Current jobs related to Security Engineer II- Penetration Testing - Chicago - Grubhub

  • Security Engineer II- Penetration Testing

    1 week ago

    Chicago, United States Grubhub Full time

    Grubhub’s Product Security organization is looking for a Penetration Tester to help build our Offensive Testing & Adversary Emulation capabilities. Your primary task will be to conduct offensive pen-testing activities against our microservices, applications, infrastructure and data-layer systems. You will work closely with our engineering groups to define...

  • Security Engineer II

    1 week ago

    Chicago, Illinois, United States Grubhub Full time

    About the RoleWe are seeking a highly skilled Penetration Tester to join our Product Security organization at Grubhub. As a key member of our team, you will play a critical role in building our Offensive Testing & Adversary Emulation capabilities.Key ResponsibilitiesConduct white-box and gray-box offensive penetration testing against Grubhub's mobile...

  • Security Penetration Tester

    1 hour ago

    Chicago, Illinois, United States Grubhub Full time

    Grubhub Security Penetration TesterGrubhub's Product Security organization is seeking a skilled Security Penetration Tester to enhance our Offensive Testing & Adversary Emulation capabilities. As a key member of our team, you will conduct offensive pen-testing activities against our microservices, applications, infrastructure, and data-layer systems. Your...

  • Security Penetration Tester

    3 days ago

    Chicago, Illinois, United States Grubhub Full time

    About the RoleGrubhub's Product Security organization is seeking a skilled Penetration Tester to enhance our Offensive Testing & Adversary Emulation capabilities. As a key member of our team, you will conduct offensive pen-testing activities against our microservices, applications, infrastructure, and data-layer systems. Your primary task will be to identify...

  • Security Penetration Tester

    1 week ago

    Chicago, Illinois, United States Grubhub Full time

    About the RoleWe are seeking a highly skilled Security Penetration Tester to join our Product Security organization at Grubhub. As a key member of our team, you will play a critical role in building our Offensive Testing & Adversary Emulation capabilities.Key ResponsibilitiesConduct white-box and gray-box offensive penetration testing against Grubhub's...

  • Cybersecurity Penetration Testing Lead

    3 weeks ago

    Chicago, Illinois, United States RSM US LLP Full time

    At RSM US LLP, we are a premier provider of professional services tailored for the middle market worldwide. Our mission is to foster confidence amidst change, enabling our clients and team members to achieve their utmost potential. Our remarkable workforce is the cornerstone of our distinctive, inclusive culture and talent experience, which enhances our...

  • Principal Security Assurance

    20 hours ago

    Chicago, United States Request Technology Full time

    NO SPONSORSHIPSecurity Assurance EngineerSALARY: $150K - $165K PLUS 15% BONUS LOCATION: CHICAGOHybrid 3 days onsite and 2 days remote You will be responsible for security testing, configuration, baseline process and perform a variety of assessments. loud assessments, light penetration testing, network operating, system assessments testing. blue team...

  • Information Security Engineer

    1 month ago

    Chicago, United States Grubhub Full time

    Grubhub’s Product Security organization is looking for a Penetration Tester to help build our Offensive Testing & Adversary Emulation capabilities. Your primary task will be to conduct offensive pen-testing activities against our microservices, applications, infrastructure and data-layer systems. You will work closely with our engineering groups to define...

  • Information Security Engineer

    1 month ago

    Chicago, United States Grubhub Full time

    Grubhub’s Product Security organization is looking for a Penetration Tester to help build our Offensive Testing & Adversary Emulation capabilities. Your primary task will be to conduct offensive pen-testing activities against our microservices, applications, infrastructure and data-layer systems. You will work closely with our engineering groups to define...

  • OSOC Security Analyst

    2 weeks ago

    Chicago, United States Evolve Security Full time

    Job DescriptionJob DescriptionWhat will you be doing? Evolve Security is looking for an OSOC Security Analyst to join our growing team. This position will assist with the overall successful delivery of various application vulnerability assessments, continuous internal / external penetration assessments, incident response and detection assessments, and other...

  • Application Security Engineer

    2 months ago

    Chicago, United States Pearl Consulting Group Full time

    Job DescriptionJob DescriptionJob Title: Application Security Engineer Location: Chicago - Remote About UsAt Pearl Consulting Group, we are committed to doing what’s right by focusing on People, Culture, and Technology. Our diverse, multi-generational team collaborates closely with clients to create tailored, transformative solutions. Specializing in...

  • Cloud Security Engineer

    3 weeks ago

    Chicago, Illinois, United States Diverse Lynx Full time

    Position: Security Track Engineer Location: Chicago, IL Onsite Fulltime Role Overview: As a Security Track Engineer, you will play a pivotal role in safeguarding our cloud infrastructure. Your expertise will be essential in implementing robust security measures and ensuring compliance with industry standards. Key Responsibilities: Conduct...

  • Cloud Security Engineer

    3 weeks ago

    Chicago, Illinois, United States Diverse Lynx Full time

    Position: Security Track Engineer Location: Chicago, IL Onsite Fulltime Role Overview: As a Security Track Engineer, you will play a pivotal role in safeguarding our cloud infrastructure. Your expertise will contribute to the overall security posture of our organization. Key Responsibilities: Conduct comprehensive vulnerability assessments and...

  • Cloud Security Engineer

    3 weeks ago

    Chicago, Illinois, United States Diverse Lynx Full time

    Position:: Security Track Engineer Location:: Chicago, IL Onsite Fulltime Role Overview: As a Security Track Engineer, you will play a pivotal role in enhancing our cloud security posture. Your expertise will contribute to safeguarding our digital assets and ensuring compliance with industry standards. Key Responsibilities:Conduct comprehensive...

  • Mobile Application Security Engineer

    4 weeks ago

    North Chicago, United States TEKsystems Full time

    Description: JOB DESCRIPTION: The Senior Cybersecurity Engineer will provide guidance on securing applications and infrastructure. The engineer provides security as a process alongside the agile teams building and maintaining client products. The engineer is accountable for establishing and maintaining cyber risk identification, prevention, and remediation...

  • Senior Security Engineer

    4 months ago

    Chicago, United States Bank of America Full time

    Description : The Information Security Engineer will lead strategic security efforts to expand technology offerings within the Merchant and Small Business technology portfolio. This role will work across various security and technology teams to define, drive, and deliver major security components to meet program objectives. Knowledge and experience...

  • Security Engineer

    2 weeks ago

    Chicago, United States Stardom Employment Consultants Full time

    Job Description: The Security Engineer will be responsible for developing and implementing security measures to protect the organizations computer networks and systems. You will monitor for security breaches conduct security assessments and ensure compliance with industry standards. This role requires a deep understanding of cybersecurity threats...

  • Cloud Security Specialist II

    3 weeks ago

    Chicago, Illinois, United States McDonald's Corporation Full time

    Company OverviewAt McDonald's, our innovative growth strategy, Accelerating the Arches, drives every facet of our operations as a premier global omni-channel restaurant brand. As consumer preferences evolve, we leverage our competitive strengths to enhance our brand further. A key component of our growth strategy is our commitment to the 3Ds: Delivery,...

  • Associate Principal, Security Assurance

    5 days ago

    Chicago, United States Request Technology, LLC Full time

    ***Hybrid, 3 days onsite, 2 days remote******We are unable to sponsor as this is a permanent full-time role***A prestigious company is looking for an Associate Principal, Security Assurance. This role is focused on testing, configuration, review, and assessment of security postures such as cloud, penetration testing, networking, operating systems, DevOps,...

  • IT Security Specialist

    6 days ago

    Chicago, Illinois, United States Metropolitan Water Reclamation District of Greater Chicago Full time

    Job SummaryWe are seeking a highly skilled IT Security Analyst to join our team at the Metropolitan Water Reclamation District of Greater Chicago. As a key member of our IT department, you will play a critical role in the administration and support of our District-wide Information Technology security plan.Key ResponsibilitiesParticipate in the planning and...

