Security Consultant

**Key Responsibilities**:- **Red Team Operations**: Plan, execute, and report on operations including assumed breach, initial access, lateral movement, persistence, and data exfiltration.- **Cloud Penetration Testing**: Conduct assessments across AWS, Azure, and GCP, identifying misconfigurations, privilege escalation paths, identity attacks, and container security issues.- **Offensive Tooling**: Use and customize tools such as Cobalt Strike, Outflank, Core Impact, Silver, BloodHound, Burp Suite, develop and utilize custom tooling; and develop custom scripts for post-exploitation and evasion.- **Threat Simulation**: Develop realistic threat scenarios based on MITRE ATT&CK, APT tactics, and current breach trends.- **Reporting**:Write detailed, high-quality reports outlining technical vulnerabilities and exploitation techniques, severity levels, steps to reproduce, and actionable remediation steps.- **Client Communication**:Brief clients on findings and provide strategic guidance on remediation, overall risk reduction, and tactics to increase security posture.- **Methodology Development**:Contribute to the advancement of internal testing methodologies, tooling creation and improvements, and red team infrastructure.- **Security Research**: Stay current with emerging threats, CVEs, offensive tactics, and evolving cloud security techniques.- **Skill Development**:Perform ongoing research, analysis, and testing to enhance individual and team technical capabilities.- **Engagement Scoping**: Assist in defining scope, estimating effort, and drafting statements of work (SOWs), including recommending tailored solutions for client needs.- **Mentorship**:Coach and mentor less experienced staff, or those less experienced in specific expertise areas, to support professional development and service excellence.- **Team Training**:Train colleagues on areas of expertise and develop repeatable learning paths to support scalable team growth.- **Content Development**: Contribute to creating blog posts, articles, marketing or training materials, and participating in webinars or customer conferences.**Required Qualifications**:- Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent experience.- 3+ years of professional experience in penetration testing and offensive security consulting.- At least 2 years of experience conducting red team operations.- At least 2 years of practical experience in cloud penetration testing (AWS, Azure, etc.), including identification and exploitation of misconfigurations and IAM vulnerabilities.- Generalized penetration testing experience in areas such as infrastructure penetration testing, and manual web, mobile, or API penetration testing.- Ability to simulate real-world adversarial techniques and develop creative attack chains in controlled environments.- Strong understanding of network protocols, Active Directory, privilege escalation techniques- Demonstrated experience with C2 frameworks (Cobalt Strike, Silver, etc.)- Proficiency in scripting or coding languages (Python, PowerShell, Bash, etc.)**Preferred Qualifications**:- Experience leading technical projects, mentoring peers, or contributing to the development of team best practices.- Prior experience with Cloud Security or Development Security Operations a plus- Experience with mentoring and training within teams and partnering with Marketing teams to create valuable content for customers and prospects.Pay: Up to $85,000.00 per monthWork Location: Hybrid remote in 44160, Americana, Jal.Application Deadline: 06/06/2025