Security Engineer – Red Team & Offensive Security
About The Role:
Sitecore is seeking a proactive and technically skilled Security Engineer with a focus on Red Team and offensive security operations. This role will support security testing and hardening efforts across Sitecore’s cloud-native and SaaS products by leading and managing penetration testing, vulnerability management, bug bounty coordination, and code security initiatives.
The engineer will work closely with product engineering teams, security stakeholders, and external partners to identify, assess, and drive the remediation of vulnerabilities. The ideal candidate should be deeply familiar with threat actors, modern attack vectors, and best practices for secure application and infrastructure design.
Key Responsibilities:
Penetration Testing & Red Team Operations
Vulnerability Management (Wiz)
Code Security (Wiz Code)
Bug Bounty Program (HackerOne)
Attack Surface Management
Threat Intelligence & Security Research
Cross-Team Collaboration & Reporting
What You Need to Succeed:
Work Conditions