Skip to content

Explore Open Jobs

Discover top jobs from high-quality organizations

Title: Sr. Offensive Security Consultant

Client Location: Charleston, SC

WFH Policy: Remote (within the US)

Duration: Full-time / Direct Hire

Industry: IT Security Consulting & Solutions

This role can be performed fully remote or in a hybrid environment if you are in the Charleston, SC area.

Are you frustrated by companies that pass off vulnerability scan results as a pentest report? Do you love finding and developing exploitable issues within new environments? Are you undeterred when a customer’s security controls disrupt your plan of attack? Do you enjoy educating others about the vulnerabilities and exploit chains that you discover? Do you want to make the world a more secure place? If so, come work with us!

We are looking for passionate, driven hackers to join the Offensive Security team. The ideal candidate is someone with prior consulting experience performing red team assessments, penetration testing, and vulnerability assessments in a variety of diverse environments. You will have opportunities to engage with some incredible clients who work in captivating spaces. From energy producers, finance, and pharma, to education, libraries, commercial gaming, marijuana industry, crypto mining, voting solutions, custom software, and more. We foster a great team where people work well together in an ego-free environment and seek personal growth as well as the growth of their teammates.

Our client works with their clients to help them identify and solve their security challenges. We do more than simply identify and report on publicly-known vulnerabilities that can be identified with automated scans. Rather, they find and understand the technical challenges that create security issues and develop creative, tailored, and pragmatic solutions to achieve a more secure environment.

Core Responsibilities:

  • Communicate with prospective and existing clients to understand their security needs, business requirements, and other motivating factors.
  • Lead offensive security engagements on client environments and applications.
  • Develop tailored recommendations to address findings from both tactical and strategic perspectives.
  • Document and present detailed finding reports to clients in a professional manner.
  • Manage relationships with clients post-engagement as a trusted security partner.
  • Maintain competence in security trends, technologies, and practices through self-study and participation in the security community.
  • Conduct research and develop tools as necessary to improve offensive security processes and procedures.
  • Collaborate with the Detection and Response Team (DART) to develop new capabilities for detecting bleeding edge offensive techniques.
  • Train and mentor other employees in order to build the company's overall capacity and capability.
  • Author blog posts and create other content to educate customers as well as contribute to the broader security community on interesting topics.

Sampling of Desired Skills and Attributes:

  • Deep technical knowledge, rabid interest, and experience performing assessments specializing in one or more of the following areas of offensive security (red teaming, penetration testing, and/or vulnerability assessments):
    • Modern web technologies
    • Cloud platforms (AWS, Azure, GCP)
    • Network environments (internal, external, wireless)
    • Active Directory
    • Physical security
    • Mobile applications
  • Ability to script/code as needed
  • Ability to thrive in a 100% remote working environment
  • Customer-focused mindset with a strong desire to provide meaningful customer experiences
  • Ability to work independently and with team members in an ego-free environment
  • Understanding of current information security challenges and solutions
  • Excellent written and verbal communication skills
  • Ability to self-direct work, orient to action, and truly own the position in a quickly growing and changing environment
  • Ability to translate strategic business objectives into tactical actions
  • Comfort with building and refining processes on a growing team
  • Desire to participate in and give back to the hacker community through research projects, blog posts, conference talks, etc.

Preferred qualifications:

  • 5+ years (or 3 years accelerated) of industry experience with a deep understanding of the cybersecurity space
  • Prior experience in a cybersecurity consulting role
  • Relevant certifications such as OSCP, OSEP, OSWE, OSED, CRTO, PNPT, eCPTX, eWPTX, CRTE, CARTP, GCPN, etc.

Benefits

  • Medical, Dental, Vision, Life and Disability insurance covered 100% for Employee and 50% for family members.
  • Fully funded single HSA account
  • Flexible work hours around core hours
  • Paid time off of 24 days with an additional 11 paid holidays
  • Professional development allowance
  • 401K Plan

 

BG_Example-Photo_v1_09-29-23
BG_Example-Photo_v1_09-29-23

Go back to all open jobs listing