Senior Offensive Security Engineer

About the team + role

Robinhood is looking for an Offensive Security Engineer to join the Red Team—a core function within the Offensive Security team and the broader Safety & Productivity Engineering organization. Our team leverages Red Teaming and Adversarial Simulation to evaluate security controls, surface real-world risks, and continuously harden Robinhood’s platforms, properties, and people!

You’ll play a hands-on role in validating assumptions, executing stealth simulations, and improving Robinhood’s ability to detect and respond to sophisticated adversaries. This role partners deeply with Detection & Response, Physical Security, and Engineering to help shape secure systems through threat modeling, pen testing, and research-driven tactics.

The role is located in the office location(s) listed on this job description which will align with our in-office working environment. Please connect with your recruiter for more information regarding our in-office philosophy and expectations.

What you’ll do

• Evangelize the Offensive Security Team’s Findings and Projects with stakeholders throughout the company and collaborate with other teams to create solutions that balance security with other priorities.
• Mentor and provide guidance to the members of the Offensive Security team.
• Utilize threat modeling to identify threats and shape Red Team priorities and exercises.
• Plan and execute long term, broadly scoped, black box Red Team exercises utilizing vulnerability research, exploit development, and utilizing public proof of concept code.
• Perform penetration testing, code reviews, and design/architecture reviews.
• Write tooling to assist with and automate Red Team assessments.
• Plan and participate in Adversarial Simulation exercises with various security teams.
• Lead Security Incidents when Pentest or Red Team findings require them.
• Publish blog posts and present talks at security conferences.

What you bring

• 5+ years of red teaming or offensive security experience, with a proven track record of driving impactful outcomes
• Strong mentorship experience and a passion for developing others
• Excellent communication skills—able to articulate complex security risks across technical and executive audiences
• Hands-on experience with MacOS and Linux systems, and familiarity with DNS, TCP/IP, and related protocols
• Experience attacking and securing cloud platforms (AWS, GCP), CI pipelines, and container orchestration systems (Docker, Kubernetes)
• Ability to evade modern defensive tools and understand their detection logic (IDS, IPS, AV, EDR, etc.)
• Proficiency in scripting or programming with Python, Go, or JavaScript
• Deep understanding of the MITRE ATT&CK framework and adversary TTPs
• Strong collaboration skills and comfort working on distributed teams with clear documentation practices

Bonus points

• Experience in the Financial Technology domain
• Previous leadership or technical lead responsibilities in red team or security engineering functions

Our team is committed to providing an inclusive and welcoming interview experience for all candidates. If you require a specific accommodation during the application or interview process due to a physical or mental condition, please complete this Applicant Accommodation Form to notify our team. The form should only be completed if you need a specific accommodation.

AI Usage Disclosure: Robinhood uses artificial intelligence (AI) tools to support parts of our recruiting process. These tools enhance the efficiency and consistency of our hiring process; however, all hiring decisions are made by our hiring teams.

Vacancy Notice: This job posting represents an existing vacancy that we are actively seeking to fill.