*_about us_*_: _*at echelon risk + cyber we believe in defending the basic human right to security and privacy. We are looking for an exceptional senior offensive security consultant to join our team. We believe passion in security is paramount and those who strive to improve their knowledge in this field will grow quickly in our practice. Work will be performed in a consultative manner with clients of various industries, sizes, and makeup.
our next team member will be ready to roll up their sleeves and identify opportunities for our clients and for echelon internally with unquestioned integrity. This team member will be passionate about cybersecurity and ready to use their knowledge to be an entrepreneurial problem solver and work alongside their echelon team members to build creative solutions.
at echelon, we believe learning never stops. You will have the opportunity to engage with systems that are at the cutting edge of technology and team members that will challenge you with meaningful work. We allow our team members to build from the ground up and make an impact across the organization.
*_ what you will do (responsibilities)_*:
- be a technical leader while executing security assessments and audits, including penetration testing (internal, external, web, wireless, physical), adversarial emulation exercises (red teams), social engineering exercises, and other offensive security-related exercises to improve a client's overall security posture.
- build and maintain technical knowledge of adversarial activity to emulate similar ttps during security assessments.
- use resourceful thinking to identify and exploit security vulnerabilities usually missed by automated tools
- contribute detail-oriented documentation on findings, observations, remediation steps, and/or mitigation recommendations in the form of word and/or powerpoint reports.
- find ways to improve your tradecraft and knowledge in the adversarial simulation space
- assist in developing a team to support client engagements and the firm mission, vision, and values
- conduct research and develop offensive security tools and exploits based on current and emerging ttps
- produce thought leadership for the organization's website blog on a regular basis
- actively be involved in the cybersecurity community, speak at local and national conferences
*_ requirements_*:
- 3-5 years of offensive cybersecurity experience
- demonstrated ability to lead and perform offensive security engagements with little to no guidance
- a relevant offensive security certification: gwapt, ewptx, ewpt, gcpn, gxpn, oscp
- competency in penetration testing technical abilities and capabilities, including preferred practice models ptes, pci-dss, etc.
- experience with cloud security best practices and frameworks
- ability to mentor, train, and develop others in a team environment, including a remote environment setting
- considers communication style based on audience
- ability to communicate highly technical findings to a non-technical audience clearly
- strong attention to detail and superior analytical, technical, and problem-solving skills
- demonstrated experience collaborating with senior business leaders in support of security strategy
- influencing and interpersonal skills
- ability to multitask, prioritize and lead teams in constantly evolving environments
- proven track record of solving complex and unique problems with no clear solution by use of expertise and unique knowledge
- ability to effectively communicate with a remote work team
- advanced level of english, both verbal and written
- authorized to work in mexico
*_ bonus qualifications_*:
- a degree in a relevant it or cybersecurity major
- active engagement in a penetration testing framework
- htb account with an active rank of "hacker" or above, or similar training platform rank/skill
- consulting experience
*_ why echelon? _*we are committed to creating an inclusive environment for our team with unquestioned integrity. If you have a special need that requires accommodation, please let your recruiter know. One of our core values is "people with personality" and we want to allow you the space to bring your full self to work.
*we currently offer the following benefits*:
- access to private medical insurance through axa
- life insurance policy thru sura seguros
- 30-day christmas bonus and a monthly technology stipend
- contribution of 8% of the employee's salary to a savings fund
- flexible vacation policy that allows you to manage your schedule and rest and recharge when you need to
- family-friendly benefits, including 16 weeks off for maternity leave, eight weeks off for non-birthing parent leave, and employer-paid short-term and long-term disability
- support individual development through certifications, continued learning, conferences, and more
we value a diverse workforce and a culture of inclusivity and belonging. All employment decisions shall be made without regard to age, race