Horizon3 AI - Manager, Attack Engineering

• Essential Functions • Leadership & Team Development • Lead and grow a team of Attack Engineers specializing in cloud providers, container orchestration platforms, and AI systems (AWS, Azure, OCI, GCP, Kubernetes). • Set technical direction, priorities, and quality standards for cloud offensive capabilities. • Mentor engineers and raise the bar for offensive rigor, delivery quality, and customer-facing clarity. • Drive hiring and organizational scaling as the Cloud Ops team expands. • Cloud Offensive Strategy & Execution • Own offensive strategy across: • AWS, Azure, OCI, GCP and multi-cloud environments • Kubernetes and container ecosystems • Identity, access, and enterprise platform layers • AI/LLM-integrated systems • Guide development of end-to-end attack methodologies: • Discovery → exploitation → privilege escalation → lateral movement → impact → verification • Ensure NodeZero capabilities are realistic, production-safe, and aligned with modern attacker tradecraft. • Product & Cross-Functional Partnership • Partner with Product and Design to translate field insights into prioritized roadmap input and productized capabilities. • Create tight feedback loops between real-world attack findings and platform evolution. • Help define next-generation attack surfaces across cloud and AI systems. • Customer & External Impact • Oversee high-impact customer engagements and technical briefings. • Ensure clear articulation of exploitability, business impact, and remediation. • Contribute to external content such as blogs, demos, and thought leadership where appropriate. • 5+ years leading offensive security, red team, or attack engineering teams. • Experience managing teams of 6–10+ engineers and scaling organizations. • Proven ability to balance hands-on technical depth with strategic leadership. • Cloud Offensive Security • Strong expertise in one or more: • AWS, Azure, OCI, or GCP attack surfaces • Kubernetes / container security • Identity and access abuse (IAM, RBAC, federation, privilege escalation) • Deep understanding of: • cloud misconfigurations and exploitation paths • data access and control-plane compromise • multi-account / multi-tenant attack scenarios • Ability to chain attack paths end-to-end and clearly explain impact. • Technical / Engineering Fluency • Strong background in software engineering (Python preferred). Experience with APIs, cloud automation, and infrastructure tooling. • Familiarity with CI/CD and infrastructure-as-code (Terraform, CloudFormation, etc.). • Comfortable working with Git, MR workflows, and product development cycles. • Product + Customer Orientation • Experience translating offensive findings into product capabilities. • Strong communication skills across technical and non-technical audiences. • Customer-first mindset with focus on real-world impact. • Experience across multi-cloud environments (AWS + Azure preferred). • Familiarity with AI/LLM systems and associated attack surfaces. • Experience in security tooling, red teaming, or cloud security products. • Certifications (AWS, OSCP, cloud security) are a plus. • Public research, blogs, or open-source contributions in cloud security. • Highly self-directed and effective in ambiguous environments. • Able to operate at both strategic and hands-on technical levels. • Maintains high standards for quality, safety, and customer trust. • Strong cross-functional partner across Engineering, Product, and GTM. • We are a fully remote company, and this job may require up to 10% travel.