
Offensive Security Engineer
On-site
Full Time
#Information Security
#Cloud
#Application Security
#Security
#Threat Modeling
#Pen Testing
#Vulnerability Management
#Firewall
#Python
Are you passionate about building secure software and helping developers write better code? At Sonar, we prevent security and quality issues from reaching production, supporting over 30 programming languages for more than 7 million developers worldwide. We are looking for a Senior Offensive Security Engineer to join our team in Germany and help us maintain the high standards that organizations like NASA and Microsoft rely on every day.
What you bring
As a Senior Offensive Security Engineer, you will work in a full-time, on-site capacity to fortify our products and cloud platforms. You will play a critical role in our security strategy, ensuring our systems remain resilient against evolving threats. Your core responsibilities will include:
- Conducting internal and external security reviews, including red team exercises and penetration testing.
- Collaborating directly with engineering teams to integrate security requirements into product architecture.
- Proactively investigating and resolving security vulnerabilities across our products and internal systems.
Requirements
We are looking for a candidate who combines deep technical expertise with a collaborative mindset. You should have extensive experience with cloud architectures, specifically AWS and GCP, along with a strong background in application security, threat modeling using frameworks like STRIDE, and vulnerability management. Proficiency in Python for scripting is essential, as is experience with firewall policy management and AI security. Beyond your technical skills, we value curiosity, organization, and the ability to articulate complex problems clearly. You must be fluent in English and possess the interpersonal skills necessary to thrive in a global, cross-team environment.
What we offer
We believe in fostering a growth mindset and providing a supportive environment where you can do your best work. Our benefits package is designed to support your long-term well-being and professional development:
- A 1st Pillar pension scheme fully financed by Sonar at 3% of your gross salary.
- A voluntary 2nd Pillar pension scheme with a 15% contribution from Sonar.
- A 60% reimbursement for annual public transport subscriptions.
- Generous paid time off allocations.
- An annual discretionary Company Growth Bonus.
- Opportunities to connect with our global team at our annual international kick-off events.
How to Apply
If you are ready to make a significant impact on the security of developer tools and join a mission-driven team, we would love to hear from you. Please submit your application directly through our careers portal to be considered for this role. We look forward to reviewing your experience and discussing how you can contribute to our collective success.




