About
Uber
Job Description
Uber Overview
At Uber, we ignite opportunity by setting the world in motion. We take on big problems to help drivers, riders, delivery partners, and eaters get moving in more than 600 cities around the world.
We welcome people from all backgrounds who seek the opportunity to help build a future where everyone and everything can move independently. If you have the curiosity, passion, and collaborative spirit, work with us, and let's move the world forward, together.
Job Description
About the Role
Uber is seeking a Sr. Security Engineer - Red Team engineers to join the Offensive Security program helping us identify threat vectors before they can be exploited in our systems, services, cloud, or applications.
What You'll Do / What You'll Need / Bonus Points / About the Team
What You'll Do:
Perform penetration testing of Uber's systems, cloud services, applications, and networks to discover and document vulnerabilities.
Thoroughly document exploit chain/proof of concept scenarios for client consumption.
Build automated test platform and capabilities to scale penetration testing and to test threat detection and response capabilities.
Leverage strong communication skills to influence Executive Leaders and Domain Managers to prioritize and execute remediation plans.
What You'll Need:
5+ years experience in penetration testing or appsec, or 10 years in combination of roles doing reverse engineering, social engineering, and hardware hacking, and digital forensics and incident response (DFIR).
Advanced knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, and application security
engineering, and hardware hacking, and digital forensics and incident response (DFIR).
Advanced knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, and application security
Programming experience in several interpreted or compiled languages: Python, Golang, Ruby, C/C++, Java, C#
Proficient in two or more operating systems: Linux, Windows, Mac OS
Solid knowledge of vulnerability assessment and penetration best practices
Familiar with offensive TTPs (Tactics, Techniques and Procedures) including post exploitation and lateral movement
Experience with testing applications run within a cloud
Experience with penetration testing tools like, NMAP, Metasploit, CANVAS, Cobalt Strike, Empire, Burp Suite Pro, etc.
.
About Uber
Uber is a provider of a mobile application connecting passengers with drivers for hire.