The successful candidate will have a proven track record of leading and executing penetration tests, performing threat/adversary emulation within a passionate offensive security team and executing tactical, offensive assessments.
This role will report to an offensive security team manager. This position is 100% remote and we consider talented remote candidates located anywhere in the United States.
Responsibilities- Perform scoped and open-ended assessments on internal and external facing systems
- Perform threat and vulnerability research to identify new ways of achieving the program's mission and act as a source for innovation within the cybersecurity industry
- Assisting in the sales process with potential or existing clients, and acting as a client's primary program contact for projects delivered by Cyber Advisors' Offensive Security team
- Develop and implement tools that assist with execution of security assessments, including custom tools and automation
- Work with the customer Blue Team to identify gaps, address findings, and improve breach response
Requirements- At least 3 years of experience performing network and application security assessments and/or red team engagements.
- Prior experience should include one or more of the following:
- Executing application and/or network penetration tests
- Executing Red Team or Offensive Security assessments
- Work collaboratively with a variety of internal and external stakeholders (security consultants, project managers, service managers, development teams, technical SME's, vendors) to deliver high quality assessments.
- Understanding of and experience with multiple of the following:
- Networking fundamentals (all OSI layers, protocols, etc.)
- Windows/Linux/Unix operating systems
- Operating system and software vulnerabilities and exploitation techniques
- Web and mobile application vulnerabilities and exploitation techniques
- Malware packing, obfuscation, persistence, exfiltration techniques
- Security technologies such as Firewalls, IDS/IPS, Web Proxies and DLP amongst others
- Commercial or open-source offensive security tools for reconnaissance, scanning, exploitation and post-exploitation (e.g. Nmap, Nessus, Metasploit, Burp Suite, etc.)
- Project Management
- Demonstrated team-oriented interpersonal skills, with the ability to interface effectively upper management, IT leadership and technology vendors.
- Ability to collaborate and build positive relationships across multiple stakeholders
- Agile thinking and analysis that leads to win-win and innovative solutions
- Strong written and verbal communication skills.
- Calmness and clarity of thought under pressure and ability to maintain confidentiality.
- Ability to prepare and present project ideas and proposals to senior management
- Willingness to work non-standard hours, if necessary
Benefits- Health Benefits
- 401K + Match
- Training Budget
- Flexible Work Schedule
- Remote Culture
Primary Location: Remote (Americas-United States of America)
Travel: Depends on project requirements
