返回查询:Application Security / 上海

The Role
We're looking for highly motivated Application Security engineers with an adversarial mindset to help strengthen Tesla's overall security posture. You'll get hands-on with a wide array of technologies – including websites, robots, and energy systems – and learn how they interconnect, where they fail, and how to make them stronger. In this role, you'll emulate both internal and external threat actors to uncover weaknesses across our most critical products and infrastructure. From designing real-world attack scenarios to conducting deep technical assessments, your work will directly shape how we defend systems at scale.

If you're passionate about CTFs, vulnerability research, exploit development, or just love "breaking things" to understand them better, this role is for you. Whether it's writing custom tooling, crafting a successful phishing campaign, or gaining domain admin, you'll have the freedom to get creative. You'll be operating in a high-impact, complex environment spanning thousands of systems, services, and endpoints. At Tesla, you'll use your offensive skills to drive meaningful change and contribute to one of the most ambitious roadmaps in tech today.

Responsibilities

  • Breaking everything you touch and helping us fix it.
  • Conducting penetration tests against Tesla networks, applications and services.
  • Conduct proactive Application Security exercises to simulate real-world external adversaries and insider threats, identifying vulnerabilities and assessing the effectiveness of organizational cybersecurity defenses.
  • Performing security assessments on third-party services and software.
  • Collaborating cross functionally with engineers to develop secure services.
  • Auditing source code for security vulnerabilities.
  • Develop/implement automated systems to help spot known security exposures.

Requirements

  • Experience with secure architecture design.
  • Excellent communication skills.
  • Security experience in one or more of: C, C++, Python, Go, x86, ARM, cryptography, reverse engineering, wireless networks, common web vulnerabilities with SQLi, XSS, CSRF and exploit development.
  • Strong penetration testing experience.
  • Experience auditing code and features.

This job application may involve an interview with an interviewer outside of Tesla China. If you complete your application, you agree Tesla provides your application information to overseas interviewers in Tesla, Inc. for recruitment purposes. More details and contact information please see here. (here hyperlink: )

去原网站上申请