Senior Network Security Engineer
Role summary
The Senior Network Security Engineer will conduct offensive security assessments on web applications, APIs, and cloud services, focusing on identifying and validating vulnerabilities. This role involves designing and executing red team engagements, developing custom exploitation tools, and evaluating AI/LLM systems for security weaknesses. The engineer will also review architectures from an attacker's perspective, collaborate with engineering teams on mitigations, and produce clear security reports for various stakeholders. A strong understanding of web and API security, proficiency in scripting languages, and experience with common exploitation techniques are essential. Experience with AI/LLM security testing or a strong motivation in this area is required.
Responsibilities:
- Conduct offensive security assessments on large-scale web applications, REST APIs, and cloud-backed services.
- Identify and validate vulnerabilities including injection flaws, access control issues, authentication/authorization weaknesses, SSRF, deserialization, and logic bugs.
- Evaluate LLM-based systems and AI agents for prompt injection, data exfiltration, model abuse and jailbreaks.
- Design and execute red team style engagements simulating real-world adversaries.
- Develop custom exploitation tools, PoCs, and fuzzers for web and AI attack surfaces.
- Identify systemic security weaknesses and collaborate with engineering teams to drive long-term mitigations.
- Review architectures and designs for new products with an attacker mindset.
- Produce clear, actionable security reports and present findings to technical and executive stakeholders.
Minimum Qualifications:
- Master's degree in Computer Science, Computer Engineering, Information Security, or a closely related technical field.
- Doctorate (PhD) in a relevant field is a plus but not required.
- 5+ years of experience in offensive security, penetration testing, or red teaming.
- Deep expertise in web application security.
- Strong understanding of API security.
- Hands-on experience testing AI/ML or LLM-based systems, or strong motivation with demonstrated research in this area.
- Proficiency in at least one scripting or programming language (Python, Go, JavaScript, or similar).
- Strong knowledge of common exploitation techniques and attacker tooling.
Preferred Qualifications:
- Prior work on adversarial ML, red-teaming AI systems, or secure LLM pipeline design.
- Experience with cloud security (AWS, Google Cloud Platform, Azure) and containerized environments.
- Background in security research, published CVEs, CTF experience, blog posts, or conference talks.
- OSCP, OSEP, OSWE, CRTO, or similar.
- Master's degree in Computer Science, Computer Engineering, Information Security, or a closely related technical field.
What We Look For:
- An attacker-first mindset with strong engineering discipline.
- Ability to go beyond scanners and find novel, high-impact vulnerabilities.
- Clear communicator who can translate complex exploits into actionable fixes.
- Curiosity about emerging threats, especially in AI security.
- Ownership mentality and comfort operating in ambiguous problem spaces.
For applications and inquiries, contact: hirings@openkyber.com
Similar roles
Network Security EngineerNs3edu Lucknow · Lot 54, Prince Edward Island, Canada · Hybrid- Network Security EngineerValiant Solutions · United States · Remote
Network Security EngineerApex Systems · Daytona Beach, Florida, United States · Onsite
Senior Network Security EngineerMastercard · O'fallon, Missouri, United States · Hybrid- Senior Network Security EngineerOpenkyber · Georgia, Georgia, United States · Hybrid
