Senior Offensive Security Consultant

Job Description

$134,000 - $158,000

WithSecure™ delivers research-led cyber security to defend organizations, society and people from real-world attacks and build resilience into their approach. Our people are a mix of technical and creative experts – diverse, talented, and passionate people – working tirelessly to help us advance the industry with new ways of thinking. They lead their own development, in and out of the office. They call the shots when it comes to building a place to call home in our organization.

We have openings for Senior Offensive Security Consultants on our US team based out of New York City. Your role will involve leading penetration tests and security assessments as well as representing the company in key client relationships. You will serve as an integral team member and role model through your skills and passion for security. Importantly, our Senior Consultants lead teams focused on our service offerings (such as AppSec, NetSec, MobSec, CloudSec, and ProdSec) and act as regional technical representatives with our flagship clients.

Key Responsibilities

Senior Offensive Security Consultants serve as intra-team leaders. They focus on creating value beyond the limits of their own delivery capacity to enable others and help the business to improve. Expectations for this level include:

• Being technically proficient, with the ability to confidently deliver consulting services to clients across a range of our core service offerings.
• Acting as an authority in specialized areas such as client interfacing, technical expertise, or research.
• Overseeing larger, often strategic projects, and providing advice and guidance to the rest of the team from pre-sales and scoping through to delivery.
• Leading service teams and acting as regional technical representatives with our flagship clients.
• Leveraging and having a positive impact on other regions and business units through collaboration, delivery, support, and engagement.
• Playing a significant supporting role in the development of new services and internal projects, as well as helping advance the skillsets of other team members through mentorship.
• Actively participating in research, both on your own as well as coordinating and supporting research performed by other team members.

What are we looking for?

What we need

We solve complex cyber-security problems daily and to do so requires an interesting and comprehensive set of skills. To be successful at WithSecure and help our clients with their challenges you’ll need the following:

A passion for security

Senior Consultants are dedicated to advancing security for the long haul. They are driven to develop their team by blazing new trails, sharing knowledge, and enabling others to grow.
WithSecure’s consultants are invested in what they do. They have a passion for computers, hacking, security and most importantly, solving problems. If this wasn’t your job, it would be your hobby. At WithSecure, we believe in technical excellence: it’s how we demonstrate our passion.

Technical excellence

You’ve earned extensive knowledge through experience and can adapt to different situations as needed. If faced with an unexpected hurdle, you know how to approach the situation to try and improvise an effective solution.
While not always a strict requirement, we want to see any output such as research, publications, projects, and certifications that show off what you can do.

Communication skills

Communication skills are just as important as your technical abilities. Senior Consultants are adept at explaining what we did, how we did it, and how clients can remediate it. They can present both the bigger picture and the microscopic details of an engagement to a range of audiences from high-level business stakeholders to up-and-coming team members.

Research motivation

WithSecure has a commitment to research. Our consultants get a percentage of their time dedicated to it in order to ensure their skills remain relevant. You should be keen to produce research that pushes the industry forward as well as contribute to WithSecure Labs (https://labs.withsecure.com). Whether research time is used to investigate new software, hardware or protocols, we encourage our team to push the boundaries of what is possible!
While working solo or inspiring others to work as part of a team, Senior Consultants often serve as our most active research champions.

Bonus points

Our ideal candidate will have most of the qualities below, which are presented in approximate order of importance. We encourage you to apply even if you don't meet every single one of these requirements to the letter. We value diversity and want to grow our team with a passion for security.

• 5+ years of experience performing and leading penetration tests in areas such as application security, cloud security, network security, and mobile security.
• 3+ years of experience in consulting, delivering customer-facing work across multiple industries. Ability to play a pivotal role in the team’s efforts to plan, manage, and facilitate key client relationships.
• Advanced skills writing and editing high-quality deliverables – both autonomously and as part of a team.
• Familiarity with offensive security toolkits used for penetration testing, reverse engineering, exploit development and configuration reviews.
• Participation in the security community. We want to see your personal projects, code, blog posts, publications, talks, and more.
• The drive to help lead and grow a team, as well as enable others through mentoring, training, documentation and process improvement.
• Experience with related skills such as programming, network protocols, infrastructure, systems administration, or red/purple/blue team activities.
• Relevant certifications, especially those that demonstrate practical skills (OSCP, CRTO, OSEP, CCT APP/INF, cloud certifications).
• A relevant academic degree (e.g., Engineering or Computer Science).
• Candidates must have the right to work in the United States without visa sponsorship. International travel and additional vetting for specific clients may be required.

What will you get from us

One of our biggest priorities is helping you and your family thrive. We're committed to supporting our employee’s happiness, healthiness and overall wellbeing by providing a comprehensive benefits program. Here is what we offer, at a glance:

• Comprehensive, high-quality medical plans with premiums as low as $2 per month
• FSA or Employer-funded HSA with election of qualifying HDHP medical plan
• Free Dental & Vision Coverage
• 401k with 4% match
• 25 PTO days per year
• 12 Company Holidays observed per year
• 16 weeks paid parental leave
• Fertility medical benefits
• Mental health counseling & coaching
• Monthly wellness stipend
• Monthly internet stipend
• Costco or Amazon Prime membership stipend

At this time WithSecure does not provide visa sponsorship.