Lead Offensive Security Engineer (Remote) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Experian · 5 hours ago

Lead Offensive Security Engineer (Remote)

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
date8+ years exp

Experian is a global data and technology company, powering opportunities for people and businesses around the world. The Lead Offensive Security Engineer will lead the design and execution of adversary simulation assessments and contribute to collaborative purple team exercises to enhance the organization's security posture.

AnalyticsBig DataCyber SecurityFinTechFraud DetectionInformation Services
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Collaborate with other teams within the Cyber Fusion Center and the wider organization to ensure threat-informed Cyber Risks are understood and articulated, with a goal of contributing to the successful defense of the organization
Support Offensive Security's engagement at multiple organizational levels, from senior leaders to technical analysts, to help guide risk understanding and verify the efficacy of remediation/mitigative actions
Participate in performing physical exploitation, network exploitation, and social engineering assessments against authorized targets
Leverage Cyber Threat Intelligence, Offensive Security Research, previous Adversary Simulation (Red Team) findings, and internal risk intelligence to develop test cases demonstrating TTP effectiveness against Experian's control environment
Help establish and lead Social Engineering and Human Risk Assurance functions
Work with the team to provide remediation recommendations across the organization to aid with remediation/mitigation of identified Cyber Risks
Develop scripts, tools, and methodologies to increase Offensive Security's capabilities and educate other team members
Use AI tools to help with Offensive Security activities while complying with Experian's Acceptable Use of AI policies and Offensive Security Rules of Engagement
Use MITRE ATT&CK Framework and other structured attack analysis tools to describe and classify attacker methodology and significance

Qualification

Offensive SecurityAdversary SimulationNetwork Penetration TestingSocial Engineering AssessmentsCyber Threat IntelligenceProgramming/Scripting LanguagesCloud SecurityMITRE ATT&CK FrameworkHuman Risk KnowledgeIndustry CertificationsWindows OS KnowledgeInformation Technology ConceptsGenAI Platforms Knowledge

Required

8+ years of cybersecurity experience, 3+ years of experience in offensive security and adversary simulation
Understanding of Human Risk and experience performing social engineering assessments, which can move the needle on Human Risk
Detailed knowledge of global cyber threats, threat actors, and the tactics, techniques and procedures used by cyber adversaries, specifically those targeting the financial services and healthcare sectors
3+ years of experience in two or more of the following areas: Network penetration testing and manipulation of network infrastructure, Web application penetration testing assessments, Email, phone, or physical social-engineering assessments, Developing, extending, or modifying exploits, shell code or exploit, Covert physical intrusion, Cloud security or penetration testing (any major provider)
Proficient in attacker tooling, including post-exploitation frameworks and tooling
Proficient in one or more of the following programming/scripting languages (C, C++, C#, Go, Python, PowerShell, Bash, or Ruby)
Knowledge of current cloud attack methodologies and mitigations
Knowledge of Windows Operating System architecture and internals, and use thereof in an enterprise environment
Social Engineering knowledge, such as OSINT, spear phishing, vishing, and other initial access methods
Knowledge of core Information Technology concepts such as TCP/IP networking, Windows & Active Directory, Unix/Linux, Mainframe, Cloud Service Providers, Relational Databases, Data Warehouses, and filesystems
Knowledge of IT technologies and methods to secure them, specifically for databases, SharePoint, storage area networks, cloud-based storage, and data warehouses
Knowledge of GenAI platforms and how they can be combined with agentic workflows
Industry certifications such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, GXPN, or equivalent experience

Benefits

Great compensation package and bonus plan.
Core benefits including medical, dental, vision, and matching 401K.
Flexible work environment, ability to work remote, hybrid or in-office.
Flexible time off including volunteer time off, vacation, sick and 12-paid holidays.

Company

Experian

twittertwittertwitter
Glassdoor4.3
company-logo
Experian is a data analytics and consumer credit reporting company.
dateFounded in 1980
location
Dublin, Dublin, IRL
people-size10001+ employees
web-link
http://www.experianplc.com

H1B Sponsorship

Experian has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (8)
2024 (18)
2023 (9)
2022 (16)
2021 (19)
2020 (23)

Funding

Current Stage
Public Company
Total Funding
$1.31M
Key Investors
Fair4All Finance
2025-11-25Grant· $1.31M
2006-10-11IPO

Leadership Team

leader-logo
Brian Cassin
Chief Executive Officer
leader-logo
Chris Fletcher
CPO / SVP Cloud & Decisioning Software
linkedin

Recent News

Morningstar.com
Experian wins Gold in Brandon Hall Group’s Excellence in Technology Awards
2026-01-09
EuropaWire
Brandon Hall Group Recognizes Experian for Excellence in HR Verification Solutions
2026-01-09
thefly.com
OptimizeRx announces data collaboration with Experian
2026-01-08
Company data provided by crunchbase