Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Lead, Offensive Security

$142.3k - $195.7k
Full-time

Humana

Become a part of our caring community Selected candidate is required to reside 60 mins from one of the following locations: (Louisville KY, NYC Metro, Dallas Metro, Charlotte NC Metro, South Florida(Tampa/Miami/Ft Lauderdale) , Washington DC metro, Chicago, Boston, Atlanta, Nashville) We're standing up a new AI & Offensive Tooling capability inside our Offensive Security organization, and we're looking for its founding engineer. As Lead, Offensive Security (AI & Tooling), you will own the in-house AI agent platform that powers our penetration testing and red team operations, and build the AI-driven tooling that makes every offensive service line faster, broader, and more autonomous. This is a hands-on building role with the scope of a technical lead: you set the technical direction for offensive AI at the company, and you ship the software that proves it. It's a rare chance to build autonomous offensive security capabilities from the ground up, responsibly, inside a program that helps protect the health data of millions of people. The Bigger Picture Join a 100% remote, highly specialized offensive security team where you will have access to Hack The Box Pro Labs, all HTB role-based training paths and certifications, discretionary certification funding, and conference/training budgets. These resources will enable you to continuously advance your expertise while working on industry-leading Offensive Security challenges at scale. You will be part of the Offensive Security organization, collaborating with Red Team, Penetration Testing, and Breach and Attack Simulation (BAS) professionals, highly specialized experts who identify vulnerabilities so the business can address them proactively. Fridays are dedicated to research and development, allowing the team to pursue training in emerging offensive security methodologies, tools, agents, large language models (LLMs), artificial intelligence, and other bleeding edge topics. Mission & Impact AI that attacks traditional systems. Build autonomous and semi-autonomous agents that perform real offensive operations against networks, web applications, and infrastructure, LLM-driven planning loops that reason through reconnaissance, exploitation, privilege escalation, and lateral movement, multi-agent orchestration for breadth, and tool/function-calling that drives real offensive tooling. This is the emerging class of LLM-driven penetration-testing agents, built for production use by a professional red team. Offense applied to AI itself. Red-team the enterprise's own AI—LLM-powered products, agents, RAG pipelines, and ML applications, against prompt injection, jailbreaks, model extraction and inversion, membership inference, data and supply-chain poisoning, evasion, and agent tool/sandbox abuse, and validate that guardrails and classifiers actually hold. You'll operate this as a production, event-driven cloud platform at real scale, dozens of serverless functions, change-stream data pipelines, hundreds of operational alarms, and integrated LLM inference. This requires a production software engineering mindset, not proof-of-concept scripting. Your first 6–12 months First 90 days: ramp on the agent platform and the three service lines (Red Team, BAS, Penetration Testing); take operational ownership; ship one meaningful improvement to the agent's autonomous capability or reliability, measured against real engagements. By 6 months: deliver at least one AI-driven tool that a service line adopts into its live workflow, with metrics showing coverage or turnaround gains; establish the evaluation harness that tracks the agent's autonomous success rate against representative targets. By 12 months: publish the multi-quarter offensive-AI roadmap and KPIs; stand up repeatable adversarial testing for the enterprise's own AI systems; mentor 1–3 engineers as the capability grows toward its own function. Use your skills to make an impact Why this role, and why here Real scope, real authority. You own the platform's architecture, roadmap, and day-to-day operation—and you advise Offensive Security leadership on strategy. This is the founding technical role of a capability that grows into its own team. A program that's already serious about AI. Fridays are dedicated to R&D. You'll have Hack The Box Pro Labs, all HTB role-based paths and certifications, discretionary certification funding, and conference/training budgets. Mission that matters. Offensive Security identifies weaknesses so the business can fix them before adversaries exploit them—protecting the data and care of millions of people. AI is entering both our adversaries' tradecraft and our own operations faster than traditional tooling keeps up; you keep us ahead. What we're looking for We're hiring for a genuinely hybrid skill set, deep offensive security and real AI engineering. You do not need to check every box below. If you're a strong offensive engineer who has built real AI agents, or a strong AI/agent builder with serious hands-on offensive experience, we want to hear from you. Required Qualifications: Offensive security depth: 6+ years in roles such as Red Team or Penetration Testing, including team- or program-level leadership, and the instinct to think like an attacker against systems that don't behave deterministically. Production Python engineering: a strong track record of building and operating production-quality software and tooling, not only scripts. You've built with agentic AI: hands-on designing, building, or operating AI agents or LLM applications: agentic