Horizon3.ai Logo

Horizon3.ai

Staff Attack Engineer, OCI

Posted 20 Days Ago
Remote
Hiring Remotely in US
247K-275K Annually
Expert/Leader
Remote
Hiring Remotely in US
247K-275K Annually
Expert/Leader
Build OCI-focused offensive security capabilities for NodeZero: research Oracle Cloud services, identify attack paths and misconfigurations, develop production-quality Python tooling, analyze real-world OCI deployments, document findings, collaborate with engineers and SMEs, and prioritize OCI attack coverage based on customer demand and threats.
The summary above was generated by AI

Get to Know Us

Horizon3.ai is a fast-growing, remote cybersecurity company dedicated to the mission of enabling organizations to proactively find, fix and verify exploitable attack vectors before criminals exploit them. Our flagship product, the NodeZeroTM platform, delivers production-safe autonomous pentests and other key assessment operations that scale across the largest internal, external, cloud, and hybrid cloud environments. NodeZero has been adopted by organizations of all sizes, from small educational institutions to government agencies and Global 100 enterprises. It is used by IT Ops/SecOps teams, consulting pentesters, and MSSPs and MSPs.

We are a fusion of former U.S. Special Operations cyber operators, startup engineers & operators, and formerly frustrated cybersecurity practitioners. We're committed to helping solve our common security problems: ineffective security tools and false positives, resulting in alert fatigue, blind spots, "checkbox” security culture, cybersecurity skills shortage, and the long lead time and expense of hiring outside consultants. Collectively, we are a team of learn it alls, committed to a culture of respect, collaboration, ownership, and results.

What You’ll Do

We're looking for an Attack Engineer with deep Oracle Cloud Infrastructure (OCI) expertise to help build the next generation of cloud attack capabilities within NodeZero.

This is a highly strategic role. As OCI adoption continues to grow among large enterprises, government organizations, and AI-focused infrastructure providers, our customers are increasingly asking for deeper OCI coverage. We already support AWS, Azure, and GCP, and we're making a significant investment in OCI as the platform continues to gain traction among hyperscale customers and critical enterprise environments.

You'll join our NodeZero Attack team and take ownership of building OCI attack content from the ground up. You'll research Oracle cloud services, identify attack paths and misconfigurations, develop offensive capabilities, and help shape how NodeZero assesses Oracle Cloud environments at scale.

This is not a maintenance role. You'll be helping define Horizon3.ai's OCI offensive security strategy and will have a first-hand influence on how OCI attacks are integrated into the platform.

What You’ll Do

  • Research Oracle Cloud Infrastructure services and identify offensive security opportunities across the platform.

  • Develop new attack techniques, attack paths, and security assessments targeting OCI environments.

  • Build and maintain production-quality Python code that powers NodeZero attack capabilities.

  • Conduct offensive security research against OCI compute, networking, storage, databases, IAM, Kubernetes, and cloud-native services.

  • Analyze real-world OCI deployments to identify common attack vectors and customer risk patterns.

  • Collaborate closely with software engineers, attack engineers, and offensive security SMEs to bring new capabilities into production.

  • Document research findings, attack methodologies, and technical design decisions.

  • Help prioritize future OCI attack coverage based on customer demand and emerging threats.

  • Contribute to the technical direction of NodeZero's cloud attack capabilities.

What You’ll Bring

Required
  • Hands-on offensive security experience targeting Oracle Cloud Infrastructure (OCI).

  • Strong understanding of cloud attack paths and cloud-native security concepts.

  • Experience with web application testing, cloud penetration testing, external assessments, or red team operations.

  • Experience writing Python code for automation, tooling, or offensive security workflows.

  • Ability to independently research unfamiliar technologies and rapidly become an expert.

  • Strong written communication and technical documentation skills.

  • Passion for building products, not just finding vulnerabilities.

  • 10+ years of professional software engineering and or/ offensive security experience

Preferred
  • Experience attacking OCI Kubernetes Engine (OKE).

  • Experience with cloud privilege escalation and identity attacks.

  • Experience developing offensive security tooling.

  • Familiarity with AWS, Azure, or GCP offensive security.

  • Experience integrating security research into production software.

  • Knowledge of vulnerability management and attack path analysis.

