involves simulating cyberattacks to identify vulnerabilities in computer systems and networks. Professionals in this field perform penetration testing, exploit development, and vulnerability assessments using tools like Kali Linux and Metasploit, often holding certifications such as OSCP. The role requires strong knowledge of networking, security protocols, and programming skills to help organizations improve their defenses.

How much do offensive security specialists make?

Offensive security specialists, also known as penetration testers or ethical hackers, typically earn between $70,000 and $130,000 annually, depending on experience, certifications like OSCP or CEH, and the complexity of the security environment. Senior professionals with advanced skills and certifications can earn higher salaries, especially in high-demand industries or locations with a strong cybersecurity market.

What does a typical day look like for someone working in Offensive Security?

A typical day in Offensive Security involves conducting penetration tests, vulnerability assessments, and red teaming exercises to identify and exploit potential weaknesses in systems and networks. You may spend time analyzing findings, preparing detailed reports, and collaborating with IT teams to discuss remediation strategies. The role often requires staying current with emerging threats and tools, as well as participating in team meetings to review attack simulations or incident scenarios. Regular communication with clients or internal stakeholders is also common to explain technical concepts in an accessible way. The dynamic nature of the work keeps each day interesting and fosters continuous learning and problem-solving.

Can I make $200,000 a year in cyber security?

Offensive security professionals, such as penetration testers and ethical hackers, can potentially earn $200,000 or more annually with extensive experience, advanced certifications like OSCP or CISSP, and specialized skills in tools like Kali Linux and Metasploit. High salaries are often found in senior roles, consulting, or in organizations with complex security needs, but reaching this level typically requires years of expertise and a strong professional reputation.

Is 40 too old for cyber security?

Offensive security professionals can be successful at any age, as the field values skills, certifications, and experience over youth. Many individuals transition into cybersecurity later in life, bringing valuable problem-solving and analytical skills. Continuous learning and staying current with tools like penetration testing frameworks are important regardless of age.

What are the key skills and qualifications needed to thrive in the Offensive Security position, and why are they important?

To thrive as an Offensive Security professional, you need a deep understanding of networks, operating systems, penetration testing methodologies, and typically hold a degree in computer science or a related field. Familiarity with tools such as Metasploit, Burp Suite, Nmap, as well as certifications like OSCP or CEH, is often required. Strong analytical thinking, attention to detail, effective communication, and ethical judgment are essential soft skills. These abilities are crucial for identifying vulnerabilities, communicating risks, and helping organizations improve their security posture.

More about Offensive Security jobs
What cities are hiring for Offensive Security jobs? Cities with the most Offensive Security job openings:
What states have the most Offensive Security jobs? States with the most job openings for Offensive Security jobs include:
Infographic showing various Offensive Security job openings in the United States as of June 2026, with employment types broken down into 84% Full Time, 8% Part Time, and 8% Contract. Highlights an 67% In-person, and 33% Remote job distribution, with an average salary of $132,962 per year, or $63.9 per hour.
Offensive Security Engineer

Offensive Security Engineer

CoreWeave

Sunnyvale, CA

$165K - $242K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 17 days ago


Job description

CoreWeave is The Essential Cloud for AI™. Built for pioneers by pioneers, CoreWeave delivers a platform of technology, tools, and teams that enables innovators to build and scale AI with confidence. Trusted by leading AI labs, startups, and global enterprises, CoreWeave combines superior infrastructure performance with deep technical expertise to accelerate breakthroughs and turn compute into capability. Founded in 2017, CoreWeave became a publicly traded company (Nasdaq: CRWV) in March 2025. Learn more at www.coreweave.com.
What You'll Do:

CoreWeave's Information Security team ensures that both internal and external systems are secure, resilient, and compliant. Our team partners with engineering and product teams to identify vulnerabilities, harden systems, and maintain a high standard of security across all infrastructure and applications that deliver high-performance compute to our customers.

About the role:

As an Offensive Security Engineer at CoreWeave, you will lead efforts to identify and mitigate security risks across internal and external systems. You'll perform penetration testing, conduct threat modeling, and provide guidance to engineering teams on secure design and best practices. This role also involves developing security tooling, researching emerging threats, and contributing to the continuous improvement of CoreWeave's overall security posture.

