joblaze
← Back to results

Member of Technical Staff (Offensive Security Engineer)

Perplexity Security
Location
San Francisco
Compensation
Not disclosed
Level
senior
Type
full time
Apply at Perplexity → Save job

Skills & Technologies

AWS nuclei BloodHound Cobalt Strike Burp Suite Sliver Metasploit Go Python Kubernetes Mythic

Requirements

Experience
5+ years

Joblaze summary

In this role, the Offensive Security Engineer at Perplexity is responsible for executing red team operations and penetration tests to identify vulnerabilities across various platforms, including cloud infrastructure and AI systems. The position requires deep expertise in cloud security, application security, and strong programming skills, particularly in Python or Go. Ideal candidates will have over five years of hands-on experience in offensive security and a proven track record of discovering significant vulnerabilities. Perplexity's dynamic security team emphasizes collaboration with engineering to enhance the overall security posture.

Joblaze insights

Quick facts

How much experience is required?
At least 5 years of relevant experience for this Member of Technical Staff (Offensive Security Engineer) role.
What's the tech stack?
Joblaze extracted these technologies from the posting: AWS, nuclei, BloodHound, Cobalt Strike, Burp Suite, Sliver.
What seniority level is this role?
Perplexity targets senior candidates for this position.
Is this full-time or contract?
Full-time for this Member of Technical Staff (Offensive Security Engineer) role at Perplexity.

From the original posting

Perplexity is seeking a highly skilled, experienced and hands-on Offensive Security Engineer to join our dynamic security team, taking an adversarial approach to hardening Perplexity's infrastructure, applications, and AI systems. You'll plan and execute red team operations, penetration tests, and attack simulations across our cloud infrastructure, web and mobile applications, AI/ML pipeline, and corporate environment—finding real vulnerabilities before adversaries do and working directly with engineering teams to drive remediation.

Responsibilities

  • Plan and execute red team and purple team engagements simulating advanced threat actors across cloud infrastructure (AWS, Kubernetes), endpoints, and application surfaces

  • Conduct continuous penetration testing of web applications, APIs, mobile clients, browser extensions, cloud infrastructure, and internal services

  • Assess AI/ML-specific attack surfaces including prompt injection, model exfiltration, agent abuse, tool-use exploitation, and MCP security boundaries

  • Develop and maintain custom offensive tooling, exploits, and automation to improve the efficiency and coverage of security testing

  • Perform open-scope adversary simulations that test detection and response capabilities end to end, collaborating closely with the defensive security team

  • Drive threat modeling sessions with engineering teams to identify and prioritize attack vectors in new features and architectures

  • Deliver clear, actionable findings to both technical and executive audiences; partner with engineering to validate remediations

  • Contribute to the security of CI/CD pipelines, supply chain integrity, and secrets management through offensive assessment

  • Stay current on emerging attack techniques, vulnerability research, and adversary tradecraft; bring external perspective into Perplexity's security strategy

Qualifications

  • 5+ years of hands-on experience in offensive security, red teaming, or penetration testing

  • Deep technical expertise in at least two of: cloud security (AWS/GCP/Azure), web/API application security, Kubernetes and container security, macOS/Linux endpoint security, network penetration testing, or CI/CD pipeline security

  • Track record of discovering impactful vulnerabilities or developing novel attack techniques in production environments

  • Strong programming and scripting skills in Python, Go, or similar languages; comfortable writing custom tooling and exploits

  • Experience with industry-standard offensive tools (Burp Suite, Cobalt Strike / Sliver / Mythic, Metasploit, BloodHound, nuclei, etc.) and ability to operate beyond them

  • Excellent written and verbal communication; able to translate complex technical findings into clear risk narratives

  • Experience assessing AI/ML systems, LLM applications, or agentic workflows for security vulnerabilities

  • Bonus: Published security research, conference talks (DEF CON, Black Hat, BSides), CVE credits, or meaningful bug bounty contributions

Apply at Perplexity → Save job

Similar positions

Perplexity
Member of Technical Staff (Software Engineer, Security)
Perplexity · San Francisco
Perplexity
Member of Technical Staff (Cloud Security Engineer)
Perplexity · San Francisco
Perplexity
Member of Technical Staff (Secure Intelligence Institute)
Perplexity · San Francisco
Perplexity
Member of Technical Staff (Backend Software Engineer)
Perplexity · San Francisco
Perplexity
Member of Technical Staff (Software Engineer, Computer)
Perplexity · San Francisco

Explore more

Aws Nuclei Bloodhound Cobalt Strike Burp Suite Aws in San Francisco Nuclei in San Francisco Bloodhound in San Francisco Senior Aws Senior Nuclei