Talent.com
Senior Offensive Security Engineer/Senior Penetration Tester/Senior Security Analyst USA
Senior Offensive Security Engineer/Senior Penetration Tester/Senior Security Analyst USAZortech Solutions • New York, NY, United States
[error_messages.no_longer_accepting]
Senior Offensive Security Engineer / Senior Penetration Tester / Senior Security Analyst USA

Senior Offensive Security Engineer / Senior Penetration Tester / Senior Security Analyst USA

Zortech Solutions • New York, NY, United States
[job_card.variable_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Role : Senior Offensive Security Engineer / Senior Penetration Tester / Senior Security Analyst

Location : New York-Onsite

Duration : Fulltime

BOLD certifications are required, Green are ideal experience.

Job Description :

Seeking a candidate to plan and execute penetration testing operations in collaboration with business partners, CISOs, BISOs, GSOC, and other stakeholders. The successful candidate will play a crucial role in testing the security program, and identifying potential gaps in people, processes, and technology.

Responsibilities :

  • Plan, lead, and execute penetration testing engagements, simulating threat actor roles during tests, attack simulations, training, and exercises.
  • Utilize simulated adversary threat-based approaches to expose and exploit vulnerabilities, improving the security of products and the technology landscape.
  • Replicate tactics, techniques, and procedures used by modern attackers, including common network exploitation and penetration techniques, and software exploitation.
  • Develop attack plans, coordinating with Red Team Operators and 3rd Party vendors to achieve objectives.
  • Provide constructive feedback to defenders and product teams, emphasizing successes and failures.
  • Develop, modify, and extend tools / exploits for security assessments, including custom tools and automation.
  • Establish credibility as a trusted advisor to stakeholders and stay current with advanced attacks for application in red team activities.
  • Assist defensive and product teams in understanding how to detect and stop cyber-attacks through purple teaming exercises and CTF demonstrations.
  • Contribute to groundbreaking research and promote an environment of innovation and knowledge-sharing within the security enthusiast team.
  • Act as an individual contributor, potentially overseeing those at earlier career stages and 3rd party reports in penetration testing engagements.
  • Effectively report analysis and findings using various formats such as written reports, Jira, tickets, presentations, etc.
  • Maintain and develop penetration testing processes and related artifacts.

Experience :

  • Bachelor's degree in information systems / technology, Computer Science / Engineering, or equivalent field of study, or a minimum of 5 years of cyber security experience.
  • Proven experience in Red Teaming and Penetration Testing.
  • Minimum 3 years of deep, hands-on technical security experience, including expertise in security technologies, web applications, cryptography, social engineering, open-source intelligence gathering (OSINT), mobile platforms, software security, and malware reverse engineering.
  • Deep technical understanding of enterprise operating system environments, Active Directory, and networking.
  • Strong understanding of security vulnerabilities and common software engineering flaws.
  • Familiarity with popular scripting languages and ability to automate simple tasks.
  • Familiarity with CND-based analytical models (Kill Chain, ATT&CK, etc.).
  • One or more of the following security certifications preferred : OSCP, OSCE, OSEE, OSWE, CREST, GXPEN.
  • Experience working with Financial Services and Critical Infrastructure, including the CBEST, TIBER, iCAST, CORIE, AASE, NYDFS, and DORA testing parameters.
  • Strong verbal and written communication skills, along with effective presentation skills.
  • Ability to thrive in a fast-paced environment, with problem-solving and barrier-breaking skills.
    • [job_alerts.create_a_job]

    Security Security • New York, NY, United States

    [internal_linking.related_jobs]
    Senior Engineer, Threat Detection - Advanced Security Solutions

    Senior Engineer, Threat Detection - Advanced Security Solutions

    Presidio Networked Solutions, LLC • New York, NY, United States
    [job_card.full_time]
    Presidio, Where Teamwork and Innovation Shape the Future.AtPresidio, we're at the forefront of a global technology revolution, transforming industries throughcutting-edge digital solutions and next...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Lead Security Engineer - Cyber Security

    Lead Security Engineer - Cyber Security

    Relativity • New York, NY, United States
    [job_card.full_time]
    As a Lead Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure.In this role, the main responsibilities will be to investigate and analyze emerging threat...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Sr Technical Security Engineer (New York)

    Sr Technical Security Engineer (New York)

    ektello • New York, NY, US
    [job_card.part_time]
    Technical Security Engineer, W2 remote.Strong understanding of secure architecture for thick clients, including local storage protection, inter-process communication, JavaScript engines, OS-level s...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior AI Security Engineer / Architect (New York)

    Senior AI Security Engineer / Architect (New York)