workflows, tool/function-calling, and orchestration. (We care about what you've shipped and operated, not years on a particular framework, the frameworks are only a few years old.) You've attacked AI: hands-on testing of AI/ML systems: prompt injection, jailbreaking, and adversarial techniques. Cloud fluency: production experience with at least one major Cloud Service Provider (AWS, GCP, or Azure). Preferred Qualifications: Built autonomous or semi-autonomous offensive agents, LLM-driven penetration-testing agents, or reinforcement-learning exploit and attack-path planners. Hands-on with AI red-teaming frameworks such as PyRIT or Garak, and fluent in MITRE ATLAS, the OWASP Top 10 for LLM Applications, and the NIST AI Risk Management Framework. Model Context Protocol (MCP): building clients/servers, or testing them and RAG pipelines for tool/prompt-injection abuse. Demonstrated ability to test endpoints protected by modern EDR/XDR; experience across multiple cloud providers; threat-intelligence-driven operations. Depth in an advanced offensive specialty: malware development, advanced Red Team operations and threat simulation, or adversarial ML research; experience building and breaking LLMs, ML models, and AI infrastructure. Published research, open-source contributions, or talks at DEF CON, BSides, x33fcon, or Black Hat; expert-level certifications (e.g. OSEE, OSED, OSCE3, CRTL, CWEE, CAPE). How you'll work You'll embed with each service line rather than build in isolation; ship production-grade software with engineering rigor (reproducibility, evaluation, safety guardrails, human-in-the-loop where offensive operations demand it); deliver findings and tooling with reproduction steps, severity, business impact, and remediation; track risk in the enterprise risk platform; and operate within the organization's acceptable-use-of-AI policies and offensive security rules of engagement. Remote/WAH requirements: WAH requirements: Must have the ability to provide a high speed DSL or cable modem for a home office. Associates or contractors who live and work from home in the state of California will be provided payment for their internet expense. A minimum standard speed for optimal performance of 25x10 (25mpbs download x 10mpbs upload) is required. Satellite and Wireless Internet service is NOT allowed for this role. A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information Work at Home Requirements To ensure Home or Hybrid Home/Office employees’ ability to work effectively, the self-provided internet service of Home or Hybrid Home/Office employees must meet the following criteria: At minimum, a download speed of 25 Mbps and an upload speed of 10 Mbps is required; wireless, wired cable or DSL connection is suggested. In certain roles, the minimum recommended internet speed required by Humana may not be sufficient for business needs. Humana reserves the right to require associates to upgrade their internet service if necessary. Work from a dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information. Travel: While this is a remote position, occasional travel to Humana's offices for training or meetings may be required. Scheduled Weekly Hours 40 Pay Range The compensation range below reflects a good faith estimate of starting base pay for full time (40 hours per week) employment at the time of posting. The pay range may be higher or lower based on geographic location and individual pay will vary based on demonstrated job related skills, knowledge, experience, education, certifications, etc. $142,300 - $195,700 per year This job is eligible for a bonus incentive plan. This incentive opportunity is based upon company and/or individual performance. Description of Benefits Humana, Inc. and its affiliated subsidiaries (collectively, “Humana”) offers competitive benefits that support whole-person well-being. Associate benefits are designed to encourage personal wellness and smart healthcare decisions for you and your family while also knowing your life extends outside of work. Among our benefits, Humana provides medical, dental and vision benefits, 401(k) retirement savings plan, time off (including paid time off, company and personal holidays, paid parental and caregiver leave), short-term and long-term disability, life insurance and many other opportunities. About us About Humana: Humana Inc. (NYSE: HUM) is a leading U.S. healthcare company. Through our Humana insurance services and our CenterWell healthcare services, we make it easier for the millions of people we serve to achieve their best health – delivering the care and service they need, when they need it. These efforts are leading to a better quality of life for people with Medicare and Medicaid, families, individuals, military service personnel, and communities at large. Learn more about what we offer at Humana.com and at CenterWell.com. Equal Opportunity Employer It is the policy of Humana not to discriminate against any employee or applicant for employment because of race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability or protected veteran status. It is also the policy of Humana to take affirmative action, in compliance with Section 503 of the Rehabilitation Act and VEVRAA, to employ and to advance in employment individuals with disability or protected veteran status, and to base all employment decisions only on valid job requirements. This policy shall apply to all employment actions, including but not limited to recruitment, hiring, upgrading, promotion, transfer, demotion, layoff, recall, termination, rates of pay or other forms of compensation and selection for training, including apprenticeship, at all levels of employment.

