Offer summary

Qualifications:

5+ years of experience in offensive security processes and cybersecurity operations., Proficiency with offensive security tools such as Cobalt Strike, Nessus, and Burp Suite Pro., Strong understanding of general cybersecurity concepts including vulnerability management and incident response., Excellent communication skills and ability to build relationships with clients and team members..

Key responsabilities:

Perform penetration testing across various environments including web applications and internal systems.

Consult on attack surface and vulnerability improvements based on assessments of client data.

Collaborate with client security teams to address findings and recommend remediation strategies.

Provide mentorship to team members and assist in their professional development.

Job description

Job Summary

The Sr. Security Consultant – Offensive Security is a critical role within  Stratascale’s  Adversarial Operations team who will  assist  in leading and supporting the development and delivery of a diverse range of continuous threat and exposure management consulting, penetration testing, and operational service programs to a portfolio of our clients.

This position is remote with a Home Office setup as determined by Stratascale management.

About Us

As a digital and cybersecurity services company, Stratascale exists to help the Fortune 1000 transform the way they use technology to advance the business, generate revenue, and respond quickly to market demands. We call it Digital Agility.

To learn more about how we’re shaping the future of digital business and a more secure world, visit stratascale.com.

Responsibilities

Includes, but not limited to: 

Perform penetration testing against complex environments covering both external, internal, web application, and other forms of offensive security engagements.
Consult and document attack surface, threats, and vulnerability improvements based on team’s overall assessment of client’s data. 
Perform full assessment and threat modeling against industry best practices to  identify  control weaknesses and assess the effectiveness of existing controls. 
Perform root cause analysis on  identified  vulnerabilities and attack surface weaknesses to  determine  technical solutions to be presented to client along with recommendations for remediations. 
Collaborate with client’s security teams to understand mitigation or resolutions for findings discovered by analyst s . 
Review t hreat i ntelligence for specific threat vectors that align with client's industry or potentially  impacted  by to  utilize  in attack path modeling. 
Assist in defining, measuring, and quantifying business risk and vulnerability impacts to clients their stakeholders. 
Maintain knowledge of modern penetration testing tools, techniques, and methodologies.
Provide mentorship and guidance to team members while  assisting  them in learning the overall processes.

Qualifications

5+ years of experience of offensive security processes  and cybersecurity operations. 
5+ years of experience working with offensive security tools including Cobalt Strike, Nessus, Burp Suite Pro, Kali Linux, Wireshark,  nmap , etc.
5+ years of experience of general c ybersecurity concepts and methods, including vulnerability management, application security, incident response, governance, risk or compliance, or security architecture

Required Skills

Demonstrate a real passion for team technology solutions design and delivery 
Outstanding written and verbal communication and strong ability to build relationships with customers,  partners  and staff members 
Ability to train and  disseminate  information within an area or operation and work effectively within all levels of an organization, both internally and externally 
Ability and i nitiative to research and resolve problems with a positive attitude , e xcellent presentation skills and comfortable leading meetings and discussions 
Ability to develop and manage mentoring relationship by building trust, setting goals, respecting employees, promoting  confidence  and keeping the mentoring relationship on track

Certifications Required

Certifications below are preferred but not  required : 

Industry certifications:

OSCP
OSCE
PEN-300
WEB-300
EXP-301
BSCP

Unique Requirements

Attend virtual customer meetings when appropriate 
Travel to customer sites, partner sites, conferences and Stratascale offices up to 20% annually 
Candidate will need to have access to an international airpor t

Additional Information

The estimated annual pay range for this position is $165,000 - $205,000 which includes a base salary and bonus. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending.
Equal Employment Opportunity – M/F/Disability/Protected Veteran Status

Compensation Structure

Base Plus Bonus

Approved Min (Total Target Comp)

USD $165,000.00/Yr.

Approved Max (Total Target Comp)

USD $205,000.00/Yr.

Required profile