The Consultant works closely with Project Managers, Delivery Directors, and other Delivery team members to lead engagements, assessing the security of various types of client applications and supporting infrastructure against security best practices. The Consultant is a technical leader with broad technical skills, meeting the objectives of their engagements, collaborating with clients, mentoring teammates, and providing subject matter expertise across one or more technical domains. The Consultant is a trusted advisor to clients, and through objective testing and results reporting, supports the client in making well-informed, risk-based decisions to improve overall security posture.
What You'll Do
Working independently and collaboratively with a team to both lead and support
Perform penetration testing on applications with complex technology stacks from both a: Blackbox & Whitebox perspective
Dynamically flex your skills when assessing emerging or custom technologies
Contextualize vulnerabilities and assess realistic impact to a client accounting for mitigating and aggravating factors
Manage priorities and tasks to achieve utilization targets
Operate with professionalism both internally and with clients
Ensure quality reports and services are delivered efficiently and on time
Maintains strong depth of knowledge in the practice area
Collaborate with project managers, quality management, sales and other delivery team members to drive customer satisfaction and meet project deliverables
Up to 10% travel
What You'll Bring
Application penetration testing and assessment tradecraft and methodologies (including browser-based, API)
Strong working knowledge of at least two programming or scripting languages
Strong understanding of security principles and industry best practices
Minimum of 2 years’ experience in a consulting/professional services role
Minimum of 2 years’ experience in Application Security and/or Software Development
Proficiency in Web Application Penetration Testing
Strong overall technical skills, with strong expertise in at least one of the following:
Mobile Application Penetration Testing
Thick Application Penetration Testing
Hardware Penetration Testing
Secure Code Review
Container Penetration Testing
Cloud Penetration Testing
Network Active Directory Penetration Testing
AI Penetration Testing
Strong consulting skills including:
Time management, performing adjacent tasks while ensuring on-time delivery, escalating issues as needed
Verbal communication, leading client calls for project kickoffs and debrief
Written communication & Report writing, for both executive audiences and technical staff
High school diploma required
Bonus Points
UK CREST Certification and eligibility to be approved for and maintain UK SC level Clearance
