Senior Manager, Attack Engineering
full-time
senior
Posted 19 hours ago
Apply Now
Stand out: build a proof-of-work pitch →
Free GitHub-based preview. Direct apply stays one click away.
Get weekly job alerts like this →Hiring for this role?
AI Market Demand Pack · $29 one-time
Compare this role's skills with the full AI hiring market. Get ranked demand, salary bands, leading companies, public source URLs, and a decision brief.
About this role
Get to Know Us
Horizon3.ai is a fast-growing, remote cybersecurity company dedicated to the mission of enabling organizations to proactively find and fix and verify exploitable attack vectors before criminals exploit them. Our flagship product, the NodeZeroTM platform, delivers production-safe autonomous pentests and other key assessment operations that scale across the largest internal, external, cloud, and hybrid cloud environments. NodeZero has been adopted by organizations of all sizes, from small educational institutions to government agencies and Global 100 enterprises. It is used by ITOps/SecOps teams, consulting pentesters, and MSSPs and MSPs.
We are a fusion of former U.S. Special Operations cyber operators, startup engineers, and formerly frustrated cybersecurity practitioners. We're committed to helping solve our common security problems: ineffective security tools, false positives resulting in alert fatigue, blind spots, "checkbox” security culture, cybersecurity skills shortage, and the long lead time and expense of hiring outside consultants. Collectively, we are a team of learn it alls, committed to a culture of respect, collaboration, ownership, and results.
SUMMARY
We’re seeking an experienced Engineering Manager to lead our External Attack Engineering organization. In this role, you’ll oversee a team responsible for designing, validating, and scaling offensive capabilities within the NodeZero platform targeting the modern external attack surface, including public-facing infrastructure, SaaS platforms, and externally-facing enterprise commercial software.
You’ll operate at the intersection of offensive security, engineering, and product, driving both hands-on technical direction and strategic execution. This leader will ensure our external attack capabilities reflect real-world attacker tradecraft while remaining production-safe, high-signal, and impactful for customers.
Ideal candidates bring a strong mix of technical depth, leadership experience, and product mindset, and are excited to build and scale a team shaping the future of autonomous offensive security.
ESSENTIAL FUNCTIONS
LEADERSHIP & TEAM DEVELOPMENT
- Lead and grow a team of Attack and Full-Stack Engineers specializing in the External Attack Surface, including Commercial and SaaS platform.
- Set technical direction, priorities, and quality standards for external offensive capabilities.
- Mentor engineers and raise the bar for offensive rigor, delivery quality, and customer-facing clarity.
- Drive hiring and organizational scaling as the External Attack team expands.
EXTERNAL ATTACK STRATEGY & EXECUTION (HACK, FIX, VERIFY, REPEAT)
- Own offensive strategy across:
- External and Public-facing platforms and infrastructure
- Enterprise SaaS and externally-facing enterprise commercial software
- Identity, SaaS providers, and enterprise platform layers
- Guide development of end-to-end attack methodologies (Discovery → verification):
- Drive continuous, at-scale discovery of public-facing external assets.
- Evaluate identity-centric threats by leveraging dark web and open-source intelligence to simulate credential compromise and phishing consequences.
- Implement stealth-oriented authentication and password testing methodologies reflecting modern attacker tradecraft.
- Simulate access abuse and data exfiltration across critical SaaS-based knowledge and information management ecosystems.
- Ensure NodeZero capabilities are realistic, production-safe, and aligned with modern attacker tradecraft.
PRODUCT & CROSS-FUNCTIONAL PARTNERSHIP
- Partner with Product and Design to translate field insights into prioritized roadmap input and productized capabilities.
- Create tight feedback loops between real-world attack findings and platform evolution.
- Help define next-generation attack surfaces across cloud and AI systems.
- Own the UI/UX and product design for the external attack surface and perimeter breach scenarios, including simplifying the configuration of attack operations and developing visualizations that translate complex attack paths into clear, actionable storytelling regarding customer risk, exploitability, and findings.
CUSTOMER & EXTERNAL IMPACT
- Oversee high-impact customer engagements and technical briefings.
- Ensure clear articulation of exploitability, business impact, and remediation.
- Contribute to external content such as blogs, demos, and thought leadership where appropriate.
COMPETENCIES / REQUIREMENTS
LEADERSHIP
- 5+ years leading offensive security, red team, or attack engineering teams.
- Experience managing teams of 6–10+ engineers and scaling organizations.
- Proven ability to balance hands-on technical depth with strategic leadership.
EXTERNAL ATTACK SURFACE EXPERTISE
- Strong expertise in one or more:
- External/Public-facing infrastructure attack surfaces
- Enterprise S
Similar Jobs
Related searches:
Get jobs like this delivered weekly
Free AI jobs newsletter. No spam.