Web Application Offensive Security Software Engineer - Remote

Overview

Horizon3.ai is a fast-growing, remote cybersecurity company dedicated to the mission of enabling organizations to proactively find and fix and verify exploitable attack vectors before criminals exploit them.

In Short

• Design, develop, and integrate web application offensive security content into the NodeZero platform.
• Research and implement AI-driven methods for vulnerability detection and exploitation.
• Monitor production for issues and create or resolve Jira tickets as needed.
• Collaborate cross-functionally to address customer concerns related to attack content.
• Author technical blog posts showcasing new research and exploits.
• Mentor junior engineers and contribute to team process improvement.
• Experience conducting full scope web application pentests.
• Proficient in object-oriented programming and test-driven development.
• Strong written and verbal communication skills.
• Curiosity about emerging AI technologies.

Requirements

• Experience with proxy tools like Burp and browser developer tools.
• Familiarity with relational and graph databases, particularly Postgres and Neo4j.
• History of recognized security research including documented CVE discoveries.
• Track record of successful bug bounty contributions.
• Outstanding problem-solving aptitude.
• Ability to manage multiple priorities and work independently.
• Quick to learn and adopt new technologies.
• Strong technical documentation and communication skills.
• Experience developing software for web application pentesting.
• OSCP Certification is a plus.

Benefits

• Inclusive team culture that promotes diversity.
• Growth opportunities within a dynamic team.
• Remote work flexibility.
• Competitive salary and benefits including health care.
• Generous vacation policy and parental leave.