Senior Security Engineer - (Offensive)

Responsibilities

• Partner with product and cloud engineering teams to design secure solutions
• Review product architectures, cloud configurations and code for security issues
• Perform application security assessments (authN/authZ) and code reviews
• Plan and execute penetration tests, red team exercises and bug bounty engagements
• Investigate, triage and remediate vulnerabilities and security incidents
• Procure, design and deploy security tooling and controls for cloud and endpoints
• Manage customer security enquiries and act as SME during incidents
• Monitor threat intelligence and update threat assessments and mitigations

Requirements

• AWS
• Application Security
• Pen Testing
• Red Teaming
• Vulnerability Management
• Threat Modeling
• STRIDE
• Python
• Bash
• AI Security
• Cloud Networking
• Firewall Policy

Preferred Qualifications

• Familiarity with Azure and GCP
• Experience with Google Workspace security
• Background in DevSecOps and CI/CD security
• Experience running bug bounty programs
• Prior experience in customer-facing security roles

Benefits

• Competitive pension arrangements (local schemes per office)
• Generous annual leave (varies by region; e.g., 28 days in some regions)
• Medical / health insurance coverage (region-dependent)
• Public transport / transportation support (region-dependent)
• Annual company growth bonus and global company kickoff events

About the Company

Sonar helps prevent code quality and code security issues from reaching production and amplifies developers' productivity. Rooted in the open source community, Sonar supports many languages and frameworks and is used by millions of developers worldwide. The Information Security team focuses on building trust with customers by ensuring product and platform security. Sonar operates globally with hub offices and flexible work policies; certain locations (including Dubai) operate fully remotely and the company supports hybrid working in many hubs, so this role can be workable from UAE/MENA under the company's flexible location arrangements.