Logo for Authentic8

Red Team Engineer/ Offensive Security Lead

Role overview

Qualifications

  • 5+ years in cybersecurity, penetration testing, or red team operations
  • Demonstrated experience building tools: scripting exploits, automating workflows, or constructing test harnesses (Python and/or Go strongly preferred)
  • Hands-on experience with LLM APIs in a security or agent context, including an understanding of tool use, control loops, and context management in agent architectures
  • Proficiency with static and dynamic analysis (SAST/DAST) and the ability to interpret and chain findings from automated tooling

Responsibilities

  • Design, build, and operate an AI-augmented red teaming harness using frontier LLM APIs
  • Conduct adversarial testing across four attack perspectives
  • Assume ownership of security stage-gates within our CI/CD pipeline, integrating Snyk, SonarQube, and harness findings into the build process
  • Collaborate with engineering on custom mitigation decisions when vendor patches are unavailable

About the company

Authentic8 logo

Authentic8

Information Technology & Services

Improve the efficiency of your research teams Authentic8's Silo for Research is a fully isolated, anonymous and secure platform for conducting all forms of online investigations. Use Silo for Research to access web-based resources across the surface, deep or dark web. Shorten your time-to-insight Silo for Research improves analyst tradecraft across all phases of the information collection life cycle. Get your teams online and productive without deploying complicated solutions or disrupting your current infrastructure. Access alternate networks Span alternate regions, languages and network protocols. Silo for Research spins up one-time-use browser instances that give you access to content across geographies and web protocols. Regardless of the destination resource, your identity or affiliation is never exposed. Silo for Research lets you match your persona to the specific investigation needs. Appear local to the subject material by accessing the internet through any of Authentic8's access points around the world. Silo for Research combined with good tradecraft ensures your research activities aren't attributed to your analysts or organization. Automate collections Silo for Research supports collections of all types of web content as the analyst needs it, or over a period of time. Automation tools allow you to set up regular collection routines to capture a range of web content types, transform the content to a format of your choice and securely store it in the cloud. Preserve data in the cloud Investigators may be required to capture and collect content as part of their process. And to maintain efficacy of potential evidence, a proper chain of control and evidentiary requirements must be met. Silo for Research integrates with Authentic8 Secure Storage, an encrypted, audited cloud-based storage repository for users and groups. "With Silo, there is no need to have a 'dirty' machine because you are fully protected" - Authentic8 Silo for Research customer

Company details

Company typeSME
IndustryInformation Technology & Services
Company size51 - 200

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

At some point in any digital investigation, an analyst needs to step beyond the perimeter and engage threats at the source.  Authentic8 Silo places any type of digital analyst in region-specific, multi-application workspaces, securely and anonymously, anywhere across the globe.  Target content can be captured, analyzed, and transformed in order to derive intelligence and support investigation requirements.  All delivered in a cloud-native, multi-tenant platform.

Compliance officers, mission managers, and administrators have their own specific audit and oversight requirements; to meet these needs, Silo also ensures compliance and appropriate use through class-leading policy enforcement and audit logging.  

Silo transforms how more than 750 of the world's most sophisticated organizations, from domestic and foreign government agencies to commercial entities across all sectors conduct their digital investigations.



Authentic8 is building an AI-powered Red Teaming Harness to proactively discover, chain, and validate vulnerabilities across our SaaS platform and supporting infrastructure. We are looking for a Red Team Engineer / Offensive Security Lead to drive the development and operation of that harness from the ground up. 

This is a hands-on role. You will be the primary builder and operator of the harness, working directly with our DevSecOps engineers, SOC Lead, and Director of Security Operations. You will conduct red team operations from multiple attack perspectives and feed validated, prioritized findings into our expedited patch management pipeline. You will also assume ownership of security stage-gates within our CI/CD pipeline and support the operation of our internal Bug Bounty Program.

If you’ve spent years thinking like an adversary and you’re energized by what frontier AI models can do in an offensive security context, this role was made for you.

