Senior Offensive Security Engineer

<p>Are you an experienced Senior Offensive Security Engineer that wants to work with cutting-edge cybersecurity technologies and contribute to enhancing our overall security posture?  <span data-contrast="auto">At Ivanti, we work passionately and authentically, striving to win together and make a real impact for our customers and each other. Join us to elevate your career and help deliver innovative solutions in a dynamic, empowering environment. </span></p> <p><strong>Why this role matters</strong></p> <p>As a Senior Offensive Security Engineer, you will play a crucial role in assessing the security of applications, networks, and systems by simulating cyberattacks.  Ivanti's Security Department is responsible for implementing and maintaining organization-wide information security policies, standards, guidelines, and procedures.  The teams ultimate goal is to keep Ivanti, our data, our customers and employees safe, and the Senior Offensive Security Engineer, is responsible for evaluating the security of applications, networks, and systems by simulating cyberattacks.</p> <p><strong>What you’ll do:</strong></p> <ul> <li>Assess security of applications, networks, and systems by simulating cyberattacks.</li> <li>Manage disclosure programs and collaborate with internal teams to prioritize and resolve vulnerabilities, and conduct penetration tests.</li> <li>Establish and maintain communication channels with the security research community to promote awareness of the responsible disclosure program and encourage participation. </li> <li>Receive and triage vulnerability reports submitted by external researchers through various channels, such as email, web form, or bug bounty platform. </li> <li>Collaborate with internal security teams to assess the severity and impact of reported vulnerabilities and prioritize them for resolution based on risk. </li> <li>Facilitate communication and collaboration between researchers and relevant stakeholders, including development teams, IT operations, and product managers, to ensure timely resolution of identified security issues. </li> <li>Track the progress of vulnerability remediation efforts and ensure that issues are addressed within agreed-upon timelines. </li> </ul> <p><strong>What you will bring:</strong></p> <ul> <li>5 years of experience in cybersecurity, with a focus on penetration testing and vulnerability assessment. </li> <li>Responsible Disclosure Program (VDP) and Bugbounty program management </li> <li>CEH, Offensive Security Certified Professional (OSCP), or other relevant certifications. </li> <li>Strong understanding of networking prot