CrawlJobs Logo
Mantle Solutions Logo Mantle Solutions · IT - Administration

Lead – Offensive Security

India, Kochi · Job Posted February 24, 2026
Apply Position
Job Link Share

Job Description

As a Lead – Offensive Security, you will be part of the Security Assurance Team responsible for evaluating and strengthening Lulu Retail’s cybersecurity posture. This role contributes to the broader objectives of IT security, cyber resilience, and regulatory compliance.

Job Responsibility

  • Plan and execute periodic offensive security testing, including: Vulnerability Assessments Penetration Testing WiFi Security Testing Network Segmentation Testing PCI-DSS ASV Scan Active Directory security audits Red Teaming activities
  • Perform cloud security assessments (AWS & Azure), identifying misconfigurations and architectural flaws
  • Conduct CVE analysis, risk prioritization, and remediation tracking
  • Ensure security testing is conducted on schedule, risks are mitigated and practices align with compliance programs
  • Collaborate with developers, DevOps, and IT teams to remediate vulnerabilities and implement security best practices
  • Generate and deliver comprehensive reports
  • track remediation activities through closure
  • Schedule and lead meetings with asset owners to explain vulnerabilities, share best practices, and recommend remedial actions

Requirements

  • Bachelor’s degree in Computer Science or related field
  • Minimum 3 years of relevant experience in cybersecurity
  • Certifications such as CEH, ECSA, CHFI, or other recognized cybersecurity credentials are highly recommended
  • Strong understanding of Penetration testing and vulnerability/patch management practices and advanced cyber threats and mitigation strategies
  • Proficient in IT security tools and platforms: Anti-malware, Firewalls, IPS, DLP, Web proxies, Email Security, Cloud Security (AWS & Azure), Privileged Access Management, IAM
  • Familiarity with security frameworks and standards: OWASP, NIST 800-64, PCI-DSS, ISO 27001, GDPR
  • Excellent communication and interpersonal skills
  • Strong organizational and time management skills
  • Ability to work both independently and collaboratively in a team environment
Mantle Solutions - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Lead – Offensive Security

8 matching positions

Senior Security Engineer - Offensive Security

We enable Plaid to quickly build safe and secure products while ensuring that Pl...
Location
Location
United States , New York
Salary
Salary:
207600.00 - 310800.00 USD / Year
plaid.com Logo
Plaid
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in offensive security roles
  • Experience leading individual offensive security/red team operations
  • Comfortable operating independently and defining your own direction
  • Comfortable communicating with a wide range of technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Establish a charter and framework for Plaid’s offensive security program
  • Conduct red team operations against corp and prod infrastructure to identify previously unknown problems and assess the state of Plaid’s security
  • Communicate findings to stakeholders and follow up to ensure appropriate resolution
  • Serve as the primary owner for red teaming at Plaid
  • Fulltime
Read More
Arrow Right

Senior Security Engineer - Offensive Security

We enable Plaid to quickly build safe and secure products while ensuring that Pl...
Location
Location
United States , San Francisco
Salary
Salary:
207600.00 - 310800.00 USD / Year
plaid.com Logo
Plaid
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in offensive security roles
  • Experience leading individual offensive security/red team operations
  • Comfortable operating independently and defining your own direction
  • Comfortable communicating with a wide range of technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Establish a charter and framework for Plaid’s offensive security program
  • Conduct red team operations against corp and prod infrastructure to identify previously unknown problems and assess the state of Plaid’s security
  • Communicate findings to stakeholders and follow up to ensure appropriate resolution
  • Serve as the primary owner for red teaming at Plaid
  • Fulltime
Read More
Arrow Right

