Location: Minneapolis, MN or Remote
Description:
NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance. We help secure the most trusted brands on Earth with our Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), and Breach and Attack Simulation (BAS) solutions. Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever before.
NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers.
Join the mission as a Software Engineer, Security Content (MacOS). In this role, you will be working on the Breach and Attack Simulation team at NetSPI. You will be responsible for designing, developing, and maintaining components and modules associated with the Breach and Attack Simulation platform. NetSPI’s Breach and Attack Simulation Platform provides customers with the means to keep up to date with emerging attack techniques, simulate attacker behavior, and monitor/measure their ability to detect those behaviors over time.
Responsibilities:
- Apply a customer-centric view to the development of new platform security content.
- Collaborate with other engaged systems-oriented engineers to understand customer use cases and implement or improve Breach and Attack Simulation Platform components and modules.
- Write and read code primarily in C# and Go.
- Work with the team to create and maintain continuous builds, tests, a constructive code-review process, and a supportive culture of identifying and fixing bugs.
- Work with a geographically distributed team of various experience levels.
- The responsibilities are just a starting place! We’re moving quickly and have a lot to do – we’ll help you grow along with us.
How you’ll do well in this role:
- Want to grow your security background toward software development.
- Knowledge of common security flaws and mitigations as published by OWASP, CISA, MITRE ATT&CK, etc.
- Offensive security experience.
- Previously worked with C# or Go (or other system programming languages).
- Believe in fully documenting your ideas and implementations.
- comfortable at a terminal.
- Possess a good understanding of the Windows Operating System, Linux distributions, and MacOS.
- Pursuing of already obtained a bachelor’s degree.
How you’ll thrive in this role:
- Comfortable using macOS systems programming languages (examples: Objective C, Swift, Python, Go).
- Possess a strong understanding of the macOS operating system and subsystems such as:
- Transparency, Consent, and Control (TCC)
- System Integrity Protection (SIP)
- Inter-process Communication (XPC)
- JavaScript for Automation (JXA)
- Comfortable operating with undocumented macOS functions.
- Familiar with macOS Debuggers.
- OSMR certified.
- Familiar with ARM / Apple Silicone architecture.
- Experience in exploit development
- Pursuing or already obtained a graduate degree.