Security Engineer II- Penetration Testing

4 months ago

Chicago, United States Grubhub Full time

Grubhub’s Product Security organization is looking for a Penetration Tester to help build our Offensive Testing & Adversary Emulation capabilities. Your primary task will be to conduct offensive pen-testing activities against our microservices, applications, infrastructure and data-layer systems. You will work closely with our engineering groups to define pen-test scope, lead assessment engagements, and map assessment findings into engineering plans of action for remediation, ultimately guiding our product security uplift activities. This is a unique opportunity for an experienced offensive pen-tester who is collaborative, and has a healthy sense of curiosity to join Grubhub Security to make real positive impacts to our security posture, and help us improve our security designs so that we can deliver trustworthy experiences across the entire Grubhub ecosystem.

This role is based in Chicago, IL and is required 2 days per week in the office.

The Impact You Will Make:

  • You will enhance the overall security posture of Grubhub by identifying and mitigating security vulnerabilities proactively.
  • Streamline security testing processes by automating penetration tests as part of the CI/CD pipeline, reducing manual effort and improving engineering operational excellence.
  • Contribute to a culture of cybersecurity awareness and continuous improvement within the organization, enabling Grubhub to launch and sustain key business initiatives with minimal risk.

Key Responsibilities:

  • Conduct white-box and gray-box offensive penetration testing against Grubhub’s mobile applications, front-end & back-end microservices and web services
  • Conduct network infrastructure, Public Cloud (AWS, GCP and Azure), and data-layer offensive pen-testing in support of annual PCI-DSS requirements
  • Perform security assessments on mobile application products and services.
  • Perform manual source code reviews and audits (manual and SCA/SAST code audits) as needed
  • Be a subject matter expert and ambassador to Grubhub Engineering for secure coding practices, penetration testing, mobile platform security and all aspects of application and product security
  • Perform any other application security or product security related activities or tasks as needed or directed
  • Validate 3rd party external pen-test and crowd-sourced application security findings and work with our Appsec team to triage those across to our engineering teams

What You Bring To The Table:

  • Bachelors degree in Computer Science, Information Technology, or related field (or equivalent experience).
  • 3+ years of relevant engineering or security assessment experience
  • Proven experience in manual penetration testing, including web applications, APIs, micro-services, networks, and cloud environments.
  • A broad knowledge of attack vectors, exploits and mitigations that work at scale or may be linked together for chained attacks
  • Intermediate-level experience with Java, Go, or Python with demonstrable experience in conducting code reviews to identify security deficiencies at the code-level.
  • Ability to create and write scripts to automate redundant activities
  • Familiarity with security testing tools such as Burp Suite, Nmap, etc.
  • Strong understanding of CI/CD pipelines and experience with integrating security testing into automated build processes.
  • Knowledge of security controls (like EDR) evasion techniques and ability to apply that knowledge as part of an advanced security assessment.
  • Working familiarity with version control systems (Git) and issue tracking tools (Jira) and ability to define + support your commitments within an Agile working model.
  • Ability to create written work product, detailed technical findings documents, and pen-test reports.
  • Great interpersonal skills, deep technical ability, and a history of successful execution in the assessments industry.
  • Excellent communication skills and ability to work collaboratively in a team environment.
  • Ability to fully participate in our on-call rotation as a service owner

Preferred Qualifications:

  • A pen-test certification such as Offensive Security Certified Professional (OSCP), OSWE, OSCE, GPEN, GMOB, GWAPT, GXPN, eWAPT, eMAPT and/or willing to work towards ultimately obtaining one within the first year as part of your career path

And Of Course, Perks

  • Flexible PTO. Grubhub employees enjoy a generous amount of time to recharge.
  • Health and Wellness. Excellent medical, dental and vision benefits, 401k matching, employee network groups and paid parental leave are just a few of our programs to support your overall well-being.
  • Compensation. You'll receive a highly-competitive compensation package with eligibility for generous incentives, bonuses, commission, and RSUs.
  • Free Meals. Our employees get a weekly Grubhub credit to enjoy and support local restaurants.
  • Social Impact. We believe in giving back through programs like the Grubhub Community Relief Fund, and provide our employees opportunities to support causes that are important to them.