Talent.com
Senior Offensive Security Engineer/Senior Penetration Tester/Senior Security Analyst USA
Senior Offensive Security Engineer/Senior Penetration Tester/Senior Security Analyst USAZortech Solutions • New York, NY, United States
[error_messages.no_longer_accepting]
Senior Offensive Security Engineer / Senior Penetration Tester / Senior Security Analyst USA

Senior Offensive Security Engineer / Senior Penetration Tester / Senior Security Analyst USA

Zortech Solutions • New York, NY, United States
[job_card.variable_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Role : Senior Offensive Security Engineer / Senior Penetration Tester / Senior Security Analyst

Location : New York-Onsite

Duration : Fulltime

BOLD certifications are required, Green are ideal experience.

Job Description :

Seeking a candidate to plan and execute penetration testing operations in collaboration with business partners, CISOs, BISOs, GSOC, and other stakeholders. The successful candidate will play a crucial role in testing the security program, and identifying potential gaps in people, processes, and technology.

Responsibilities :

  • Plan, lead, and execute penetration testing engagements, simulating threat actor roles during tests, attack simulations, training, and exercises.
  • Utilize simulated adversary threat-based approaches to expose and exploit vulnerabilities, improving the security of products and the technology landscape.
  • Replicate tactics, techniques, and procedures used by modern attackers, including common network exploitation and penetration techniques, and software exploitation.
  • Develop attack plans, coordinating with Red Team Operators and 3rd Party vendors to achieve objectives.
  • Provide constructive feedback to defenders and product teams, emphasizing successes and failures.
  • Develop, modify, and extend tools / exploits for security assessments, including custom tools and automation.
  • Establish credibility as a trusted advisor to stakeholders and stay current with advanced attacks for application in red team activities.
  • Assist defensive and product teams in understanding how to detect and stop cyber-attacks through purple teaming exercises and CTF demonstrations.
  • Contribute to groundbreaking research and promote an environment of innovation and knowledge-sharing within the security enthusiast team.
  • Act as an individual contributor, potentially overseeing those at earlier career stages and 3rd party reports in penetration testing engagements.
  • Effectively report analysis and findings using various formats such as written reports, Jira, tickets, presentations, etc.
  • Maintain and develop penetration testing processes and related artifacts.

Experience :

  • Bachelor's degree in information systems / technology, Computer Science / Engineering, or equivalent field of study, or a minimum of 5 years of cyber security experience.
  • Proven experience in Red Teaming and Penetration Testing.
  • Minimum 3 years of deep, hands-on technical security experience, including expertise in security technologies, web applications, cryptography, social engineering, open-source intelligence gathering (OSINT), mobile platforms, software security, and malware reverse engineering.
  • Deep technical understanding of enterprise operating system environments, Active Directory, and networking.
  • Strong understanding of security vulnerabilities and common software engineering flaws.
  • Familiarity with popular scripting languages and ability to automate simple tasks.
  • Familiarity with CND-based analytical models (Kill Chain, ATT&CK, etc.).
  • One or more of the following security certifications preferred : OSCP, OSCE, OSEE, OSWE, CREST, GXPEN.
  • Experience working with Financial Services and Critical Infrastructure, including the CBEST, TIBER, iCAST, CORIE, AASE, NYDFS, and DORA testing parameters.
  • Strong verbal and written communication skills, along with effective presentation skills.
  • Ability to thrive in a fast-paced environment, with problem-solving and barrier-breaking skills.
    • [job_alerts.create_a_job]

    Security Security • New York, NY, United States

    [internal_linking.related_jobs]
    Senior Engineer, Threat Detection - Advanced Security Solutions

    Senior Engineer, Threat Detection - Advanced Security Solutions

    Presidio Networked Solutions, LLC • New York, NY, United States
    [job_card.full_time]
    Presidio, Where Teamwork and Innovation Shape the Future.AtPresidio, we're at the forefront of a global technology revolution, transforming industries throughcutting-edge digital solutions and next...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Lead Security Engineer - Cyber Security

    Lead Security Engineer - Cyber Security

    Relativity • New York, NY, United States
    [job_card.full_time]
    As a Lead Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure.In this role, the main responsibilities will be to investigate and analyze emerging threat...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Application Security Engineer

    Application Security Engineer

    Open Systems Technologies • New York, NY, US
    [job_card.full_time]
    A financial firm is looking for an.Perform Application Security scans (e.DAST and SCA) on applications and APIs to identify security vulnerabilities and weaknesses. Triage security findings and coll...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Threat Detection Engineer

