Apply on Employer Site

AXS · 1 month ago

Principal Penetration Testing Engineer

Scottsdale, AZ

Full-time

Onsite

Lead/Staff

$162K/yr - $202K/yr

15+ years exp

AXS is a company that connects fans with artists and teams they love, selling millions of tickets each year. They are seeking a Principal Penetration Testing Engineer to lead sophisticated adversary emulation campaigns and enhance their offensive security program, working closely with incident response teams and shaping security strategy at executive levels.

Media and Entertainment

No H1B

Responsibilities

Design complex red team operations spanning weeks or months, operating covertly to test detection and response capabilities across the entire kill chain

Build and maintain sophisticated C2 infrastructure with multi-layer redirectors, domain fronting, and encrypted covert channels

Create comprehensive adversary emulation playbooks that defensive teams can use for tabletop exercises and detection validation

Develop custom tooling, exploits, and evasion techniques to bypass modern security controls (EDR, SIEM, DLP, next-gen firewalls)

Develop and refine detection engineering rules based on offensive TTPs, ensuring blue teams can identify sophisticated adversary behavior

Facilitate purple team exercises bringing red and blue teams together for collaborative security validation and continuous improvement:

Lead adversary emulation campaigns based on real threat actor TTPs, mapping all activities to MITRE ATT&CK and ensuring realistic simulation of APT groups targeting our industry

Conduct proactive threat hunting campaigns leveraging hypothesis-driven investigation, behavioral analytics, and threat intelligence

Conduct zero-day research and vulnerability discovery through fuzzing, patch analysis, and novel attack surface exploration

Test detection capabilities against realistic attack scenarios, identifying blind spots and tuning security controls for higher fidelity

Provide expert advice on eviction operations, coordinating simultaneous remediation across compromised systems while preventing adversary reinfection

Engage live adversaries in controlled scenarios to gather intelligence, understand objectives, and develop containment strategies

Serve as cyber security subject matter expert during active security incidents, applying offensive expertise to threat hunting, attack path reconstruction, and adversary prediction

Qualification

Adversary emulationPenetration testingIncident responseThreat huntingRed team operationsDetection engineeringCustom tooling developmentCommunication skillsTeam collaborationProblem-solving

Required

BS in Computer Science or 10 years full-time experience in a computer science role in lieu of a degree

15+ years in information security with at least 5 years in offensive security roles (red team, penetration testing, exploit development)

5+ years in incident response, threat hunting, or defensive security operations demonstrating deep understanding of detection and defensive capabilities

Proven track record leading complex red team engagements against Fortune 500 or similarly complex enterprise environments

Experience serving as technical subject matter expert or incident manager during active security incidents involving sophisticated adversaries

Demonstrated expertise conducting adversary emulation campaigns