Some of what you'll work on:

  • Perform penetration testing as well as purple and red team exercises.
  • Conduct threat modeling, code reviews, and design reviews for development teams.
  • Research new attack techniques and develop strategies to counter them.
  • Develop and enforce security best practices and standards, maintaining internal compliance.
  • Provide solutions to complex security issues, manage multiple tasks, and prioritize effectively in a fast-paced environment.
  • Present technical security information to both technical and non-technical audiences.
  • Maintain technical documentation, reports, and security tooling with attention to detail.
  • Participate in other security-related initiatives as assigned.
Who You Are:
  • 5+ years of experience in offensive information security roles.
  • Proficiency in at least one programming or scripting language (e.g., Go, Python, C/C++) for automation, code reviews, and tooling.
  • Bachelor's degree in Computer Science or related field
  • Hands-on penetration testing experience and familiarity with offensive security tools.
  • Strong technical knowledge of Linux operating systems and containerized environments.
  • Experience securing Kubernetes and understanding related security practices.
  • Able to navigate ambiguity, identify root causes, and solve complex security problems.
  • Excellent written and verbal communication skills with strong technical documentation abilities.
  • Capable of working independently while managing multiple priorities in a fast-paced environment.
  • Strong desire to continuously learn and adopt new technologies and security techniques.
Preferred:
  • Experience with firmware reverse engineering, analyzing binaries, bootloaders, and embedded systems for vulnerabilities.
  • Relevant certifications such as Sec+, Net+, OSCP, or equivalent.
  • Experience with EDR tuning, detections-as-code, or threat hunting as part of a Blue Team.
  • Deep understanding of business-wide security best practices and implementation strategies.

Wondering if you're a good fit? We believe in investing in our people, and value candidates who can bring their own diversified experiences to our teams – even if you aren't a 100% skill or experience match. Here are a few qualities we've found compatible with our team. If some of this describes you, we'd love to talk.

  • You love hunting vulnerabilities and proactively improving security.
  • You're curious about evolving attack vectors and defense strategies.
  • You're an expert in offensive security techniques and tooling, with a passion for safeguarding systems.

Why CoreWeave?

At CoreWeave, we work hard, have fun, and move fast! We're in an exciting stage of hyper-growth that you will not want to miss out on. We're not afraid of a little chaos, and we're constantly learning. Our team cares deeply about how we build our product and how we work together, which is represented through our core values:

  • Be Curious at Your Core
  • Act Like an Owner
  • Empower Employees
  • Deliver Best-in-Class Client Experiences
  • Achieve More Together

We support and encourage an entrepreneurial outlook and independent thinking. We foster an environment that encourages collaboration and enables the development of innovative solutions to complex problems. As we get set for takeoff, the organization's growth opportunities are constantly expanding. You will be surrounded by some of the best talent in the industry, who will want to learn from you, too. Come join us!

The base salary range for this role is $165,000 to $242,000. The starting salary will be determined based on job-related knowledge, skills, experience, and market location. We strive for both market alignment and internal equity when determining compensation. In addition to base salary, our total rewards package includes a discretionary bonus, equity awards, and a comprehensive benefits program (all based on eligibility).

What We Offer

The range we've posted represents the typical compensation range for this role. To determine actual compensation, we review the market rate for each candidate which can include a variety of factors. These include qualifications, experience, interview performance, and location.

In addition to a competitive salary, we offer a variety of benefits to support your needs. The benefits below reflect our US-based offerings; for roles in other locations, benefits vary and are shared during the hiring process. These include:

  • Medical, dental, and vision insurance - 100% paid for by CoreWeave
  • Company-paid Life Insurance
  • Voluntary supplemental life insurance
  • Short and long-term disability insurance
  • Flexible Spending Account
  • Health Savings Account
  • Tuition Reimbursement
  • Ability to Participate in Employee Stock Purchase Program (ESPP)
  • Mental Wellness Benefits through Spring Health
  • Family-Forming support provided by Carrot
  • Paid Parental Leave
  • Flexible, full-service childcare support with Kinside
  • 401(k) with a generous employer match
  • Flexible PTO
  • Catered lunch each day in our office and data center locations
  • A casual work environment
  • A work culture focused on innovative disruption

California Applicants

California Consumer Privacy Act

Equal Opportunity & Accommodations

CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace. All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.

As part of this commitment and consistent with the Americans with Disabilities Act (ADA), CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship. If reasonable accommodation is needed, please contact: careers@coreweave.com.

Export Control Compliance

This position requires access to export controlled information. To conform to U.S. Government export regulations applicable to that information, applicant must either be (A) a U.S. person, defined as a (i) U.S. citizen or national, (ii) U.S. lawful permanent resident (green card holder), (iii) refugee under 8 U.S.C. § 1157, or (iv) asylee under 8 U.S.C. § 1158, (B) eligible to access the export controlled information without a required export authorization, or (C) eligible and reasonably likely to obtain the required export authorization from the applicable U.S. government agency. CoreWeave may, for legitimate business reasons, decline to pursue any export licensing process.