Skip navigation

Have you considered using our job search? Click here to search our current jobs.

Have you considered using our job search? Click here to search our current jobs.

Offensive Security Engineer

Summary

Salary
Competitive
Team
Information Technology
Location
India - Bangalore Sales Office

Join Dyson in an exciting opportunity to be part of our expansion into Offensive Security. We are recruiting an Offensive Security Engineer to join our Offensive Security team. You will work in a specialist team which primarily focuses on investigating Dyson’s landscape (Web/Enterprise/IOT) for unknown security vulnerabilities to ensure Dyson’s reputation for quality is maintained.

Responsibilities:

At Dyson we believe that when it comes to security you need both a good defence and a good offense. Our Offensive Security team is responsible for ensuring Dyson stays protected against both internal and external threats.

The role will involve engaging with subject matter experts throughout the Enterprise to assess new and existing platforms and then enhance our security through Penetration Testing. When we’re not performing standard Penetration Tests we’re looking for new ways to improve Dyson’s security posture by asking ourselves “I wonder if” and then investigating the possibilities.

The role is extremely flexible and will contain responsibilities such as:

  • Help manage and maintain Dyson’s bug bounty programme, ensuring reported vulnerabilities are assessed, investigated, triaged and resolved within appropriate timeframes

  • Provide assurance through targeted security assessments and Ethical Hacking

  • Work closely with development and operations teams to build security into the core of what we do

  • Define cybersecurity best practices, processes, and workflows.

  • Work to design and implement security controls into our products, including web and mobile apps as well as hardware.

  • Drive continuous improvement in security and champion changes to the organisation

Key Competencies:

On a day to day basis the team could be engaging with any area of the business and we are looking for individuals who can fill specialised roles, as well as ones who have a broad range of technical understanding across multiple avenues of technology. A passion for security and understanding how we use technology to enhance our business is a must.

We would expect the following key competencies:

  • Strong background in Enterprise technologies and understanding the real-world risks surrounding them

  • Ability to work well under minimal supervision and with a high degree of autonomy and responsibility.

  • Team-oriented interpersonal skills, with the ability to communicate effectively with a broad range of people and roles, including vendors, IT and business personnel.

  • Strong conceptual thinking and communication skills.

  • A strong understanding of Penetration Testing, Vulnerability Assessments, Bug Bounties and Risk Assessments

Skills and Technical Experience

We are looking for a strong understanding and capability in some of the following:

  • Web & Mobile security

  • Infrastructure security

  • Defensive Coding & Code Analysis

  • Penetration Testing

  • Internet of Things (IOT) security

  • Offensive Security (Red Teaming)

  • API Security

  • Cloud Services

  • Compliance Standards (such as PCI-DSS)

  • Bug Bounty programmes

  • Programming and scripting languages

  • Web APIs

  • E-commerce Platforms

Experience Required

  • Experience in engaging with a wide business audience and being able to communicate at all levels, from support desk to technical lead, to Director

  • Common Vulnerability classes

Qualifications

·A professional security certification, such as Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN), or other similar credentials, is desired but not required.


Dyson is an equal opportunity employer. We know that great minds don’t think alike, and it takes all kinds of minds to make our technology so unique. We welcome applications from all backgrounds and employment decisions are made without regard to race, colour, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other any other dimension of diversity.