Offensive Security Engineer II
2 days ago
At Finance of America, we help homeowners unlock the joy that comes from realizing the full potential of their retirement. Many people have significant wealth tied up in their homes and want to use it meaningfully in their next chapter. Our unique range of reverse mortgages allow homeowners 55+ to access that wealth while maintaining control over their home and financial future. With options tailored to their unique goals, we provide the financial flexibility they need to move forward with confidence.
Finance of America is guided by five values: We are customer obsessed, they are why we exist. We raise the bar. We take extreme ownership. We practice genuine collaboration. And we unleash our excellence. Together we are actualizing our vision to be the most beloved brand for homeowners in their next chapter.
To learn more about us, visit www.financeofamerica.com
Purpose of Role
Responsible for application security testing, adversary simulation, and cloud security research with a strong emphasis on adaptability and security. Researches new threat scenarios and works alongside the blue teams to validate defenses.
Key Responsibilities and Expectations
- Conducts penetration tests and threat simulations across applications, infrastructure, and cloud environments (AWS and Azure).
- Performs application security reviews, including secure code review and SAST/DAST configuration in CI/CD pipelines.
- Supports red and purple team exercises, using tactics aligned with the MITRE ATT&CK framework, to measure and improve SOC readiness.
- Researches and tests emerging threats, vulnerabilities, and exploitation techniques, including those targeting cloud and AI/ML applications.
- Partners with development, cloud, and SOC teams to communicate risks and recommend practical remediation strategies.
- Creates or adapts custom offensive tools and scripts to support testing scenarios.
- Documents and clearly communicates technical findings to both technical and non-technical audiences.
- Conducts security research and attends trainings, conferences, and capture-the-flag (CTF) events.
- Performs other duties as assigned.
- Director, Vulnerability Management and Discovery
- Minimum 3 years of experience in offensive security, penetration testing, or application security.
- Proficiency in web application security testing (e.g., OWASP Top 10, business logic flaws, authentication/authorization bypasses).
- Familiarity with cloud security testing in AWS (IAM, S3, EC2, Lambda, etc.); exposure to Azure strongly preferred.
- Knowledge of AI/ML application security testing, including risks such as prompt injection, data poisoning, and model extraction preferred.
- Scripting proficiency in Python (preferred), PowerShell, or Bash.
- Strong understanding of operating systems (Linux, Windows, MacOS) and networking protocols.
- Experience with CI/CD pipeline security integration (e.g., Azure DevOps, GitHub Actions).
- Exposure to adversary simulation tooling (e.g., C2 frameworks like Cobalt Strike, Sliver, Mythic).
- Familiarity with the MITRE ATT&CK framework and its application to offensive testing.
- Certifications such as OSCP, OSWE, OSEP, GXPN, or CRTO preferred.
- Prior experience collaborating with SOC and IR teams in purple team exercises.
- Strong written and verbal communication skills, with the ability to explain technical findings clearly to developers, engineers, and non-technical stakeholders.
- Ability to exercise judgment when policies or precedents are incomplete or not well-defined.
- Self-motivated, driven, and passionate about cybersecurity, with a continuous learning mindset.
- Bachelor's Degree or comparable qualifications
- Computer Science, Cybersecurity, or related field.
Compensation
The base salary range for this position is ($85,300 - $142,100) inclusive of all geographical differences in the labor market. The base salary for the position will be determined based on factors such as the candidate's work location, skills, education, and experience. In addition to those factors, we believe in the importance of pay equity and consider the internal equity of our current team members in determining any final offer. We offer a competitive benefits package including health, dental, vision, life insurance, paid time-off benefits, flexible spending account, 401(k) with employer match, and ESPP.
Additional Information
The application deadline for this job opportunity is 11/3/2025.
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.
Finance of America is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, sex (including pregnancy), sexual orientation, religion, creed, age, national origin, physical or mental disability, gender identity and/or expression, marital status, veteran status or other characteristics protected by law.
Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.
-
Senior Automation Engineer II
7 days ago
Conshohocken, PA, United States PM Group Full timeOverview The Senior Automation Engineer II position is an exciting opportunity to join PM Group's quickly growing USA regional team. Together we are sharing knowledge, learning, growing, and continuing to be an integral part of supporting PM Group's ongoing expansion in the US. This individual can be located out of our Philadelphia area office in...
-
Senior Automation Engineer II
1 week ago
Conshohocken, PA, United States PM Group Full timeOverview The Senior Automation Engineer II position is an exciting opportunity to join PM Group's quickly growing USA regional team. Together we are sharing knowledge, learning, growing, and continuing to be an integral part of supporting PM Group's ongoing expansion in the US. This individual can be located out of our Philadelphia area office in...
-
Automation Test Engineer II
7 days ago
Conshohocken, PA, United States Berkshire Hathaway GUARD Insurance Companies Full timeOverview Good things are happening at Berkshire Hathaway GUARD Insurance Companies. We provide Property & Casualty insurance products and services through a nationwide network of independent agents and brokers. Our companies are all rated A+ “Superior” by AM Best (the leading independent insurance rating organization) and ultimately owned by Warren...
-
Automation Test Engineer II
2 weeks ago
Conshohocken, PA, United States Berkshire Hathaway GUARD Insurance Companies Full timeOverview Good things are happening at Berkshire Hathaway GUARD Insurance Companies. We provide Property & Casualty insurance products and services through a nationwide network of independent agents and brokers. Our companies are all rated A+ “Superior” by AM Best (the leading independent insurance rating organization) and ultimately owned by Warren...
-
Software Engineer II, Technology Solutions
3 days ago
Conshohocken, PA, United States Hamilton Lane Full timeHamilton Lane is looking to expand our team to satisfy the needs of our growing client base. Hamilton Lane is built on collaboration, teamwork and integrity. Our employees pursue excellence and always strive to do the right thing. We invest in our employees, clients and partner relationships, as well as, in the technology and resources necessary to remain...
-
Software Engineer II, Technology Solutions
3 days ago
Conshohocken, PA, United States Hamilton Lane Full timeHamilton Lane is looking to expand our team to satisfy the needs of our growing client base. Hamilton Lane is built on collaboration, teamwork and integrity. Our employees pursue excellence and always strive to do the right thing. We invest in our employees, clients and partner relationships, as well as, in the technology and resources necessary to remain...
-
Data Engineer
2 days ago
Conshohocken, PA, United States Hamilton Lane Full timeHamilton Lane is looking to expand our team to satisfy the needs of our growing client base. Hamilton Lane is built on collaboration, teamwork and integrity. Our employees pursue excellence and always strive to do the right thing. We invest in our employees, clients and partner relationships, as well as, in the technology and resources necessary to remain...
-
Solutions Engineer
4 days ago
Conshohocken, PA, United States Razor Technology Full timePosition Overview At Razor Technology, we believe technology should empower the business - secure, reliable, scalable, and efficient. As a Solutions Engineer, you will serve as a versatile, hands-on technical resource supporting our customers across servers, systems, virtualization, and networking technologies. This role is engineered for a generalist -...
-
Solutions Engineer
2 weeks ago
Conshohocken, PA, United States Razor Technology Full timePosition Overview At Razor Technology, we believe technology should empower the business - secure, reliable, scalable, and efficient. As a Solutions Engineer, you will serve as a versatile, hands-on technical resource supporting our customers across servers, systems, virtualization, and networking technologies. This role is engineered for a generalist -...
-
Solutions Engineer
5 days ago
Conshohocken, PA, United States Razor Technology Full timePosition Overview At Razor Technology, we believe technology should empower the business - secure, reliable, scalable, and efficient. As a Solutions Engineer, you will serve as a versatile, hands-on technical resource supporting our customers across servers, systems, virtualization, and networking technologies. This role is engineered for a generalist -...
