×
Register Here to Apply for Jobs or Post Jobs. X
More jobs:

Offensive Security Engineer

Job in City of Poughkeepsie, Poughkeepsie, Dutchess County, New York, USA
Listing for: SwiftCruit
Full Time position
Listed on 2026-06-29
Job specializations:
  • IT/Tech
    Cybersecurity
  • Engineering
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 85000 - 115000 USD Yearly USD 85000.00 115000.00 YEAR
Job Description & How to Apply Below
Location: City of Poughkeepsie

Benefits

  • Competitive compensation
  • Medical, dental, and vision insurance
  • 401(k) retirement savings plan with substantial company match
  • Life and travel insurance
  • Tuition assistance
  • Wellness reimbursement program
  • Paid holidays and vacation
What is an Offensive Security Engineer?

We are seeking a diligent and experienced Offensive Security Engineer to join our team. In this role, you will be working within a group of highly motivated Information Technology and Cybersecurity professionals committed to keeping Central Hudson safe. The Offensive Security Engineer is responsible for conducting intelligence‑led threat emulation and purple team exercises to simulate real‑world adversaries, validate detection and response capabilities, and identify security control gaps.

This role partners closely with the SOC, threat intelligence, detection engineering, and infrastructure teams to continuously validate detections, assess control effectiveness, and drive measurable improvements across the detection‑to‑remediation lifecycle. The ideal candidate has a strong understanding of modern security principles, offensive security techniques, and attacker methodologies, along with excellent analytical skills and the ability to clearly communicate technical findings and risk to both technical and non‑technical stakeholders.

What

does an Offensive Security Engineer do?
  • Conducts targeted offensive testing activities in support of threat emulation and detection validation across networks, applications, cloud environments, and endpoints
  • Executes intelligence‑driven threat emulation exercises that replicate real‑world adversaries, campaigns, and tactics, techniques, and procedures (TTPs)
  • Performs vulnerability remediation testing to validate the effectiveness of fixes and compensating controls
  • Maps emulated activity to MITRE ATT&CK techniques and tracks detection coverage and gaps
  • Develops and maintains custom tools, scripts, and payloads to support testing activities
  • Safely exercises adversary techniques to evaluate the effectiveness of security controls and detections
  • Partners with blue team, SOC, and engineering teams to test detection and response capabilities
  • Implements, maintains, and enhances red team tooling and infrastructure to support penetration testing, adversary emulation, and purple team exercises
  • Leads and executes purple team exercises in close coordination with the SOC and Blue Team, sharing findings, techniques, and actionable recommendations to strengthen detection, response, and recovery capabilities
  • Assists in tuning and validating security controls, alerts, analytics, and incident response playbooks based on threat emulation outcomes
  • Validates security detections across SIEM, EDR, identity, and cloud platforms using repeatable and measurable testing scenarios
  • Produces clear, actionable reports detailing emulated adversary behavior, detection gaps, response gaps, and prioritized remediation guidance
  • Presents results to technical teams and leadership, translating technical risk into business terms
  • Tracks remediation progress and re‑tests identified issues
  • Stays current on emerging threats, adversary techniques, and offensive security tooling
  • Contributes to the development of red team methodologies, frameworks, and documentation
  • Supports threat intelligence‑driven testing aligned with real‑world attack trends
  • Consumes and operationalizes threat intelligence to inform adversary selection, scenario design, and testing priorities
  • Promotes and raises awareness by educating others about the importance of cybersecurity
  • Builds relationships with government and local agencies to promote collaborative information sharing
  • Stays updated with the latest cybersecurity trends, threats, and technologies
  • Participates in on‑call as needed to respond to security incidents outside of regular working hours
  • Provides support for storm restoration efforts
What does it take to be an Offensive Security Engineer?

Required:

  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science or related field of study. In lieu of a bachelor’s degree, an associate degree in the aforementioned fields and 3 years of information security engineering or…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary