Offensive Security Lead

  • Full-time

Company Description

Square builds common business tools in unconventional ways so more people can start, run, and grow their businesses. When Square started, it was difficult and expensive (or just plain impossible) for some businesses to take credit cards. Square made credit card payments possible for all by turning a mobile phone into a credit card reader. Since then Square has been building an entire business toolkit of both hardware and software products including Square Capital, Square Terminal, Square Payroll, and more. We’re working to find new and better ways to help businesses succeed on their own terms—and we’re looking for people like you to help shape tomorrow at Square.

Job Description

Product Security is a critical foundational engineering capability, ensuring the ability to ship hardware and software with the fewest number of defects, and providing visibility into our technical risk posture. The team is growing and we are opening a new role to drive offensive operations at scale focusing on value creation for our internal customers, the border information security team, and partners across our ecosystem. Heading up the Purple, Red, Orange (PRO) Team you will build, define, and lead a team in identifying unknown vulnerabilities in our technology ecosystem and inform the design of defensive capabilities. You will lead teams in conducting targeted operations that emulate the tools, tactics and procedures (TTPs) of motivated threat actors across the entirety of Square’s global footprint. 

In this role, you will:

  • Manage a team that performs reverse engineering, technical security assessments, code audits and red team assessments.

  • Lead innovative research with the goal of developing new TTPs improving attack efficacy and assist with defensive counter-measures

  • Partner with information security teams to develop tooling and instrumentation to improve our detection and response capabilities.

  • Coach and mentor team members to enhance their discovery and security capabilities

  • Foster positive relationships with product and engineering teams, facilitating interaction and education across a multitude of security domains. 

Qualifications

 

You have:

  • Experience leading offensive operations in enterprise environments

  • Recruited, grown and retained high performing team members expanding their talent portfolio and providing a meaningful career path

  • Building, deploying, and managing offensive security operational infrastructure

  • Open source intelligence gathering and social engineering

  • Expertise with commodity and advanced threat actor TTPs

Additional Information

At Square, we value diversity and always treat all employees and job applicants based on merit, qualifications, competence, and talent. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance. Applicants in need of special assistance or accommodation during the interview process or in accessing our website may contact us by sending an email to assistance(at)squareup.com. We will treat your request as confidentially as possible. In your email, please include your name and preferred method of contact, and we will respond as soon as possible.

Perks

At Square, we want you to be well and thrive. Our global benefits package includes:
  • Healthcare coverage
  • Retirement Plans
  • Employee Stock Purchase Program
  • Wellness perks
  • Paid parental leave
  • Paid time off
  • Learning and Development resources
Privacy Policy