This job might no longer be available.
Sr. Offensive Security Engineer
3 years ago
AppLovin’s leading marketing software platform provides app developers with a powerful, integrated set of solutions to solve their mission-critical functions like user acquisition, monetization and measurement. AppLovin is headquartered in Palo Alto, California with several offices globally.
AppLovin was named one of the Best Workplaces in Advertising & Marketing 2022 by Fortune, one of the Hottest Adtech Companies of 2021 by Business Insider, and a Certified Great Place to Work in 2021 and 2022. Fortune recognized AppLovin as one of the Best Workplaces in the Bay Area 2022, alongside The San Francisco Business Times and Silicon Valley Business Journal who have also awarded AppLovin one of the Bay Area’s Best Places to Work for the past four years. Our team members are regularly recognized for their work and leadership, including recent award wins for San Francisco Business Times’ Outstanding LGBTQ+ Leaders 2022, Business Insider’s Rising Stars of Adtech 2022, Glassdoor’s Top CEOs 2019, and the Women in Content Marketing Awards 2021.
AppLovin is seeking a Senior Offensive Security Engineer who is driven to work on some of the most challenging security problems (Cloud vulnerabilities, DDoS Attacks, Insider and outsider threats) . You will use your skills to secure products running on large and complex technology stacks. The ideal candidate will be a good communicator and team player, know how to explain complex issues with simple terms, focus on ethical hacking, network security, penetration testing, exploitation, code review, and developing tools (static/dynamic analyzers, fuzzers, etc.).
What you'll be doing:
- Perform deep architecture and security reviews on highly complex products to identify vulnerabilities
- Map attack surfaces, assess threats, and prioritize issues across our stack
- Hack our internal and external infrastructure
- Adapt and quickly learn new technology stacks, programming languages, and frameworks
- Strong knowledge of on-prem and cloud infrastructure from an attacker perspective
- Meet with internal stakeholders to discover new systems before they are developed and deployed
- Review code efficiently and automate testing with simple scripts
- Read and write multiple programming languages. C/C++, PHP, Erlang, Lua, and Python are highly valued, but others will help too.
Your background and who you are:
- Bachelors degree
- Experience with code analyzers, such as Fortify or Veracode
- 3-5 years of applicable experience
- Knowledgeable regarding web application security topics such as OWASP Top 10, and authentication infrastructure (SAML, OAUTH)
- Demonstrated experience evaluating code for vulnerabilities and weaknesses
Bonus Points:
- Ability to write complex software in multiple languages
- Mobile application security (iOS and or/ Android)
- Experience performing black-box testing of web applications
#LI-AS1
AppLovin is an equal opportunity employer and considers qualified applicants without regard to race, gender, sexual orientation, gender identity or expression, genetic information, national origin, age, disability, medical condition, religion, marital status or veteran status, or any other basis protected by law.
Create Your Profile — Game companies can contact you with their relevant job openings.