Salary: 60K-150K
Age: 21-35 years old
Job Requirements:
1. Bachelor’s degree or above, with rich experience in large-scale practical projects; red/blue team experience is preferred
2. Extensive programming experience, proficient in one or more of the following programming languages: C/C++/C#/Java/Go/Python
3. Understanding of common basic Web and system vulnerability exploitation principles, and familiarity with internal network penetration processes
4. Knowledge of evasion techniques, mainstream EDR/AV detection mechanisms, and practical experience in evasion countermeasures is a plus
5. Ability to identify security risk blind spots from an attacker’s perspective and provide effective and actionable security solutions
6. Experience in security product operations analysis, threat hunting is a plus
7. Strong interest in network security with excellent communication and teamwork skills
Responsibilities:
1. Responsible for offensive penetration testing, vulnerability mining, and exploit writing for key systems and infrastructure, collaborating closely with the development team to enhance security levels
2. Identify security risks and assess overall security defenses from an attacker’s perspective, assisting the development team in improving product security detection and defense capabilities
3. Keep track of the latest APT attack techniques and provide suggestions for adding detection rules based on TTPs for operations