NetSPI - Senior Security Consultant

Description :

We are seeking a skilled expert and detail-oriented Penetration Tester to conduct thorough security assessments, identify vulnerabilities, and provide expert recommendations to strengthen our clients' security posture.

You will be responsible for performing Web Application Penetration Testing, in addition to competencies in problem solving, client service, written/verbal communication, and project execution.

You will work to deliver clear, actionable reports and contribute to the development of security best practices.

Responsibilities :

- Review reports for accuracy in technical oversight, perform weekly QA oversight, and provide mentoring support to others.

- Create, deliver, and collaborate on penetration testing reports in diverse client environments, maintaining client-specific processes, reporting standards, and access protocols to help improve their security posture.

- Research and develop innovative techniques, tools, and methodologies for penetration testing services, alongside commitment to improvement and execution on NetSPI specific products and processes.

- Participate in development, implementation, and oversight of testing, delivery, and management strategies for key client accounts.

- Perform administrative tasks related to day-to-day consulting activities to ensure smooth business and engagement operations.

Minimum Qualifications :

- Bachelors degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience.

- Minimum of 5+ years of work experience in Penetration Testing.

- Familiarity with offensive tools, based on applicable skillset (e., Kali Linux, Burp Suite, Metasploit, Nessus).

- Familiarity with offensive and defensive IT concepts and protocols.

- Extensive understanding of the OWASP Top 10, MITRE ATT&CK framework, and various security frameworks.

- Working knowledge of Windows, Linux and MacOS operating systems internals.

- Experience mentoring or coaching to growing team members, while sharing knowledge

externally through blogs, hosting webinars, or presenting at conferences.

- Ability to work independently and as part of a team.

- Proficient communication skills, both written and verbal.

- This position requires an 8-hour workday, with occasional evenings or weekends necessary to meet project deadlines or critical needs.

Preferred Qualifications :

- Ability to provide technical and QA oversight on Web Application and Mobile service lines service lines.

- Experience in one or more of the following programming or scripting languages (e., Ruby, Python, Perl, C, C++, Java, and C#).

- Offensive Security Certifications (e., GXPN, GPEN, OSCP, GWAPT).