Senior Security Consultant enhancing AI security solutions at BAE Systems. Conducting security assessments and advising clients on AI risk management in national security projects.
About the role
- Senior Penetration Testing Associate conducting penetration tests at cybersecurity firm Drawbridge. Collaborating with clients to assess security and improve defenses against cyber threats.
Responsibilities
- Conduct internal and external penetration tests across diverse client environments.
- Qualify testing requirements and scope engagements with clients.
- Troubleshoot and resolve testing issues independently.
- Present detailed assessment reports and findings directly to clients.
- Consult with clients regarding remediation strategies and best practices.
- Act as an escalation point for analysts and associates, providing technical guidance and mentorship.
- Manage test scheduling and set client timing expectations to ensure smooth project delivery.
- Serve as a technical consulting resource for both internal teams and external clients.
- Lead penetration testing efforts against Drawbridge systems and other critical infrastructure.
- Perform customized tests for clients, including physical assessments, laptop testing, remote access testing, and cloud environment evaluations.
- Create and update relevant internal documentation, ensuring accuracy and completeness.
- Develop repeatable and teachable processes for performing various testing tasks.
- Assist in improving the organization’s penetration test offerings, including reporting and process enhancements.
- Lead breach response discussions and provide advisory services during incident response engagements.
Requirements
- 5+ years of offensive security experience, with a focus on penetration testing.
- Deep knowledge of penetration testing principles, tools, and techniques (e.g., Metasploit, Burp Suite, etc.).
- Ability to identify systemic security issues based on vulnerability and configuration analysis.
- Experience with Linux and Windows operating systems.
- Strong working knowledge of networking concepts and attack stages (footprinting, scanning, enumeration, gaining access, privilege escalation, maintaining access, network exploitation, covering tracks).
- Excellent written and verbal communication skills, with the ability to present findings to technical and non-technical audiences.
- Strong ability to prioritize, organize, and multi-task in a fast-paced environment.
- Experience mentoring junior team members and acting as a technical escalation point.
- Excellent written and verbal communication skills.
- Excellent time management skills.
- Nice if you have experience with IT infrastructure, cloud technology, business continuity, disaster recovery, and incident response.
- Knowledge of hedge fund, private equity, or RIA operations/compliance.
- Industry certifications (e.g., OSCP, GPEN, CEH).
- Experience with Python or comparable scripting language.
Benefits
- Competitive compensation package
- Employer 401(k) Contribution
- Benefits including Medical, Dental, Vision Coverage and Life Insurance
- Generous Paid Time Off Policy
- Employee Assistance Program (with focus on mindfulness and well-being)
- Life Insurance & Personal Accident Insurance
- Health Savings Account (HSA) or Flexible Spending Account (FSA)
- Healthy Work/Life Balance
- Exclusive Employee Offerings & Perks
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
IT Security Specialist focusing on cyber defense within a family - owned company. Responsibilities include managing firewalls, monitoring threats, and implementing security solutions.
Junior Information Systems Security Engineer at AMERICAN SYSTEMS managing DoD cyber security. Collaborating on technical issues and supporting risk management framework compliance.
Information Systems Security Engineer assisting in cyber security requirements for DoD systems. Collaborating closely with customers and ensuring compliance with the DoD Risk Management Framework.
Staff Product Security Engineer driving security innovation while ensuring compliance with federal standards at DataRobot. Leading security engineering, automation, and customer engagement for federal customers.
Auszubildende(n) zur Fachkraft für Schutz und Sicherheit in Hamburg bei proSicherheit GmbH. Modernes Sicherheitsunternehmen mit Fokus auf Sicherheit und Vertrauensaufbau.
Security staff for proSicherheit performing access controls and ensuring compliance with safety standards. Involves reporting, patrolling, and handling emergencies in Hamburg area.
Cyber Security Engineer responsible for DevSecOps and security automation at a leading Swiss IT consulting firm. Engaging in security measures across industries with a focus on collaboration and technology.
Cloud Security Architect responsible for strategic growth and development of Cloud Security solutions. Work with national clients on architecture and security concepts in Switzerland.
Information Security Manager coordinates ISMS development and security measures for Megamaris GmbH. Responsible for risk analysis and security training across 12 subsidiaries.