Typical duties / responsibilities may include, but are not limited to :
Lead a small team of ethical hackers / penetration testers and manage and engage external vendors to achieve.
Lead scoping and prioritizing testing engagement, and mentor the internal team.
Perform network penetration, web and mobile application testing, source code reviews, threat analysis, wireless network assessments, and social-engineering assessments.
Recognize and safely utilize attacker tools, tactics, and procedures.
Develop scripts, tools, or methodologies to enhance read teaming processes.
Validate all findings in scope from Red Team scans.
Develop comprehensive and accurate reports and presentations for both technical and executive audiences using the InfoSec reporting tools.
Effectively communicate findings and strategy to client stakeholders.
Participate in discussions with asset owners or designated technical contacts to analyze and explain results of assessments and tests as well as determine remediation steps / time needed.
Requirements : Basic Qualifications :
Basic Qualifications :
Bachelor’s degree and Minimum 7 years of experience in Information Security including at least 2 years of experience performing network penetration testing, cyber Red Teaming operations, or application security assessments.
Preferred Qualifications :
Minimum of 3 years of experience in InfoSec project management or InfoSec Management.
Strong reporting skills in being able to convey technical ideas to a business audience, and vice-versa.
Experience with developing, extending, or modifying exploits, shell code, or exploit tools preferred.
Excellent English language skills (spoken and written).
Industry certifications preferred (e.g. GPEN, GWAPT, OSCP, OSWE, EWPTX, etc.).
Ability to perform targeted penetration testing without the use of automated tools.