    Glocomms • New York, NY, US
    [job_card.full_time] +1
    Glocomms is partnered with a premier hedge fund to identify a Senior Security Engineer / Architect with deep expertise in AI Security. The ideal candidate will be a technical leader with a passion for...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Security Architect

    Senior Security Architect

    TradeJobsWorkForce • 10256 New York, NY, US
    [job_card.full_time]
    Senior Security Architect Job Duties : Enhances security team accomplishments and competence by planning deliver...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Cyber Security Engineer (IAM, PAM, SOAR) (New York)

    Senior Cyber Security Engineer (IAM, PAM, SOAR) (New York)

    Gambit Technologies • New York, NY, US
    [job_card.part_time]
    Senior Cyber Security Engineer, NYC Hybrid (3 Days a week Onsite).Our client is a financial services provider and theyre looking for a senior engineer with real depth in Python OO and CyberArk or S...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Application Security Engineer

    Application Security Engineer

    Open Systems Technologies • New York, New York, United States
    [job_card.full_time]
    A financial firm is looking for an.Compensation : $140-180k Responsibilities : Perform Application Security scans (e.DAST and SCA) on applications and APIs to identify security vulnerabilities and we...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    SOC Senior Threat Analyst

    SOC Senior Threat Analyst

    PRIORITY CARES HOME SERVICES • New York, NY, United States
    [job_card.full_time]
    Onsite – 11 MetroTech Center, 5th Floor (SOC), Brooklyn, NY 11201.Night shifts between 6 : 00 PM – 6 : 00 AM.The Senior Threat Analyst role is a critical part of NYC Cyber Command’s effort to defend th...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Director, Security and Surveillance

    Director, Security and Surveillance

    BetMGM • Jersey City, NJ, US
    [job_card.full_time]
    Director, Security And Surveillance.We are BetMGM, revolutionizing sports betting and online gaming in the United States. We are a partnership between two powerhouse organizationsMGM Resorts Interna...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Security Engineer

    Senior Security Engineer

    S&P Global • New York, New York, United States
    [job_card.full_time]
    This job is with S&P Global, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.Kensho is S&a...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Security Engineer (Product)

    Senior Security Engineer (Product)

    Headway • New York, NY, United States
    [job_card.full_time]
    The Trust team at Headway is focused on security and privacy for all of Headway’s customers - therapists, patients, and payers (ex : insurance companies and health systems).As an early member on the...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security Analyst

    Security Analyst

    NS IT Solutions • NEW YORK, New York, USA
    [job_card.full_time]
    Job Title : Security Analyst Location : Hybrid - New York, NY (must be onsite in one of the approved hub cities; see list below) Type : Contract (W2 only, no sponsorship)[show_more]
    [last_updated.last_updated_variable_days]
    System Security Engineer

    System Security Engineer

    New York City Department of Investigation • Manhattan, NY, United States
    [job_card.full_time]
    The New York City Department of Investigation (DOI) is one of the oldest law enforcement agencies in the country; its mission is to combat municipal corruption. DOI serves the people of New York Cit...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security Engineer, Systems Integrity

    Security Engineer, Systems Integrity

    Menlo Ventures • New York, NY, United States
    [job_card.full_time]
    Anthropic’s mission is to create reliable, interpretable, and steerable AI systems.We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Risk Analyst

    Senior Risk Analyst

    American Indemnity • New York, NY, United States
    [job_card.full_time]
    Argo Group International Holdings, Incand American National, US based specialty P&C companies, (together known as BP&C, Inc. Brookfield Wealth Solutions, Ltd.BWS"), a New York and Toronto-listed pub...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security Operations Engineer (Threat Detection & Penetration Testing) (New York)

    Security Operations Engineer (Threat Detection & Penetration Testing) (New York)

    Bask Health • New York, NY, United States
    [job_card.full_time]
    You will be leveraging your security operations experience to analyze and respond to security notifications, events, and inquiries. You will be performing initial triage of potential security incide...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security Sciences Senior Project Manager

    Security Sciences Senior Project Manager

    Ariel Partners • New York, NY, United States
    [job_card.full_time]
    OTI Cyber Command’s Security Sciences division manages citywide security initiatives and software engineering projects through industry standard Project Portfolio Management (PPfM) frameworks.PPfM ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security Lead (Vulnerability Management) - SF / NYC / Remote (US)

    Security Lead (Vulnerability Management) - SF / NYC / Remote (US)

    Cogent Security, Inc. • New York, NY, United States
    [filters.remote]
    [job_card.full_time]
    Cogent Security is on a mission to stop breaches and prevent cybercrime by innovating at the frontier of generative AI systems. We are building the world’s first AI cyber taskforce, composed of AI a...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]