Offensive Security Engineer (Part-Time, Contract)

As one of the first pioneers of earned wage access, our passion at EarnIn is building products that deliver real-time financial flexibility for those with the unique needs of living paycheck to paycheck. Our community members access their earnings as they earn them, with options to spend, save, and grow their money without mandatory fees, interest rates, or credit checks. Since our founding, our app has been downloaded over 13M times and we have provided access to over $15 billion in earnings.

We’re fortunate to have an incredibly experienced leadership team, combined with world-class funding partners like A16Z, Matrix Partners, DST, Ribbit Capital, and a very healthy core business with a tremendous runway. We’re growing fast and are excited to continue bringing world-class talent onboard to help shape the next chapter of our growth journey.

POSITION SUMMARY

We are seeking a highly skilled and motivated Offensive Security Engineer to join our security team. The ideal candidate will be responsible for conducting penetration testing on our company applications, identifying vulnerabilities, and providing actionable recommendations to enhance our security posture. 

This is a part-time one-year contract position and will be remote, with the option to be hybrid if that is preferred. The US base salary range for this full-time position is $206,600 – $308,000. Our salary ranges are determined by role, level, and location.

WHAT YOU’LL DO

  • Conduct thorough penetration tests on web applications, mobile applications, APIs, and other company assets to identify security vulnerabilities.
  • Utilize both tools and manual techniques to discover security flaws and vulnerabilities.
  • Document all findings, providing actionable recommendations for remediation.
  • Analyze source code and architecture to discover opportunities for exploits.
  • Stay updated with the latest security trends, tools, and techniques. Conduct security research to identify new threats and vulnerabilities.
  • Provide training to development teams based on recurring findings to level up the security culture and maturity of the company.

WHAT WE’RE LOOKING FOR

  • Minimum of 5 years of experience in penetration testing, vulnerability assessment, and offensive security.
  • Proficiency in using penetration testing tools and experience developing custom tooling where necessary.
  • Strong understanding of web application security, OWASP Top Ten, and common vulnerability types.
  • Experience with programming & scripting languages (e.g., Python, JavaScript, JVM languages, C#).
  • Familiarity with network security principles and protocols.
  • Strong analytical and problem-solving abilities.
  • Excellent communication skills, both written and verbal.
  • Ability to work independently.
  • Detail-oriented with a focus on delivering high-quality results.

At EarnIn, we believe that the best way to build a financial system that works for everyday people is by hiring a team that represents our diverse community. Our team is diverse not only in background and experience but also in perspective. We celebrate our diversity and strive to create a culture of belonging. EarnIn does not unlawfully discriminate based on race, color, religion, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), gender identity, gender expression, national origin, ancestry, citizenship, age, physical or mental disability, legally protected medical condition, family care status, military or veteran status, marital status, registered domestic partner status, sexual orientation, genetic information, or any other basis protected by local, state, or federal laws. EarnIn is an E-Verify participant. 

EarnIn does not accept unsolicited resumes from individual recruiters or third-party recruiting agencies in response to job postings. No fee will be paid to third parties who submit unsolicited candidates directly to our hiring managers or HR team.