Qube Research & Technologies
Financial Services
SeniorSecurityAssuranceEngineer(InternalPenetrationTesting)
“Senior Security Assurance Engineer (Internal Penetration Testing) at Qube Research & Technologies. Conduct internal penetration testing. Perform red team assessments”
Industry & Context.
Identify weaknesses; Prioritize risks
What They're Looking For.
Must Have
5+ years penetration testing, Hands-on experience testing complex systems, Knowledge of offensive security techniques, Knowledge of web application exploitation, Knowledge of API exploitation, Knowledge of network exploitation, Knowledge of cloud exploitation, Understanding of system internals, Understanding of networking, Understanding of OWASP Top 10, Understanding of logic flaws, Understanding of auth issues, Understanding of race conditions, Familiarity with Windows attacker perspective, Familiarity with Linux attacker perspective, Experience using standard penetration testing tools, Ability to assess vulnerability impact, Ability to prioritize risks, Ability to document findings, Ability to explain exploitability, Ability to provide remediation guidance, Ability to operate independently, Ability to manage multiple assessments, Ability to provide senior-level judgement
Nice to Have
Experience testing Python applications, Experience testing C++ applications, Experience testing Rust applications, Experience testing Go applications, Experience testing Kotlin applications, Experience testing Java applications, Experience with AWS cloud security, Experience with Azure cloud security, Experience with cloud IAM, Experience with cloud network configuration, Experience with cloud storage, Experience with cloud managed services, Experience with cloud misconfigurations, Experience developing custom tools, Experience developing automation, Experience developing exploits, Experience developing fuzzers, Experience integrating security testing into CI/CD, Experience supporting continuous assurance, Understanding of detection mechanisms, Understanding of response mechanisms, Experience evaluating detection mechanisms, Experience bypassing detection mechanisms, Experience conducting red team exercises, Experience conducting adversary simulations, Experience conducting purple team engagements, Experience with containerized environments, Experience with Kubernetes, Experience with infrastructure-as-code, Experience with hybrid cloud infrastructure, Knowledge of low-latency systems, Knowledge of financial trading environments, Knowledge of high-performance distributed systems, OSCP certification, OSEP certification, OSCE certification, CRTO certification, CCT APP certification, CCT INF certification
What You'll Do.
Conduct internal penetration testing
Perform red team assessments
Execute security assurance strategies
Coordinate external penetration testing
Identify vulnerabilities
Exploit vulnerabilities
Document vulnerabilities
Provide remediation guidance
Collaborate with product security
Support threat modelling exercises
Improve assessment coverage
Contribute to continuous security testing
Validate SAST findings
Validate DAST findings
Validate runtime security controls
Conduct security reviews
How You'll Work.
Team & Collaboration
Collaborate with Security Engineers; Collaborate with Software Engineers; Collaborate with Infrastructure Engineers; Collaborate with Cloud Engineers; Collaborate with Technology stakeholders; Collaborate with product security; Collaborate with development teams
Communication Scope
Articulate technical risks; Explain exploitability; Provide remediation guidance
Applying for this Senior Security Assurance Engineer (Internal Penetration Testing) role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Greenhouse
- Create a Greenhouse profile before applying — it saves time across multiple applications.
- Upload your resume as a PDF; the parser handles it better than Word.
- Answer all knockout questions carefully — wrong answers auto-reject before a human sees you.
- Enable email notifications to track application status in real time.
ANONYMOUS · UNFILTERED
What do employees actually say about Qube Research & Technologies?
Real rants from real employees. Read before you apply.