Senior Offensive Security Consultant - Xico, México - Echeloncyber

    Echeloncyber
    Echeloncyber Xico, México

    hace 2 semanas

    Default job background
    Descripción

    About us:
    At Echelon Risk + Cyber we believe in defending the basic human right to security and privacy. We are seeking an experienced offensive security professional to join our elite Offensive Security team. Echelon performs a wide variety of adversarial emulation assessments, including specialized web application, mobile application, and cloud testing services.


    We are seeking a skilled consultant who possesses strong skills specifically in the areas of web, mobile and cloud penetration testing and red teaming.

    Preferred certifications include OSCP, GPEN, GWAPT, OSWE, eWPTX along with demonstrated web application, mobile application and cloud penetration testing experience.

    This is a remote position that can be executed from anywhere in Mexico.

    What You Will Do (Responsibilities):


    Be a technical leader while executing security assessments and audits, including penetration testing (internal, external, web, wireless, cloud, physical), adversarial emulation exercises (red teams), social engineering exercises, and other offensive security-related exercises to improve a client's overall security posture.

    Build and maintain technical knowledge of adversarial activity to emulate similar TTPs during security assessments.

    Use resourceful thinking to identify and exploit security vulnerabilities usually missed by automated toolsContribute detail-oriented documentation on findings, observations, remediation steps, and/or mitigation recommendations in the form of Word and/or PowerPoint reports.

    Find ways to improve your tradecraft and knowledge in the adversarial simulation spaceAssist in developing a team to support client engagements and the firm mission, vision, and valuesConduct research and develop offensive security tools and exploits based on current and emerging TTPsProduce thought leadership for the organization's website blog on a regular basisActively be involved in the cybersecurity community, speak at local and national conferencesRequirements:

    3-5 years of offensive cybersecurity experience or 2-4 years' experience in an offensive cyber operations (Title 10 or Title 50) roleDemonstrated ability to lead and perform Offensive Security engagements with little to no guidanceA relevant Offensive Security Certification, this could include: GWAPT, eWPTX, OSWE, GPEN, OSCPCompetency in penetration testing technical abilities and capabilities, including preferred practice models PTES, PCI-DSS, etc.

    Experience with specialized web application, mobile application, and cloud testing servicesConsulting experience is not required although will highly set you apart from other candidatesAbility to mentor, train, and develop others in a team environment, including a remote environment settingConsiders communication style based on audience- ability to communicate highly technical findings to a non-technical audience clearlyStrong attention to detail and superior analytical, technical, and problem-solving skillsDemonstrated experience collaborating with senior business leaders in support of security strategy- influencing and interpersonal skillsAuthorized to work in MexicoBonus Qualifications:


    A Degree in a relevant IT or Cybersecurity majorActive engagement in a penetration testing frameworkHTB account with an active rank of "hacker" or above, or similar training platform rank/skillConsulting experience*Please note this is a remote position that can be executed from anywhere in Mexico and doesn't require any on site time.

    Why Echelon? We are committed to creating an inclusive environment for our team with unquestioned integrity. If you have a special need that requires accommodation, please let your recruiter know.

    One of our core values is "People with Personality" and we want to allow you the space to bring your full self to work.


    We currently offer the following benefits:

    Access to private medical insurance through AxaLife insurance policy through Sura Seguros30-day Christmas bonus and a monthly technology stipendContribution of 8% of the employee's salary to a savings fundFlexible vacation policy that allows you to manage your schedule and rest and recharge when you need toFamily-friendly benefits, including 16 weeks off for Maternity leave, eight weeks off for non-birthing parent leave, and employer-paid short-term and long-term disabilitySupport individual development through certifications, continued learning, conferences, and moreWe value a diverse workforce and a culture of inclusivity and belonging.

    All employment decisions shall be made without regard to age, race, creed, color, religion, gender, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.

    Echelon Risk + Cyber is an Equal Opportunity Employer.
    Due to the nature of our work, we perform a background and credit check on all applicants.

    These are kept confidential by our HR team and if you have any questions or concerns, please discuss with Lauren Darby during your hiring process.

    #J-18808-Ljbffr