Travel Required

We are a fully remote company, and this job may require up to 10% of travel to be successful.

Compensation and Values

At Horizon3, we believe that our people are our greatest asset, and our compensation philosophy reflects this core value. We are committed to fostering an environment where all employees feel valued, respected, and rewarded for their contributions. Our compensation structure is designed to be fair, competitive, and transparent, ensuring that every team member is recognized and compensated equitably across roles, levels, and locations.

In accordance with various State’s transparency regulations, we provide the following salary range information for this position:

  • Base salary range: $247,000 - $275,000. The exact salary will be determined based on the selected candidate’s location, qualifications, experience, and relevant skills.

  • Additional compensation: All full-time roles are eligible for an equity package in the form of stock options.

Perks of Horizon3.ai

  • Inclusive Team: We value diversity and promote an inclusive culture where everyone can thrive.

  • Growth Opportunities: Be part of a dynamic and growing team with numerous career development opportunities.

  • Innovative Culture: Work in a collaborative environment that encourages creativity and out-of-the-box thinking.

  • Hybrid & Remote Work: We embrace a mix of remote and hybrid work models depending on role and location, including our Chicago office, where some roles require regular in-office presence.

  • Competitive Compensation: We offer competitive salary, equity and benefits. Our benefits include health, vision & dental insurance for you and your family, a flexible vacation policy, and generous parental leave.

You Belong Here

Horizon3 is not just an equal opportunity employer - we are a community that values diversity, equity, and inclusion as fundamental principles of our culture and success. We are dedicated to fostering a workplace where everyone feels welcome and respected, regardless of race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, hair length or any other legally protected status by law.

Our commitment to diversity and inclusion means we strive to attract, develop, and retain a workforce that reflects the varied communities we serve. We believe that diverse perspectives drive innovation and strengthen our ability to create cutting-edge cybersecurity solutions. At Horizon3, every team member is valued and supported in an environment that encourages personal and professional growth.

We welcome candidates from all backgrounds and experiences, and we encourage all qualified individuals to apply. Come be a part of Horizon3, where your unique contributions are recognized, and your potential is limitless.

Other Duties

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. Duties, responsibilities, and activities may change at any time with or without notice.

Application Note

In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.

Similar Jobs

32 Minutes Ago
Remote or Hybrid
Senior level
Senior level
Big Data • Food • Hardware • Machine Learning • Retail • Automation • Manufacturing
Design, configure and deliver end-to-end supply planning solutions on the o9 platform. Translate business requirements into planning policies, build/maintain planning models, validate planning results, manage integrations with ERP (SAP ECC/S4/APO/ePPDS), ensure data quality, and support global implementations.
Top Skills: ErpO9Sap ApoSap EccSap EppdsSap IbpSap S4
An Hour Ago
Remote
Iowa, USA
140K-190K Hourly
Mid level
140K-190K Hourly
Mid level
Greentech • Hardware • Internet of Things • Machine Learning • Software • Business Intelligence • Agriculture
Drive new business and grow existing accounts across Western Iowa by prospecting, doing in-field sales and demos, managing pipelines, onboarding customers, and relaying field feedback to cross-functional teams. Own territory relationships, attend industry events, and meet aggressive sales targets while ensuring customer success and smooth deployments of Halter's virtual fencing solutions.
2 Hours Ago
Easy Apply
Remote or Hybrid
Boston, MA, USA
Easy Apply
130K-145K Annually
Senior level
130K-145K Annually
Senior level
Fintech • Real Estate • Software • Financial Services • PropTech
The Manager, Corporate Accounting will oversee all aspects of corporate accounting, technical accounting issues, internal controls, financial reporting, and manage a team while collaborating with cross-functional departments.
Top Skills: Asc 350-40Asc 606Asc 810Asc 860GaapNetSuite

What you need to know about the Boston Tech Scene

Boston is a powerhouse for technology innovation thanks to world-class research universities like MIT and Harvard and a robust pipeline of venture capital investment. Host to the first telephone call and one of the first general-purpose computers ever put into use, Boston is now a hub for biotechnology, robotics and artificial intelligence — though it’s also home to several B2B software giants. So it’s no surprise that the city consistently ranks among the greatest startup ecosystems in the world.

Key Facts About Boston Tech

  • Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
  • Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
  • Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
  • Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account