Staff Product Security Engineer

We’re seeking a Staff Product Security Engineer with deep AI/ML security experti...
Location
Location
United States , San Francisco
Salary
Salary:
250000.00 - 285000.00 USD / Year
crusoe.ai Logo
Crusoe
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8-10 years of deep hands-on experience in offensive security, including manual penetration testing, red team operations, and adversary simulation
  • Familiarity with modern C2 frameworks (e.g., Cobalt Strike, Sliver, Havoc), exploit development, and security research
  • Strong expertise across the AI/ML stack, including MLOps, inference architectures, vector databases, RAG, and agentic frameworks (e.g., ReAct, Reflexion)
  • Experience building, deploying, and securing LLM pipelines and AI workflows in Kubernetes and/or bare-metal environments
  • Strong software engineering foundations with experience shipping production code in Go, Python, or Rust
  • Hands-on experience securing Kubernetes, containers, VMs, and CI/CD environments
  • Deep understanding of application security vulnerabilities, secure coding practices, and distributed system design
  • Demonstrated ability to lead complex, cross-functional security initiatives end-to-end
  • Strong communication skills with the ability to influence both engineering teams and executive stakeholders
Job Responsibility
Job Responsibility
  • Performing advanced manual penetration testing across complex applications, infrastructure, Kubernetes environments, and distributed microservice ecosystems
  • Leading offensive security initiatives including red team operations, adversary simulation, and security research
  • Securing AI/ML systems end-to-end, including LLM pipelines, vector databases, RAG architectures, and agentic workflows
  • Identifying and researching novel attack surfaces unique to LLMs and autonomous systems, contributing to internal and external AI security research
  • Influencing secure system design across the SDLC, embedding security into CI/CD pipelines, container images, and deployment workflows
  • Integrating and operationalizing security tooling (SAST, DAST, SCA, container scanning) and driving remediation of complex application-layer vulnerabilities
  • Building internal security guardrails such as hardened base images, reusable libraries, and policy-as-code frameworks
  • Developing production-grade security tooling and leading cross-functional security programs from design through deployment
What we offer
What we offer
  • Bonus
  • Restricted Stock Units are included in all offers
  • Fulltime
Read More
Arrow Right

Security Engineering Manager

Corporate Tools is looking for a Security Engineering Manager who eats vulnerabi...
Location
Location
Salary
Salary:
185000.00 USD / Year
corporatetools.com Logo
Corporate Tools
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS in Computer Science or equivalent experience
  • 5+ years building and securing software — hands‑on experience with web frameworks (Rails, Django, Node, etc.) and modern architectures
  • Proven application security expertise: secure SDLC, OWASP, threat modeling, exploit mitigation, and vulnerability remediation
  • Experience leading security or engineering teams — setting strategy, running scrums, conducting reviews, and mentoring talent
  • Strong knowledge of cloud environments (AWS, Azure, GCP) and securing databases (SQL/NoSQL) in production
  • Exposure to offensive and defensive security practices — red team, blue team, or incident response experience a plus
  • Ability to communicate risk and solutions to execs, engineers, and auditors — respected by hackers and trusted by leadership
  • Pragmatic mindset: knows when to enable speed, when to block, and how to automate guardrails to keep teams fast and safe
Job Responsibility
Job Responsibility
  • Lead 6 security engineers across three specialized teams: Red (offense), Blue (defense), and Orange (compliance)
  • Own the security strategy and execution for offensive testing, defensive monitoring, and compliance work — ensuring all three disciplines are aligned
  • Act as the technical anchor for the teams: review code, guide exploits, drive secure architecture decisions, and mentor engineers
  • Partner with product and engineering leads to embed security into development (threat modeling, secure coding, CI/CD guardrails)
  • Build internal security tools and automation that make it easier for product teams to ship securely
  • Oversee red team engagements and turn findings into actionable fixes, not just reports
  • Manage defensive capabilities — incident response, detection engineering, monitoring — and continually improve them
  • Ensure compliance frameworks (SOC2, ISO, PCI, etc.) are met without slowing innovation or creating unnecessary bureaucracy
  • Set a high technical bar: coach, mentor, and challenge engineers to pursue elegant, practical security solutions
  • Balance being a builder and a leader: stay hands‑on enough to earn respect from hackers, but prioritize leading and scaling the team’s impact
What we offer
What we offer
  • 100% employer-paid medical, dental and vision for employees
  • Annual review with raise option
  • 22 days Paid Time Off accrued annually, and 4 holidays
  • After 3 years, PTO increases to 29 days. Employees transition to flexible time off after 5 years with the company—not accrued, not capped, take time off when you want
  • The 4 holidays are: New Year’s Day, Fourth of July, Thanksgiving, and Christmas Day
  • Paid Parental Leave
  • Up to 6% company matching 401(k) with no vesting period
  • Quarterly allowance
  • Use to make your remote work set up more comfortable, for continuing education classes, a plant for your desk, coffee for your coworker, a massage for yourself... really, whatever
  • Open concept office with friendly coworkers
Read More
Arrow Right