    Senior Threat Detection Engineer

    Capital One • New York City, NY, US
    [job_card.full_time] +1
    Senior Threat Detection Engineer The Threat Detection & Analytics team is seeking qualified professionals to join our ranks. This highly specialized team of skilled engineers serves as experts in cr...[show_more]
    [last_updated.last_updated_variable_hours] • [promoted] • [new]
    Sr Technical Security Engineer (New York)

    Sr Technical Security Engineer (New York)

    ektello • New York, NY, US
    [job_card.part_time]
    Technical Security Engineer, W2 remote.Strong understanding of secure architecture for thick clients, including local storage protection, inter-process communication, JavaScript engines, OS-level s...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Sr Security Engineer

    Sr Security Engineer

    Uber • New York, NY, United States
    [job_card.full_time]
    We are seeking a talented and experienced Sr Security Engineer to join our Threat Defense and Response team and help drive the next generation of AI-powered cyber defense capabilities.This role wil...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Software Security Engineer

    Senior Software Security Engineer

    Anthropic • New York, NY, US
    [job_card.full_time]
    About Anthropic Anthropic's mission is to create reliable, interpretable, and steerable AI systems.We want AI to be safe and beneficial for our users and for society as a whole.Our team is a quic...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Analyst

    Senior Analyst

    Manhattan Strategy Group • New York, NY, United States
    [job_card.full_time]
    Manhattan Strategy Group (MSG), a leading management consulting firm, is seeking a strategic and experienced Senior Analyst for an upcoming opportunity with the Department of Homeland Security (DHS...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Security Engineer

    Senior Security Engineer

    Secur-Serv • New York, NY, US
    [job_card.full_time]
    This range is provided by Secur-Serv.Your actual pay will be based on your skills and experience — talk with your recruiter to learn more. Direct message the job poster from Secur-Serv.You will prov...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Security Engineer

    Senior Security Engineer

    S&P Global • New York, New York, United States
    [job_card.full_time]
    This job is with S&P Global, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.Kensho is S&a...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Security Engineer (Product)

    Senior Security Engineer (Product)

    Headway • New York, NY, United States
    [job_card.full_time]
    The Trust team at Headway is focused on security and privacy for all of Headway’s customers - therapists, patients, and payers (ex : insurance companies and health systems).As an early member on the...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Enhanced Security Officer PT (62541)

    Enhanced Security Officer PT (62541)

    Inter-Con Security Systems • New York, NY, US
    [job_card.full_time] +1
    Inter-Con Security Systems Job Posting.Founded in 1973, Inter-Con Security Systems, Inc.US-owned security company, providing integrated security solutions to government and commercial customers on ...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Cyber Security Engineer (IAM, PAM, SOAR) (New York)

    Senior Cyber Security Engineer (IAM, PAM, SOAR) (New York)

    Gambit Technologies • New York, NY, United States
    [job_card.full_time]
    Senior Cyber Security Engineer, NYC Hybrid (3 Days a week Onsite).Our client is a financial services provider and theyre looking for a senior engineer with real depth in Python OO and CyberArk or S...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    USA_Analyst

    USA_Analyst

    Varite • New York, NY, United States
    [job_card.full_time]
    Develop, implement, and maintain network security policies, procedures, and architecture.Ensure compliance with legal and regulatory requirements. Conduct risk assessments to identify and mitigate v...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Consultant - Physical Security (New York)

    Senior Consultant - Physical Security (New York)

    a client of SI Placement • New York, NY, United States
    [job_card.full_time]
    Senior Consultant-Physical Security; Not Cyber.The Firm, a provider of comprehensive risk management services, is seeking a Senior Consultant to serve as the dedicated Security Lead or virtual Chie...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security Operations Engineer (Threat Detection & Penetration Testing) (New York)

    Security Operations Engineer (Threat Detection & Penetration Testing) (New York)

    Bask Health • New York, NY, United States
    [job_card.full_time]
    You will be leveraging your security operations experience to analyze and respond to security notifications, events, and inquiries. You will be performing initial triage of potential security incide...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security Engineer

    Security Engineer

    Figma • New York, NY, US
    [job_card.full_time]
    Figma is growing our team of passionate people on a mission to make design accessible to all.Born on the Web, Figma helps entire product teams brainstorm, design and build better products — from st...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Security Sciences Senior Project Manager

    Security Sciences Senior Project Manager

    Ariel Partners • New York, NY, United States
    [job_card.full_time]
    OTI Cyber Command’s Security Sciences division manages citywide security initiatives and software engineering projects through industry standard Project Portfolio Management (PPfM) frameworks.PPfM ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]