Security Consultant-Threat & Attack Simulation- Remote (Anywhere in the U.S.)
GuidePoint Security · United States · 6 days ago
RemoteRemoteInformation TechnologyFull-time
Role Responsibilities
- Deliver Threat & Attack Simulation’s professional services, including but not limited to Vulnerability Assessments, Internal and External Penetration Tests, Wireless Security Assessments, Onsite and Remote Social Engineering, and a variety of custom assessments
- Author comprehensive assessment deliverables that are proficiently tailored to both technical and managerial audiences and fully detail the technical execution, core deficiencies, business impact, and realistic remediation strategies
- Utilize automation, orchestration, and scripting to reduce manual processes, improving overall efficiency while also enabling new capabilities to meet the rapidly changing needs of our clients
- Contribute to marketing initiatives via activities such as publishing research, speaking at industry conferences, authoring blog articles and whitepapers, hosting webinars, and developing security tools
- Aid in Practice development, including improving existing offerings
Qualifications
- Lab-based certifications, such as OSCP, OSCE, OSEE, and GSE, are strongly preferred
- Other relevant industry certifications, such as GPEN and GCIH, are also preferred
- Experience with various public cloud components and architectures (AWS, Azure, GCP, etc.)
- InfoSec community involvement, such as conference speaking, blog/whitepaper authoring, and podcast speaking/producing experience, is strongly preferred
- Minimum of two (2) years of experience performing offensive/attack-oriented security assessments
- Minimum of one (1) year of experience in an enterprise-level consulting services role
- Over four (4+) combined years of IT and information security experience are preferred
- Internal operational (non-consulting) experience is strongly preferred
- Experience with continuous penetration testing or Breach and Attack Simulation (BAS) platforms is a plus but not required
- Embraces emerging technologies, including AI tools, to work smarter, solve problems, and drive better business outcomes