Sr. Security Consultant – Offensive Security

The Sr. Security Consultant – Offensive Security is a critical role within Stratascale’s Adversarial Operations team who will assist in leading and supporting the development and delivery of a diverse range of continuous threat and exposure management consulting, penetration testing, and operational service programs to a portfolio of our clients. 

This position is remote with a Home Office setup as determined by Stratascale management.

As a digital and cybersecurity services company, Stratascale exists to help the Fortune 1000 transform the way they use technology to advance the business, generate revenue, and respond quickly to market demands. We call it Digital Agility.

To learn more about how we’re shaping the future of digital business and a more secure world, visit stratascale.com.

Includes, but not limited to:  

• Perform penetration testing against complex environments covering both external, internal, web application, and other forms of offensive security engagements. 
• Consult and document attack surface, threats, and vulnerability improvements based on team’s overall assessment of client’s data.  
• Perform full assessment and threat modeling against industry best practices to identify control weaknesses and assess the effectiveness of existing controls.  
• Perform root cause analysis on identified vulnerabilities and attack surface weaknesses to determine technical solutions to be presented to client along with recommendations for remediations.  
• Collaborate with client’s security teams to understand mitigation or resolutions for findings discovered by analysts.  
• Review threat intelligence for specific threat vectors that align with client's industry or potentially impacted by to utilize in attack path modeling.  
• Assist in defining, measuring, and quantifying business risk and vulnerability impacts to clients their stakeholders.  
• Maintain knowledge of modern penetration testing tools, techniques, and methodologies. 
• Provide mentorship and guidance to team members while assisting them in learning the overall processes.

• 5+ years of experience of offensive security processes and cybersecurity operations.  
• 5+ years of experience working with offensive security tools including Cobalt Strike, Nessus, Burp Suite Pro, Kali Linux, Wireshark, nmap, etc.
• 5+ years of experience of general cybersecurity concepts and methods, including vulnerability management, application security, incident response, governance, risk or compliance, or security architecture

• Demonstrate a real passion for team technology solutions design and delivery  
• Outstanding written and verbal communication and strong ability to build relationships with customers, partners and staff members  
• Ability to train and disseminate information within an area or operation and work effectively within all levels of an organization, both internally and externally  
• Ability and initiative to research and resolve problems with a positive attitude, excellent presentation skills and comfortable leading meetings and discussions  
• Ability to develop and manage mentoring relationship by building trust, setting goals, respecting employees, promoting confidence and keeping the mentoring relationship on track

Certifications below are preferred but not required:  

• Industry certifications:
  • OSCP
  • OSCE
  • PEN-300
  • WEB-300
  • EXP-301
  • BSCP

• Attend virtual customer meetings when appropriate  
• Travel to customer sites, partner sites, conferences and Stratascale offices up to 20% annually  
• Candidate will need to have access to an international airport

• The estimated annual pay range for this position is $165,000 - $205,000 which includes a base salary and bonus. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending.
• Equal Employment Opportunity – M/F/Disability/Protected Veteran Status