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Lead, Offensive Security in Kentucky vacancy
  • $99.3k - $159.33k

     ...Windows designs, implements, and supports cloud-hosted Windows server environments that underpin mission-critical applications in secure federal cloud or hybrid infrastructures. This role builds and maintains virtual machines, images, and automation to provision Windows... 
    Suggested
    Contract work
    Work at office

    ASM Research, An Accenture Federal Services Company

    Frankfort, KY
    3 days ago
  •  ...Securing Travel, Protecting People At the Transportation Security Administration, you will serve in a high-stakes environment to safeguard the American way of life. In cities across the country, you would secure airports, seaports, railroads, highways, and/or public... 
    Suggested
    Work at office

    US Government Jobs

    Owensboro, KY
    3 days ago
  •  ...Summary Securing Travel, Protecting People - At the Transportation Security Administration, you will serve in a high-stakes environment...  ...been reinstated as bargaining unit eligible. Responsibilities This Lead Transportation Security Officer position is located at Owensboro... 
    Suggested
    Permanent employment
    Full time
    Part time
    Traineeship
    Work experience placement
    Work at office
    Remote work
    Trial period
    Flexible hours
    Shift work

    Transportation Security Administration

    Owensboro, KY
    13 hours ago
  •  ...Lead Transportation Security Officer This Lead Transportation Security Officer position is located at Louisville Muhammad Ali International Airport (SDF), Transportation Security Administration, Department of Homeland Security (DHS). As a Lead Transportation Security... 
    Suggested
    Traineeship

    TSA Inc

    Louisville, KY
    3 days ago
  • Presque Isle Downs, Inc. is looking for a Security Shift Supervisor to oversee the Security Department during assigned shifts. The role includes ensuring the safety of team members and guests, managing staff responsibilities, and conducting training for officers. The ideal... 
    Suggested
    Shift work

    Presque Isle Downs, Inc.

    Florence, KY
    13 hours ago
  • Humana Inc in Louisville seeks an Associate Director for Edge Security & Traffic Management. This role requires leadership in designing and operating enterprise traffic management platforms that ensure secure connectivity and high availability across various environments... 
    Remote job

    Humana Inc

    Louisville, KY
    3 days ago
  • $18.5 - $25 per hour

    TJX Companies is seeking a Security Associate for their Marshalls Fulfillment Center in Dayton, Kentucky. This role involves protecting company assets, monitoring facility access, and ensuring safety and security regulations are followed. Candidates should have a High... 
    Hourly pay
    Night shift

    Dormont Manufacturing Co

    Dayton, KY
    2 days ago
  • Roundel in Louisville, KY is seeking an Assets Protection Team Leader to enhance security and ensure a safe shopping experience for guests. This role involves combating theft, leading a team, and implementing safety measures throughout the store. Ideal candidates should... 
    Flexible hours

    Roundel

    Louisville, KY
    4 days ago
  • $32 - $37 per hour

    American Sound is looking to add a Lead Security Technician to our growing team in Covington! This role is ideal for candidates with 3-5 years of experience who bring advanced technical expertise, leadership skills, and a deep understanding of integrated security systems... 
    Shift work
    Weekend work

    American Sound

    Covington, KY
    1 day ago
  • Dormont Manufacturing Co in Dayton, Kentucky, is hiring for a security position at their TJX location. This role involves protecting the Company's assets, monitoring facility access, and responding to emergencies. Applicants should have at least a high school diploma and... 

    Dormont Manufacturing Co

    Dayton, KY
    1 day ago
  • Churchill Downs Inc. is seeking a Security Shift Manager to oversee safety and security operations at Derby City Gaming. The role requires management skills, effective communication, and experience in security or law enforcement. Candidates should possess a 2-year degree... 
    Shift work

    Churchill Downs Inc.

    Louisville, KY
    4 days ago
  •  ...Job Description Job Description At Vector Security We Think Big, Do the Right Thing, and Make a Difference Every Day! If this is how...  ...to work, we’d like to invite you to join our team as our new Lead Systems Technician! We offer great benefits, a competitive salary... 
    Temporary work
    Second job
    Local area
    Flexible hours

    Vector Security, Inc.

    Louisville, KY
    2 days ago
  • Shift Leader Assistant Serve as a shift leader who is an assistant to the guard shift supervisor. Enter personnel information to determine the appropriate access for individuals entering a location. Support the implementation of installation emergency plans and...
    Shift work

    US Department of War

    Kentucky
    4 days ago
  • $142.3k - $195.7k

     ...Become a part of our caring community The Lead Solutions Architect works with user groups to solve business problems with available...  ...You will collaborate with product, engineering, EA Activation, security, data, and operations. You will engage governance forums to enable... 
    Full time
    Temporary work
    For contractors
    Work at office
    Remote work
    Work from home
    Home office

    Humana

    Louisville, KY
    2 days ago
  •  ...Job Description Job Description Lead Technician for exciting startup opportunity, where there is an opportunity to make your mark...  ...Managing Installation, programming and maintenance of Commercial Security and Fire Protection Systems. CCTV Access Control IP... 

    Flexible Recruiting

    Florence, KY
    15 days ago
  • Churchill Downs Inc. is looking for a Security Supervisor to oversee security operations at Turfway Park in Florence, KY. The role involves...  ...preferred. This is an exciting opportunity to contribute to a leading entertainment venue and provide a secure environment for all.... 
    Night shift

    Churchill Downs Inc.