Responsibilities:
Harness Development Responsibilities
 
  • Design, build, and operate an AI-augmented red teaming harness using frontier LLM APIs.
  • Implement a control loop architecture (Plan | Act | Observe | Adjust) for autonomous and semi-autonomous vulnerability discovery.
  • Integrate the harness with purpose-built SBOM tooling (Endor Labs), CVE monitoring feeds (NVD, OSV.dev, EPSS/KEV, GitHub Advisory Database, and vendor-specific bulletins), and our CI/CD pipeline (Snyk, SonarQube).
  •  
    Red Team Operations Responsibilities
     
  • Conduct adversarial testing across four attack perspectives: (Internal source code, External unauthenticated adversary,  Internal authenticated user, and Internal unprivileged adversary)
  • Chain findings identify exploitable paths and corresponding vulnerabilities.
  • Validate and prioritize findings using CVSS, EPSS, and KEV context before handing off to the patch management pipeline.
  • Support the development and day-to-day operation of Authentic8's internal Bug Bounty Program.
  • Collaborate with engineering on custom mitigation decisions when vendor patches are unavailable.
  •  
    SDLC & Collaboration Responsibilities
     
  • Assume ownership of security stage-gates within our CI/CD pipeline, integrating Snyk, SonarQube, and harness findings into the build process.
  • Work alongside the SOC Lead on CVE monitoring, alerting, and vulnerability prioritization workflows.
  • Partner with DevSecOps Engineers on harness architecture and pipeline integration.
  • Provide technical input to the Integrated Operations Center on detection use case design for our SIEM.
  • Regularly brief the VP of Information Security on findings, program health, and checkpoint criteria.

  • Qualifications:
  • 5+ years in cybersecurity, penetration testing, or red team operations
  • Demonstrated experience building tools: scripting exploits, automating workflows, or constructing test harnesses (Python and/or Go strongly preferred)
  • Hands-on experience with LLM APIs in a security or agent context, including an understanding of tool use, control loops, and context management in agent architectures
  • Proficiency with static and dynamic analysis (SAST/DAST) and the ability to interpret and chain findings from automated tooling
  • Working knowledge of CVE and vulnerability data sources, including NVD, EPSS, KEV, OSV.dev, and the GitHub Advisory Database
  • Experience testing cloud-hosted SaaS platforms (GCP familiarity preferred)
  • Familiarity with container security (containered, Docker) and Linux-based infrastructure
  • Ability to work independently, manage your own scope, and deliver against defined milestones
  • Excellent documentation and communication skills
  • Must be US citizen

  • Strongly Desired:
  • Experience with frontier AI model platforms in an agentic context
  • OSCP, GXPN, GPEN, or equivalent offensive security certification
  • Experience with SBOM tooling (Endor Labs, Syft, or similar) and software composition analysis
  • Familiarity with CI/CD pipeline security tooling (Snyk, SonarQube, or equivalents)
  • Experience with infrastructure-as-code or configuration management security (Chef/InSpec a plus)
  • Bug bounty program operations experience (HackerOne, Bugcrowd, or similar platforms)

  • Salary:
    $150,000 – $175,000
    Individual pay will be determined by location and additional factors, including job related skills, experience, and relevant education or training.
    Authentic8 Core Values & Principles:

    Integrity: We apply our best efforts. We are honest with and accountable to others.
    Mission-Focused: We clearly define and communicate our goals and do not stray in the pursuit of our objective.
    Respect: We value and respect the ideas and experience our diverse backgrounds bring us.  Positive consideration of differing viewpoints makes us stronger.
    We are collaborative: We recognize the best work is the product of teams. We must each be reliable and expect to rely on others.
    We are transparent:  By operating with common information and understanding we ensure that we are aligned.
    We find innovative solutions:  We seek innovative solutions not as a buzzword but as a means to solve difficult problems with zeal, efficiency and quality.
    We take ownership:  We are responsible for our actions, our reputation and our business. 

    Authentic8 offers competitive benefits, including medical, dental and vision, flexible PTO, a 401k program and stock options.

    It is the policy of Authentic8 to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. 

    Apply once. Then go straight to the hiring manager.

    After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

    MR

    Marcus Rivera

    Chief Revenue Officer

    m.rivera@company.com
    linkedin.com/in/marcusrivera
    Unlocked after you apply
    Β·

    Security Engineer Related jobs

    Other jobs at Authentic8

    Premium

    Reach out to the hiring manager directly.

    Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

    • Full match report with fit score and gaps
    • Career diagnostics on how recruiters read you
    • Curated company matches and warm intros
    • 48h early access to new roles

    Cancel anytime.