Sr. Offensive Security Engineer at Gong.io

San Francisco, California, United States

Apply Now
Gong.io Logo
Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Technology, AI/ML, CybersecurityIndustries

Requirements

  • 5+ years of offensive security experience
  • Threat modeling in a cloud environment
  • In-depth knowledge of Secure SDLC
  • AWS Experience - a must
  • Familiarity with attack frameworks and mitigation
  • Experience with DAST and SAST
  • Experience with application security testing tools such as Burp Suite, Corellium, or MobSF
  • Experience with the MITRE ATT&CK Framework, TTP development and execution
  • Experience with common C2 frameworks such as Sliver, Mythic, or Cobalt Strike
  • Understanding and identification of the OWASP Top 10 vulnerabilities
  • Security certifications such as GIAC’s GPEN, GXPN or Offensive Security certifications such as OSCP, OSCE, OSWE or OSWA

Responsibilities

  • Be a part of Red Team operations and development within Ethical Hacking Methodologies from kickoff to remediation
  • Conduct Red Team assessments against cloud environments and enterprise threat landscape to identify vulnerabilities in software, systems, networks, and logic
  • Research and verify known attacks, exploits, and security weaknesses using researched and/or developed custom tools
  • Develop accurate comprehensive reports and presentations for both technical and executive audiences that assist all other security team colleagues
  • Leads and drives Red Team internal development of scripts, tools, or methodologies to enhance Gong’s red teaming, offensive security operations and development
  • Working with the IT, R&D engineering, & DevOps teams to ensure we have a comprehensive secure software development life cycle program
  • On occasion assists with purple team exercises, penetration tests and security assessments from kickoff to remediation, mentoring less experienced staff
  • Assist with threat models with the developers and architecture teams
  • Build out the function and manage a team of other offensive security engineers
  • Assist with Gong’s Bug Bounty program
  • Understand what features the team should prioritize from a product security perspective
  • Effectively communicate findings to stakeholders, including technical staff, executive leadership and legal counsel

Skills

Red Team
Ethical Hacking
Cloud Security
Vulnerability Assessment
Exploit Development
Custom Tools
Offensive Security
Penetration Testing
Script Development
Security Research

Gong.io

Revenue intelligence platform for customer interactions

Website

About Gong.io

Gong provides a platform focused on revenue intelligence, which helps businesses capture and analyze customer interactions. The platform uses artificial intelligence to integrate various customer communications into one system, allowing companies to gain insights that inform their decision-making and enhance revenue growth. Gong caters to a wide array of clients, including sales, marketing, and customer success teams across different industries. Its subscription-based model allows organizations to pay for access to the platform, with pricing tiers based on user count and desired features. The main goal of Gong is to support businesses in optimizing their go-to-market strategies by delivering actionable insights derived from customer data.

San Francisco, CaliforniaHeadquarters
2015Year Founded
$570.1MTotal Funding
SERIES_ECompany Stage
Enterprise Software, AI & Machine LearningIndustries
1,001-5,000Employees

Benefits

Mental health support resources
Weekly wellness events
Work from home stipend
Generous vacation days
Quarterly recharge company shutdowns
Parental leave
Employee equity
Retirement savings & financial coaches
Commuter & parking benefits
Training & learning programs
Monthly lunch & learns
Mentor & buddy programs

Risks

Increased competition from Highspot and Seismic may pressure Gong's market share.
Rapid market growth could attract new entrants, impacting Gong's growth trajectory.
Challenges in measuring AI success may affect customer retention and acquisition.

Differentiation

Gong's platform integrates all customer interactions into a single system for better insights.
The company uses proprietary AI to analyze customer interactions, enhancing decision-making.
Gong's subscription model offers tiered access based on user numbers and functionality.

Upsides

Gong's integration with ChurnZero enhances customer success management with AI-driven insights.
The company's inclusion in Forbes Cloud 100 highlights its market leadership and innovation.
Gong's 'Ask Anything' solution boosts win rates by 26%, enhancing revenue team efficiency.

Related Jobs

San Antonio
Remote iconRemote

Senior Penetration Tester

Humana
Salary not specified
United States
Remote iconRemote

Copy of Security Consultant

Maze
$120,000 - $140,000/year
  • Employment type iconFull Time
  • Experience level iconJunior (1 to 2 years)
Remote
Remote iconRemote

Team Lead (Compute Team)

Neon
Salary not specified
  • Employment type iconFull Time
  • Experience level iconJunior (1 to 2 years), Senior (5 to 8 years)
Remote
Remote iconRemote

Staff Application Security Engineer (Security)

Phantom
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
United States +4 more
Remote iconRemote

Security Engineer, Product Security

Chainlink Labs
Salary not specified
  • Employment type iconFull Time
  • Experience level iconMid-level (3 to 4 years), Senior (5 to 8 years)
United States
Remote iconRemote

Senior Application Security Engineer

M&T Bank
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
Washington
Remote iconRemote

Sales Engineer - Federal

SpyCloud
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)

Land your dream remote job 3x faster with AI

Try Jobo Free