At Siemba, we love solving cybersecurity problems. Recognized as a Global Top 250 Cyber Security Provider and a Venture Atlanta Showcase Company, we are on a mission to redefine and revolutionize the PTaaS (Penetration Testing as a Service) and Autonomous Pentesting market. Our customers include Big 4 consulting firms, top government agencies, and cutting-edge technology organizations.

We are a US-based company founded by seasoned cybersecurity leaders who have served Fortune 50 enterprises and government customers. As part of our R&D and Offensive Security team, you will play a critical role in advancing our next-generation security testing platform and methodologies.

This role is part of Siemba’s Product R&D team, where offensive security expertise is transformed into automated vulnerability detection, attack logic, and AI-driven testing workflows.

What you will do

• Conduct research initiatives for new product capabilities and proactively optimize existing detection logic to enhance testing performance, accuracy, and depth.
• Brainstorm innovative product features by conducting thorough competitor analysis and research.
• Support the development team during the implementation phase from a technical perspective, ensuring that the feature is implemented accurately and performs effectively within the product.
• Execute and validate automated scans alongside deep manual testing to benchmark, tune, and improve DAST signal quality and reduce false positives.

You should apply if you have

• 2-4 years of experience in offensive security, specifically with a focus on vulnerability research and developing custom detection logics.
• A proven track record in Bug Bounty programs (e.g., HackerOne, Bugcrowd) with documented hall of fame recognitions or high impact vulnerability disclosures.
• Deep working knowledge of tools like BurpSuite, Kali Linux, Qualys, and experience with automation/scripting (Python, Go, or Bash).
• Certifications: OSCP, OSCE, OSEP, CEH Master, or equivalent advanced offensive security certifications.
• Experience in mapping kill chains, performing Root Cause Analysis, and designing complex pentest strategies.
• Flexibility working remotely with a globally distributed team.