Security Consultant-Threat & Attack Simulation- Remote (Anywhere in the U.S.)

2 hours, 44 minutes ago
Full-time
Junior
Cybersecurity
GuidePoint Security

GuidePoint Security

GuidePoint Security is a trusted cybersecurity consulting firm that provides expertise, solutions, and services to help organizations make informed decisions and minimize risks. Their elite team of experts offers holistic perspectives on cybersecurity,...

Internet Software & Services
251-1K
Founded 2011

Description

  • Deliver threat and attack simulation services, including vulnerability assessments, internal and external penetration tests, wireless security assessments, social engineering, and custom assessments.
  • Author assessment reports and deliverables tailored to technical and managerial audiences, including technical findings, business impact, and remediation strategies.
  • Use automation, orchestration, and scripting to reduce manual work and improve service efficiency.
  • Contribute to marketing efforts by publishing research, speaking at conferences, writing blogs and whitepapers, hosting webinars, and developing security tools.
  • Assist with practice development by improving existing offerings and helping shape future services.
  • Build and maintain client relationships by providing support, information, and guidance.
  • Configure, operate, and manage a Breach and Attack Simulation or continuous penetration testing platform and communicate results to stakeholders.
  • Continuously strengthen knowledge and skills to stay current in the information security industry.
  • Perform other duties as assigned.

Requirements

  • Minimum of 2 years of experience performing offensive or attack-oriented security assessments.
  • Minimum of 1 year of experience in an enterprise-level consulting services role.
  • Experience with public cloud components and architectures such as AWS, Azure, and GCP.
  • Lab-based certifications such as OSCP, OSCE, OSEE, and GSE are strongly preferred.
  • Other relevant certifications such as GPEN and GCIH are preferred.
  • InfoSec community involvement, such as conference speaking, blog or whitepaper authoring, and podcast speaking or producing, is strongly preferred.
  • Over 4 combined years of IT and information security experience is preferred.
  • Internal operational (non-consulting) experience is strongly preferred.
  • Experience with continuous penetration testing or BAS platforms is a plus but not required.
  • Ability to use emerging technologies, including AI tools, to work smarter and drive better business outcomes.

Benefits

  • Remote workforce primarily, with U.S.-based work only.
  • Group medical insurance options, including a Zero Deductible PPO plan or High Deductible Health Plan with HSA employer contributions.
  • Group dental insurance with GuidePoint covering 100% of employee premiums and 75% of family plan premiums.
  • 12 corporate holidays and a Flexible Time Off (FTO) program.
  • Healthy mobile phone and home internet allowance.
  • Eligibility for a retirement plan after 2 months at open enrollment.
  • Pet benefit option.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Software Engineer - Security Test

PayJoy 1K-5K Banks

PayJoy is hiring a Software Engineer - Security Test to monitor Android attack tools and conduct security testing for its lock products and related OEM mobile devices.

Android
2 hours, 44 minutes ago

Security Sales Solutions Specialist

Cybit 51-250 Internet Software & Services

Cybit is hiring a remote UK-based Security Sales Solutions Specialist to drive cybersecurity revenue growth by developing and closing customer opportunities across managed security, cloud, and risk-focused solutions.

Cybersecurity Network Security SIEM SOC
2 hours, 59 minutes ago

Information Security Specialist

Vero HR 11-50 Professional Services

Information Security Specialist at a fast-growing consultancy supporting a diverse range of clients by reviewing security posture, guiding improvement initiatives, and delivering client security projects.

Cybersecurity HIPAA Penetration Testing
3 hours, 14 minutes ago

Public Facing Security Researcher

CertiK is seeking a Web3 security researcher to represent the company publicly while supporting its blockchain security work across conferences, media, and cross-functional initiatives.

Blockchain Penetration Testing
3 hours, 14 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers