Security Advisor I, Falcon Complete
CrowdStrike
Cyber SecurityLinux
Offensive Security Engineer – WebApp/Internal & External Penetration Testing
Trace3
full-time
Posted on:
Location Type: Remote
Location: Remote • Texas • 🇺🇸 United States
Visit company websiteSalary
💰 $65 - $70 per hour
Job Level
JuniorMid-Level
Tech Stack
AWSAzureCloudGoGoogle Cloud PlatformJ2EEJavaLinux.NETPerlPythonRubyShell ScriptingUnix
About the role
- The Offensive Security Engineer will perform offensive security campaigns for our clients to improve their ability to protect, detect, and respond to known adversaries.
- This position will reduce cyber risk by uncovering vulnerabilities and weaknesses in our client’s enterprise cyber environment through coordinated ethical hacking and penetration testing scenarios.
- The Engineer will work closely with team members to execute and report on sophisticated ethical hacking exercises, to identify cyber vulnerabilities, and reduce the risk posture of enterprise systems.
- This role will be primarily responsible for performing application and OS security assessments and will make recommendations on effective countermeasures.
- A key function of this role will be building deep relationships, gaining trust, and enabling client success.
Requirements
- Bachelor’s degree in Engineering in Computer Science or Information Technology or a related technical field; or equivalent related professional experience.
- OSCP, eCPPT, eWPT, PNPT, OSWE or other equivalent certification(s) is a huge plus
- Through understanding of one or more Unix/Linux/Mac/Windows operating systems
- 2-3 years' experience in at least three of the following:
- Red Team penetration test tools such as Kali, ParrotOS, Bloodhound, MetaSploit, BurpSuite, OWASP Zap, etc
- Network penetration testing and manipulation of network infrastructure
- Web application assessments (Mobile application testing a plus)
- Shell scripting or automation of simple tasks using Perl, Python, Go, PowerShell or Ruby
- Developing, extending, or modifying exploits, shellcode or exploit tools
- Developing applications or scripts in C#, ASP, .NET, ObjectiveC, Go, Java (J2EE), Python, or Ruby
- Experience with at least one or more of the major cloud providers (AWS, Azure, and GCP)
- Strong knowledge of tools used for web application and network security testing
- Strong knowledge of current web application structure and strong ability to test both modern and older web applications
- Excellent oral, written communication, and presentation skills with an ability to present client security sessions and security workshops to C-Level Executives and non-technical audience.
- Highly organized, detail-oriented, excellent time management skills, and able to effectively prioritize tasks in a fast-paced, high-volume, and evolving work environment.
- Ability to approach customer and sales requests with a proactive and consultative manner; listen and understand user requests and needs and effectively deliver.
- Comfortable managing multiple and changing priorities, and meeting deadlines in an entrepreneurial environment
- Ability to travel when needed
Benefits
- Comprehensive medical, dental and vision plans for you and your dependents
- 401(k) Retirement Plan with Employer Match, 529 College Savings Plan, Health Savings Account, Life Insurance, and Long-Term Disability
- Competitive Compensation
- Training and development programs
- Stocked kitchen with snacks and beverages
- Collaborative and cool culture
- Work-life balance and generous paid time off
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
penetration testingethical hackingapplication security assessmentsOS security assessmentsshell scriptingexploit developmentnetwork penetration testingweb application assessmentscloud computingvulnerability assessment
Soft skills
communication skillspresentation skillsorganizational skillstime managementproactive approachconsultative mannerrelationship buildingtrust buildingdetail-orientedability to prioritize
Certifications
OSCPeCPPTeWPTPNPTOSWE
