Senior Security Consultant - Threat & Attack Simulation
Related skills
azure aws gcp owasp metasploitπ Description
- Lead and execute offensive engagements (red/purple team, cloud, app/API) with minimal oversight.
- Map assessment activities to MITRE ATT&CK and align with PTES, OWASP, and NIST guidelines.
- Recon, exploitation, post-exploitation, lateral movement across on-prem and cloud (AWS/Azure/GCP).
- Assess cloud-native environments: IAM configurations, serverless, containers, and IaC.
- Pen test apps and APIs targeting OWASP Top 10 and auth weaknesses.
- Evade defensive controls during red team operations (EDR, NDR, gateways).
π― Requirements
- OSCP certification.
- 4+ years of offensive security assessments.
- 2+ years in enterprise-level consulting.
- Active Directory attack techniques and privilege escalation.
- Scripting: Python, PowerShell, Bash, C#, or Go.
- Tools: Cobalt Strike, Metasploit, Burp Suite, BloodHound, Impacket.
π Benefits
- Yearly training budget for certifications.
- Conference sponsorship for attendance and speaking.
- Dedicated research and development time.
- Remote-first work environment with flexible scheduling.
- Group Medical and Group Dental insurance options.
- 12 corporate holidays and Flexible Time Off.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!