[Remote] Offensive Security Engineer (Remote)
Note: The job is a remote job and is open to candidates in USA. Charles Schwab is a company dedicated to transforming the finance industry through innovative technology solutions. They are seeking an Offensive Security Engineer to scope, design, and execute cybersecurity offensive operations, including penetration tests and threat emulation exercises, while collaborating with defensive teams to enhance security posture.ResponsibilitiesScope, develop and execute penetration tests, purple team assessments and red team exercisesDesign and develop tools, infrastructure and exploits in support of red team operationsResearch and implement assessments based on emerging threats, threat intelligence, and vulnerabilitiesIdentify gaps in threat detection, Prevention and responseWork collaboratively with counterparts in Cyber Defense roles to enhance the firms security postureEffectively communicate vulnerabilities, risks and technical findings to stakeholders and work with stakeholders to recommend and validate mitigating controlsSkills5+ years of experience in offensive security, penetration testing or red team roleExperience with common red team adversary emulation tooling and C2 frameworksAdvanced knowledge of the tools, tactics, procedures and counter measuresExperience researching emerging threats and TTP's, developing complementary assessments, and executing those assessments to understand and manage risk and develop appropriate counter measuresExperience evaluating, reporting and communicating risk at both the technical level (ATT&CK/STRIDE/DREAD) and at an audience appropriate level with stakeholders across the firmExperience working with cross-discipline project teams to advance security within the firmIn-depth experience with one or more of the following cybersecurity disciplines: Endpoint Penetration testing with a focus on bypassing modern EDR controls (across Windows, Mac and Linux), Exploit & Malware Development, Web Application Penetration Testing, Cloud Penetration Testing, AI Red Teaming, and Assessing digital assets and cryptocurrency solutionsOne or more of the following security certifications preferred: Offensive Security Certified Professional OSCP, GIAC Penetration Tester GPEN, GXPN Offensive Security Certified Professional or similar security certification(s)BS in Computer Science or equivalent degree/experience desiredOperational blue team experienceCompany OverviewWe have plans for every turn you take. It was founded in 1973, and is headquartered in San Francisco, California, USA, with a workforce of 10001+ employees. Its website is https://www.schwab.com/.Company H1B SponsorshipCharles Schwab has a track record of offering H1B sponsorships, with 92 in 2026, 579 in 2025, 468 in 2024, 455 in 2023, 705 in 2022, 483 in 2021, 282 in 2020. Please note that this does not guarantee sponsorship for this specific role.