Senior Application Security Engineer

We're hiring a Senior Application Security Engineer to join a small, high-levera...
Location
Location
United States , Remote
Salary
Salary:
180000.00 - 210000.00 USD / Year
qualia.com Logo
Qualia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of hands-on experience in application security, offensive security, or security engineering, with demonstrable depth in at least two of: offensive testing, security tooling/automation, and cloud/infra security
  • Strong offensive skills - you can manually exploit real web and API vulnerabilities beyond what a scanner will find, and you can teach others to do the same
  • Deep familiarity with building and operating security tooling in a modern engineering org: SAST/DAST/SCA pipelines, custom detection rules, secrets scanning, and CI/CD security gates. You've written tooling, not just configured it
  • Production experience with AWS (IAM, VPC, networking, data services), containerized workloads (Docker, Kubernetes/EKS), and infrastructure-as-code (Terraform or similar)
  • Comfort reading, reviewing, and contributing code in at least one language common to modern web stacks (Python, Go, Ruby, TypeScript, or similar)
  • Clear, direct communication style. You can make a sharp technical argument to senior engineers, translate risk into business terms for leadership, and write a bug report an engineer actually wants to fix
  • Strong partnership instincts - you get leverage by making other teams faster, not by blocking them
Job Responsibility
Job Responsibility
  • Run offensive assessments against Qualia's applications and infrastructure: manual penetration testing, exploit development, authenticated web/API testing, and adversarial review of new designs before they ship
  • Lead threat modeling and secure design review for the highest-risk initiatives across the company, and mentor engineers to do the same for their own work
  • Own and evolve our AppSec tooling stack end-to-end - SAST, DAST, SCA, secret scanning, IaC scanning, and the CI/CD gates that tie them together. Build the custom rules, detections, and automation that generic tooling doesn't give us
  • Harden our cloud posture: review AWS configurations, IAM policies, Kubernetes/EKS workloads, and networking boundaries
  • build automation and guardrails that prevent the same class of issue from recurring
  • Reduce toil for the team - write the tools, scripts, and integrations that turn a day of triage into a few minutes
  • Partner with Infrastructure and Platform on detection engineering, incident response support, and cross-cutting programs (secrets management, supply chain, runtime security)
  • Set the technical bar for the AppSec team: raise the quality of reviews, establish patterns others can reuse, and mentor peers across seniority levels
  • Represent AppSec in architectural reviews, vendor evaluations, and compliance efforts
What we offer
What we offer
  • comprehensive health plans
  • 401k program
  • commuter benefits
  • professional development
  • parental leave
  • flexible time off policy
  • robust online onboarding program
  • biweekly all hands meetings
  • a variety of internal virtual events to keep employees connected
  • Fulltime
Read More
Arrow Right

Senior Director of Security Operations

The Senior Director of Security Operations is a senior leadership role responsib...
Location
Location
Netherlands; United Kingdom; Poland , Amsterdam; London; Łódź
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience leading security operations with a primary specialisation in cyber defense within complex global environments
  • Deep expertise across Threat Intelligence, Threat Hunting, Detect & Respond, and Offensive Security
  • Proven experience leading senior leaders and multi-disciplinary teams
  • Strong strategic thinking combined with execution discipline
  • Ability to lead calmly and decisively during high-impact incidents
  • Relevant security certifications (e.g. CISSP, CISM, GIAC) preferred but not mandatory
Job Responsibility
Job Responsibility
  • Define and own the unified security operations strategy
  • Design and evolve the global operating model for security defense
  • Translate strategy into clear roadmaps, priorities, and measurable outcomes
  • Operate as a 'leader of leaders,' mentoring and empowering senior domain leads
  • Lead the operational security due diligence (DD) for target companies
  • Define and execute the roadmap for integrating acquisitions into Arrive’s security operations ecosystem
  • Establish and lead a threat intelligence capability
  • Own and mature proactive threat hunting across endpoint, network, and cloud environments
  • Support the Detect & Respond Lead in defining and executing the strategy for global detection capabilities and 24/7 monitoring
  • Enable the Offensive Security Lead to design and execute robust red teaming and adversary simulation campaigns
What we offer
What we offer
  • Shape global security defense capabilities at scale
  • Operate as a trusted senior leader within Global Security
  • Balance strategic influence with real operational ownership
  • Be part of a mission-driven, global organisation transforming urban mobility
  • Fulltime
Read More
Arrow Right

