Ensign is hiring !
Overview
As an Cyber Security Engineer, you will support the development, integration, and operation of offensive security platforms and tooling used by our delivery teams for penetration testing, red teaming, and emerging AI security engagements.
This role combines elements of platform engineering and offensive security consulting, providing an opportunity to build hands-on experience in cybersecurity platforms, integrations, adversary simulation, and AI security testing.
You will work closely with senior consultants, engineers, and client teams to support engagements, improve platform capabilities, and contribute to the delivery of innovative offensive security services.
This role offers a growth path into offensive security consulting, solutioning, and client-facing engagements as technical expertise develops.
Key Responsibilities
- Support the development, maintenance, and enhancement of platform integrations connecting client environments, internal systems, and security tooling.
- Develop and maintain APIs, connectors, automation scripts, and reusable components.
- Assist in configuring and adapting the platform to support different client environments and engagement requirements.
- Troubleshoot platform, deployment, integration, and connectivity issues across multiple environments.
- Contribute to technical documentation, integration guides, and operational playbooks.
- Work with engineering teams to improve platform reliability, performance, and scalability.
- Support penetration testing and red team activities under the guidance of senior consultants.
- Assist with reconnaissance, vulnerability validation, and security assessments across network, application, cloud, and Active Directory environments.
- Help develop and maintain offensive tooling, scripts, and testing methodologies.
- Contribute to research into emerging attack techniques and offensive security trends.
- Support the delivery of customer engagements and post-engagement activities, including documentation and reporting.
- Assist with the assessment of AI-enabled applications and systems for security weaknesses.
- Support testing activities involving prompt injection, jailbreak techniques, and other emerging AI security risks.
- Contribute to research on AI security frameworks, methodologies, and attack techniques.
- Support the development of AI security capabilities and service offerings.
- Support technical discovery sessions and requirements gathering activities.
- Assist with technical demonstrations, proof-of-concept activities, and platform walkthroughs.
- Work with consultants and solution architects to translate customer requirements into technical solutions.
- Over time, develop the skills and confidence to participate more actively in customer-facing discussions and solutioning activities.
Required Qualifications
- Degree in Computer Science, Cyber Security, Information Technology, Engineering, or a related discipline.
- Up to 2 years of experience in software engineering, platform engineering, cybersecurity, or related technical roles. Fresh graduates with relevant internship or project experience are welcome to apply.
- Basic programming or scripting skills in at least one language such as Python, PowerShell, Go, Java, or C#.
- Understanding of networking concepts, operating systems (Windows/Linux), and system administration fundamentals.
- Familiarity with APIs, automation, and system integrations.
- Basic understanding of cloud platforms such as AWS, Azure, or GCP.
- Strong analytical and problem-solving skills with a willingness to learn new technologies.
- Interest in offensive security, penetration testing, or red teaming.
- Curiosity about AI technologies and emerging AI security risks.
- Strong communication and teamwork skills.
Preferred Qualifications
- Exposure to cybersecurity tools or security-related projects.
- Familiarity with penetration testing concepts or common security tools such as Burp Suite, Metasploit, Nmap, or BloodHound.
- Experience with scripting, automation, or software development projects.
- Exposure to containers or cloud-native technologies such as Docker or Kubernetes.
- Participation in Capture-the-Flag (CTF) competitions, hackathons, or cybersecurity communities.
- Exposure to AI/ML concepts or LLM applications would be advantageous.
- Interest in developing client-facing consulting and solutioning skills.