At Wasabi, we’re a proven collection of pioneers, visionaries and disruptive doers. We see things differently than our competitors, and we make our mark in the industry by challenging the norm and delivering the unexpected and improbable. We’re a fast-growing company taking the Cloud Storage industry by storm and recognized as one of the best places to work in Boston.
Wasabi hot cloud storage is a new class and category of cloud storage, breaking all traditional barriers and boundaries of storage with a disruptive value proposition of being 1/5th the cost of AWS S3, faster than the competition, with no fees for egress or API request and delivered as a single-tier solution. Cloud storage has never been so simple, so fast and so inexpensive. It’s all part of our vision to make cloud storage the next great global utility, just like electricity.
Role Description: Red Team Security Engineer
Role Purpose:
As a Red Team Security Engineer, you will play a critical role in adversary emulation, offensive security, security operations and other security-related engineering projects to proactively identify and mitigate threats to Wasabi Cloud Storage Platform. You will conduct full-scope Red Team engagements, penetration tests, and attack simulations while also contributing to the Wasabi Security Team in Security Network Operations Center (SNOC) activities, and other security-related engineering activities, including threat hunting, incident analysis, and detection engineering. By leveraging deep expertise in cloud security, Kubernetes, API exploitation, and adversary tactics, you will help strengthen Wasabi’s security posture by continuously testing and refining defenses. Your role requires a balanced approach by combining offensive security skills with defensive collaboration, ensuring Wasabi is well-prepared against real-world cyber threats.
*Principals only. No recruiters.
Responsibilities:
- Conduct full-scope Red Team engagements, including network, application, cloud infrastructure attacks, and API/Web security assessments.
- Simulate real-world threats against AWS, Azure, and GCP, focusing on IAM, S3, storage misconfigurations, and API abuse.
- Exploit vulnerabilities in web applications, APIs, identity systems, and other systems.
- Test containerized environments (Docker, Kubernetes, ECS, EKS) for security gaps.
- Perform lateral movement, privilege escalation, and persistence techniques in cloud and other environments.
- Bypass WAFs, EDR/XDR, and SIEM detection to test various security posture gaps.
- Conduct social engineering and phishing campaigns to evaluate employee security awareness.
- Develop and use custom tooling, scripts, and payloads for offensive security testing.
- Provide and work on detailed reports with technical findings, remediation recommendations and be able to present the findings to other peers in a concise and clear way.
- Collaborate with Blue Teams, SOC analysts, security architects, operations and, development teams to improve detection and response strategies.
- Stay updated with latest exploits, vulnerabilities, cloud security threats, and TTPs.
- Conduct threat hunting in cloud environments by analyzing logs, behavioral analytics, and SIEM detections.
- Perform forensic analysis on cloud-based attacks, identifying indicators of compromise (IoCs) and TTPs used by adversaries.
- Collaborate and work in SOC analysis, blue teams, and operations team to improve attack detection, logging and alerting.
Requirements:
- 5+ years of experience in Penetration Testing, Offensive Security or Red Teaming.
- Strong expertise in AWS, Azure, or GCP security, including IAM, S3, API Gateway, and Kubernetes security.
- Hands-on experience with general, cloud, and app exploitation tools such as. Burp Suite, Metasploit, Pacu, Stratus Red Team, CloudFox etc.
- Proficiency in Python, Go, C, Bash, and PowerShell for automating attacks and exploit development.
- Familiarity with Red Team C2 frameworks such as Sliver, Mitre ATT&CK Caldera, or Cobalt Strike.
- Experience in bypassing security controls, including WAFs, AV/EDR, and logging mechanisms.
- Understanding data exfiltration techniques, covert channels, and cloud-based persistence.
- Knowledge of MITRE ATT&CK Cloud Matrix and real-world adversary tactics.
- Certifications such as OSCP, OSEP, CRTO etc. (preferred but not required).
- Knowledge of SIEM/SOC operations, including log analysis, alert triage, and detection engineering.
Soft Skills:
Humble and collaborative: Open to learning, sharing knowledge, and working with others.
Approachable and team-oriented: Comfortable working with developers, operations, blue teams, and leadership.
Strong communication skills: Ability to explain technical findings to both technical and non-technical audiences.
Curious and innovative: Always looking for new attack vectors, tools, libraries, programming knowledge and creative solutions (looking outside the box).
Ethical and responsible: Ensures security testing is safe, controlled, within the scope, and aligned with company policies.
Analytical and detail-oriented: Able to think like an attacker while also identifying detection gaps.
Wasabi Technologies is an Equal Opportunity Employer. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws.
Wasabi Technologies Compensation & Benefits Highlights
-
Healthcare Strength — Medical, dental, and vision coverage alongside employer-paid life and disability insurance, mental-health resources, and an HRA create a comprehensive health and protection suite. Multiple plan options and wellbeing tools (e.g., mindfulness resources and EAP) enhance everyday usability.
-
Leave & Time Off Breadth — Unlimited PTO combined with paid holidays, sick time, and a dedicated volunteer day provides broad and flexible time-off options. Generous parental leave adds depth to the overall time-away support.
-
Flexible Benefits — Remote-first work with optional office access and flexible schedules supports balancing personal and family needs. Day-to-day programs and practices reinforce that flexibility is available in routine work.
Wasabi Technologies Insights
What We Do
Recognized as one of the technology industry’s fastest growing companies, Wasabi is on a mission to store the world's data by making cloud storage affordable, predictable and secure. With Wasabi, visionary companies gain the freedom to use their data whenever they like without being hit with unpredictable fees or vendor lock-in. Instead, they’re free to build best-of-breed solutions with the industry’s fastest-growing ecosystem of independent cloud application partners. Customers and partners all over the world trust Wasabi to help them put their data to work so they can unlock their full potential. In September 2022, Wasabi achieved unicorn status following $250M in funding. In January 2026, Wasabi announced an additional $70 million equity funding round, valuing the company at $1.8 billion and bringing total funding to over $600 million. As leaders in our community, Wasabi strives to always inspire by example and give to those who are most in need. We team up with our partners in a purposeful way to create corporate social responsibility initiatives that will make a true impact in a way that is authentic to who we are. Our community engagement programs include veteran support via the Run to Home Base, support for women in sports with Girls Hockey Day at TD Garden, and non-profit storage donations. The Red Hot Beats program, launched with our partners at the Liverpool Football Club Foundation, promotes mental health and wellness through music therapy for young people in the Liverpool area. Meanwhile, our founding partnership of the MGM Music Hall at Fenway supports arts access, education, and opportunity for students and emerging artists in New England. Our values guide everything we do, shaping our culture and driving our mission. Wasabi's H.O.T. Culture framework stands for Humility, Ownership, and Togetherness. We value and respect others and are open to feedback and suggestions, recognizing that no one person has all the answers, take personal responsibility for our actions, decisions, and outcomes, and thrive when there's collaboration, teamwork, and inclusivity.
Why Work With Us
At Wasabi, we empower our employees to thrive by prioritizing their personal lives and showing trust in their abilities, and as a result, they bring remarkable energy and enthusiasm to their careers. Flexible schedules and our remote work model consistently deliver the most value at Wasabi, and our employee feedback reflects that clearly.
Gallery
Wasabi Technologies Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
Wasabi has a full remote work policy. However it maintains its corporate office and encourages employees to use it when they need to.

























