Join us in building the future of finance.

Our mission is to democratize finance for all. An estimated $124 trillion of assets will be inherited by younger generations in the next two decades. The largest transfer of wealth in human history. If you’re ready to be at the epicenter of this historic cultural and financial shift, keep reading.

About the team + role

The Offensive Security team at Robinhood is responsible for proactively identifying and validating security risks across our products, infrastructure, and corporate environment. Situated within the Safety & Productivity Engineering organization, the team partners closely with engineering, detection and response, privacy, and physical security to strengthen Robinhood’s overall security posture. Our work is grounded in ethical testing, clear risk communication, and close collaboration to ensure findings lead to real improvements. We operate with high standards, direct ownership, and a shared commitment to protecting our customers and the company.

As a Staff Offensive Security Engineer, you will focus on red teaming, adversarial simulation, and hands-on security testing to evaluate real-world threats against Robinhood’s systems and processes. You will design and execute offensive security engagements that challenge assumptions and improve detection and response capabilities. This role emphasizes depth of technical execution, clear communication of risk, and partnership with teams to remediate findings—not just identify them!

The role is located in the office location(s) listed on this job description which will align with our in-office working environment. Please connect with your recruiter for more information regarding our in-office philosophy and expectations.

What you’ll do

• Plan and execute red team operations, adversarial simulations, and penetration tests across applications, infrastructure, networks, offices, and internal processes.

• Perform threat modeling for new and existing services, clearly articulating security risks and tradeoffs to engineering and risk stakeholders.

• Conduct vulnerability research, exploit development, and testing using both custom tooling and public proof-of-concept techniques.

• Partner with detection and response teams to simulate realistic attack scenarios and evaluate monitoring and incident response readiness.

• Write and maintain tooling to automate and scale offensive security assessments.

• Serve as a subject matter expert by documenting findings, recommending remediation strategies, and supporting teams through fixes.

• Mentor teammates and contribute to shared knowledge through internal documentation, presentations, and external talks or blog posts.

What you bring

• 8+ years of hands-on experience in red teaming, offensive security, or penetration testing.

• Demonstrated experience mentoring or guiding other security engineers.

• Strong understanding of threat modeling methodologies and the MITRE ATT&CK framework.

• Experience testing modern environments, including cloud platforms (AWS, GCP), containerized systems (Docker, Kubernetes), CI pipelines, and identity systems.

• Working knowledge of defensive security tools such as IDS/IPS, EDR, packet capture, and network monitoring, including common evasion techniques.

• Proficiency in Python, Go, or JavaScript for exploit development, tooling, or automation.

• Clear written and verbal communication skills, with the ability to explain technical findings to both engineers and senior leaders.

• Experience collaborating with distributed teams and documenting work through tools such as Slack, Jira, GitHub, and email.

Bonus points:

• Experience working in financial technology or regulated environments.

• Prior experience serving as a technical lead on security initiatives.

Our team is committed to providing an inclusive and welcoming interview experience for all candidates. If you require a specific accommodation during the application or interview process due to a physical or mental condition, please complete this Applicant Accommodation Form to notify our team. The form should only be completed if you need a specific accommodation.

AI Usage Disclosure: Robinhood uses artificial intelligence (AI) tools to support parts of our recruiting process. These tools enhance the efficiency and consistency of our hiring process; however, all hiring decisions are made by our hiring teams.

Vacancy Notice: This job posting represents an existing vacancy that we are actively seeking to fill.

In addition to the base pay range listed below, this role is also eligible for bonus opportunities + equity + benefits.

Base pay for the successful applicant will depend on a variety of job-related factors, which may include education, training, experience, location, business needs, or market demands. The expected base pay range for this role is based on the location where the work will be performed.

Base Pay Range:

Toronto, ON**$191,250—$225,000 CAD**
Click here to learn more about our Total Rewards, which vary by region and entity.

If our mission energizes you and you’re ready to build the future of finance, we look forward to seeing your application.

Robinhood provides equal opportunity for all applicants, offers reasonable accommodations upon request, and complies with applicable equal employment and privacy laws. Inclusion is built into how we hire and work—welcoming different backgrounds, perspectives, and experiences so everyone can do their best. Please review the Privacy Policy for your country of application.