Senior Offensive Security Engineer

Join us in building the future of finance. Our mission is to democratize finance...
Location
Location
Canada , Toronto
Salary
Salary:
165750.00 - 195000.00 CAD / Year
robinhood.com Logo
Robinhood
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of red teaming or offensive security experience, with a proven track record of driving impactful outcomes
  • Strong mentorship experience and a passion for developing others
  • Excellent communication skills—able to articulate complex security risks across technical and executive audiences
  • Hands-on experience with MacOS and Linux systems, and familiarity with DNS, TCP/IP, and related protocols
  • Experience attacking and securing cloud platforms (AWS, GCP), CI pipelines, and container orchestration systems (Docker, Kubernetes)
  • Ability to evade modern defensive tools and understand their detection logic (IDS, IPS, AV, EDR, etc.)
  • Proficiency in scripting or programming with Python, Go, or JavaScript
  • Deep understanding of the MITRE ATT&CK framework and adversary TTPs
  • Strong collaboration skills and comfort working on distributed teams with clear documentation practices
Job Responsibility
Job Responsibility
  • Evangelize the Offensive Security Team’s Findings and Projects with stakeholders throughout the company and collaborate with other teams to create solutions that balance security with other priorities
  • Mentor and provide guidance to the members of the Offensive Security team
  • Utilize threat modeling to identify threats and shape Red Team priorities and exercises
  • Plan and execute long term, broadly scoped, black box Red Team exercises utilizing vulnerability research, exploit development, and utilizing public proof of concept code
  • Perform penetration testing, code reviews, and design/architecture reviews
  • Write tooling to assist with and automate Red Team assessments
  • Plan and participate in Adversarial Simulation exercises with various security teams
  • Lead Security Incidents when Pentest or Red Team findings require them
  • Publish blog posts and present talks at security conferences
What we offer
What we offer
  • bonus opportunities
  • equity
  • benefits
  • Fulltime
Read More
Arrow Right

Cyber Security Principal Consultant

Our client is recruiting for a Cyber Security Principal Consultant to join their...
Location
Location
United Kingdom , London or Birmingham
Salary
Salary:
55000.00 - 65000.00 GBP / Year
brosterbuchanan.com Logo
Broster Buchanan
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience of working in professional services firms
  • Demonstrable experience of delivering and leading cyber security advisory and offensive security testing engagements
  • Demonstrable experience of delivering advisory engagements relevant to security operations and defensive controls
  • Understand technology trends, cyber threats, and industry issues
  • Proficient in report writing
  • Experience with security testing techniques such as threat modelling, reconnaissance, social engineering, enumeration, attack path mapping, exploitation, and clean up from a variety of adversarial perspectives (white/grey/black box testing)
  • Proficient in infrastructure and web application testing
  • Proficient in using common commercial and open-source penetration testing tool sets including Kali Linux, Metasploit, Nmap, BurpSuite, Nessus and other industry standard tools
  • Hold an industry recognised certification (this can be at any level from Offensive Security Certified Professional (OSCP)
  • CompTIA PenTest+
Job Responsibility
Job Responsibility
  • Contributing towards the development of exciting new market facing cyber security products and services and internal knowledge sharing hubs
  • Delivering cyber security engagements, from scoping through to delivery, debriefs and report writing
  • Supporting the development of other members of the team
  • Representing the client in external meetings, including attendance at client workshops, audit committees, and regional networking events
  • Building trusted relationships with senior client stakeholders and identifying client and service opportunities
  • Assisting in managing, delivering and leading cyber engagements across a diverse portfolio of clients across the breadth of the mid-market, ensuring both excellent client service and identification of further work opportunities
  • Managing the delivery of agreed work activities with a primary focus on technical security including offensive security services (OSCP, CompTIA PenTest+)
  • Fulltime
Read More
Arrow Right