    Florence, KY
    3 days ago
  •  ...Job SummaryThe Lead Maintenance Technician is responsible for performing diverse duties including completing work orders, always maintaining...  ...Fair Housing, Human Trafficking Awareness & Prevention (*), and Security Awareness Training (aka Cybersecurity).(*) Florida law requires... 
    Work at office
    Immediate start
    Weekend work

    Mrm Residential Mcc Group

    Williamstown, KY
    1 day ago
  • Derby City Gaming Downtown is hiring a Security Shift Manager responsible for overseeing security staff and ensuring guest safety. This role includes managing security programs to prevent incidents and protect assets. The ideal candidate will have 2-5 years of experience... 
    Shift work

    Derby City Gaming Downtown

    Louisville, KY
    1 day ago
  • $84k - $401k

     ...Exchange Engineer II to manage and enhance our Microsoft Exchange environments. This role involves ensuring high availability and security of the enterprise email system and supporting an excellent end-user experience. The ideal candidate will have over 5 years of experience... 

    Onco360

    Louisville, KY
    1 day ago
  •  ...future with Qualus in our Specialized Field Service department as Lead Field Service Technician. As a Lead Field Service Technician,...  ...differentiated capabilities across grid modernization, resiliency, security, and sustainability. The firm partners with utilities,... 
    Full time
    Temporary work
    Work at office
    Remote work
    Flexible hours

    Qualus

    Louisville, KY
    13 hours ago
  • A leading security integrator is seeking a Lead Systems Technician to provide installation and servicing of integrated systems such as alarm, access control, and video. Ideal candidates will have 5+ years of industry experience, with specific expertise in fire detection... 

    Vector Security, Inc

    Louisville, KY
    13 hours ago
  • American Sound and Electronics seeks a Lead Security Technician for their Covington, KY location. This role involves managing complex installation projects and providing expert technical support. Ideal candidates should possess 3-5 years of relevant experience and advanced... 

    American Sound and Electronics

    Covington, KY
    3 days ago
  • Dormont Manufacturing Co in Dayton, KY, seeks a Facility Security Officer 2 to implement and maintain a security program in compliance with regulatory policies. Responsibilities include managing security systems and providing training. The ideal candidate will have over... 

    Dormont Manufacturing Co

    Dayton, KY
    2 days ago
  • $25 - $50 per hour

     ...Role Overview TSA is accepting applications for Lead and Supervisory Transportation Security Officers at airports in Danville. These roles are ideal for individuals looking to step into leadership positions within airport security operations. TSA provides training... 
    Shift work
    Night shift
    Weekend work

    Airport Security Careers

    Danville, KY
    27 days ago
  • $25 - $50 per hour

     ...Role Overview TSA is accepting applications for Lead and Supervisory Transportation Security Officers at airports in Lovely. These roles are ideal for individuals looking to step into leadership positions within airport security operations. TSA provides training to... 
    Shift work
    Night shift
    Weekend work

    Airport Security Careers

    Lovely, KY
    27 days ago
  •  ...Louisville, Kentucky, is looking for a qualified Technician 3 to lead installation and maintenance of low voltage systems. This...  ...to work independently on various installations including infrastructure, security, and audio/visual systems. #J-18808-Ljbffr Amteck, LLC

    Amteck, LLC

    Louisville, KY
    2 days ago
  •  ...power our employees’ potential and strive to create opportunity and security for every member of the team. We’re passionate about our work,...  ...Opportunity Taylor Corporation is looking for a Warehouse Team Lead to join our team in Jeffersonville, IN. Work Authorization To be... 
    Monday to Friday
    Flexible hours
    Shift work

    Dormont Manufacturing Company

    Jeffersonville, KY
    1 day ago
  •  ...EmergencyMD in Louisville, KY is seeking a Cybersecurity Specialist to enhance security across diverse client environments. The role involves monitoring for threats, managing security tools, and guiding clients through compliance and risk assessments. A Bachelor's degree... 

    EmergencyMD

    Louisville, KY
    2 days ago
  •  ...Supervisor serves as the primary dispatcher for the weekday first shift. They monitor live feeds from CCTV cameras, fire alarm systems, security systems, and assists with the processing of on average 500 "calls for assistance" per month. They are also responsible for... 
    Work at office
    Weekend work
    Day shift
    Weekday work

    The Southern Baptist Theological Seminary

    Louisville, KY
    2 days ago
  • Sazerac is seeking an experienced Oracle Fusion Cloud Administrator & Security Manager in Louisville, KY, to manage security and operations of their Oracle Fusion environment. The role involves ensuring system integrity, optimizing performance, and managing security protocols... 

    Sazerac

    Louisville, KY
    2 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Lead, Offensive Security. Be the first to apply!