Talent.com
Senior Offensive Security Engineer/Senior Penetration Tester/Senior Security Analyst USA
Senior Offensive Security Engineer/Senior Penetration Tester/Senior Security Analyst USAZortech Solutions • New York, NY, United States
[error_messages.no_longer_accepting]
Senior Offensive Security Engineer / Senior Penetration Tester / Senior Security Analyst USA

Senior Offensive Security Engineer / Senior Penetration Tester / Senior Security Analyst USA

Zortech Solutions • New York, NY, United States
[job_card.variable_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Role : Senior Offensive Security Engineer / Senior Penetration Tester / Senior Security Analyst

Location : New York-Onsite

Duration : Fulltime

BOLD certifications are required, Green are ideal experience.

Job Description :

Seeking a candidate to plan and execute penetration testing operations in collaboration with business partners, CISOs, BISOs, GSOC, and other stakeholders. The successful candidate will play a crucial role in testing the security program, and identifying potential gaps in people, processes, and technology.

Responsibilities :

  • Plan, lead, and execute penetration testing engagements, simulating threat actor roles during tests, attack simulations, training, and exercises.
  • Utilize simulated adversary threat-based approaches to expose and exploit vulnerabilities, improving the security of products and the technology landscape.
  • Replicate tactics, techniques, and procedures used by modern attackers, including common network exploitation and penetration techniques, and software exploitation.
  • Develop attack plans, coordinating with Red Team Operators and 3rd Party vendors to achieve objectives.
  • Provide constructive feedback to defenders and product teams, emphasizing successes and failures.
  • Develop, modify, and extend tools / exploits for security assessments, including custom tools and automation.
  • Establish credibility as a trusted advisor to stakeholders and stay current with advanced attacks for application in red team activities.
  • Assist defensive and product teams in understanding how to detect and stop cyber-attacks through purple teaming exercises and CTF demonstrations.
  • Contribute to groundbreaking research and promote an environment of innovation and knowledge-sharing within the security enthusiast team.
  • Act as an individual contributor, potentially overseeing those at earlier career stages and 3rd party reports in penetration testing engagements.
  • Effectively report analysis and findings using various formats such as written reports, Jira, tickets, presentations, etc.
  • Maintain and develop penetration testing processes and related artifacts.

Experience :

  • Bachelor's degree in information systems / technology, Computer Science / Engineering, or equivalent field of study, or a minimum of 5 years of cyber security experience.
  • Proven experience in Red Teaming and Penetration Testing.
  • Minimum 3 years of deep, hands-on technical security experience, including expertise in security technologies, web applications, cryptography, social engineering, open-source intelligence gathering (OSINT), mobile platforms, software security, and malware reverse engineering.
  • Deep technical understanding of enterprise operating system environments, Active Directory, and networking.
  • Strong understanding of security vulnerabilities and common software engineering flaws.
  • Familiarity with popular scripting languages and ability to automate simple tasks.
  • Familiarity with CND-based analytical models (Kill Chain, ATT&CK, etc.).
  • One or more of the following security certifications preferred : OSCP, OSCE, OSEE, OSWE, CREST, GXPEN.
  • Experience working with Financial Services and Critical Infrastructure, including the CBEST, TIBER, iCAST, CORIE, AASE, NYDFS, and DORA testing parameters.
  • Strong verbal and written communication skills, along with effective presentation skills.
  • Ability to thrive in a fast-paced environment, with problem-solving and barrier-breaking skills.
    • [job_alerts.create_a_job]

    Security Security • New York, NY, United States

    [internal_linking.similar_jobs]
    Lead Security Engineer - Cyber Security

    Lead Security Engineer - Cyber Security

    Relativity • New York, NY, United States
    [job_card.full_time]
    As a Lead Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure.In this role, the main responsibilities will be to investigate and analyze emerging threat...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Lead Security Engineer

    Senior Lead Security Engineer

    JPMorganChase • Jersey, New Jersey, USA
    [job_card.full_time]
    Join a team at the forefront of securing the future of connected devices and smart environments within a world-renowned company. As a Senior Lead Security Engineer at JPMorgan Chase within the Cyber...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Product Security Engineer

    Senior Product Security Engineer

    StubHub • New York, NY, US
    [job_card.full_time]
    StubHub is on a mission to redefine the live event experience on a global scale.Whether someone is looking to attend their first event or their hundredth, we're here to delight them all the way...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Analyst

    Senior Analyst

    LaunchPointPEO • New York, NY, US
    [job_card.full_time]
    Old Dominion Strategies (ODS) is a professional services firm supporting the U.Department of Homeland Security and its components through mission-focused program management, administrative, and tec...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Application Security Engineer

    Senior Application Security Engineer

    Network Temp Inc • New York, NY, US
    [job_card.full_time]
    Perform comprehensive cybersecurity risk analysis, identifying and prioritizing risks specifically.Develop, socialize, and implement security strategies to address vulnerabilities in web.Track and ...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Cyber Security Engineer (IAM, PAM, SOAR) (New York)

    Senior Cyber Security Engineer (IAM, PAM, SOAR) (New York)

    Gambit Technologies • New York, NY, US
    [job_card.part_time]
    Senior Cyber Security Engineer, NYC Hybrid (3 Days a week Onsite).Our client is a financial services provider and theyre looking for a senior engineer with real depth in Python OO and CyberArk or S...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security Operations Engineer (Threat Detection & Penetration Testing)

    Security Operations Engineer (Threat Detection & Penetration Testing)

    Bask Health • New York, NY, US
    [job_card.full_time]
    This is an onsite role, we're looking for those who can come into office everyday in Manhattan.You will be leveraging your security operations experience to analyze and respond to security noti...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Product Security Engineer

    Senior Product Security Engineer

    Halcyon • New York City, New York, USA
    [job_card.full_time]
    Halcyon is the industrys first dedicated adaptive security platform that combines multiple proprietary advanced prevention engines along with AI models focused specifically on stopping ransomware.H...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    SOC Analyst

    SOC Analyst

    Gulf Coast Automation Group • New York, NY, US
    [job_card.full_time]
    Security Operations Center (SOC) Analyst (NYC, BOS, ATL).Remote (Must Reside in ATL, BOS, NYC).Full-Time, 2nd Shift (3 : 00 PM 12 : 00 AM ET, Monday Friday). TalentFish is casting a line for a.Security ...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Security Engineer

    Senior Security Engineer

    Secur-Serv • New York, NY, United States
    [job_card.full_time]
    This range is provided by Secur-Serv.Your actual pay will be based on your skills and experience — talk with your recruiter to learn more. Direct message the job poster from Secur-Serv.You will prov...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Security Engineer I, Platform Security

    Senior Security Engineer I, Platform Security

    Oscar Health • New York, NY, US
    [job_card.full_time]
    We're hiring a Senior Security Engineer I, Platform Security to join our Security team.Oscar is the first health insurance company built around a full stack technology platform and a relentless...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Engineer, Threat Detection - Advanced Security Solutions

    Senior Engineer, Threat Detection - Advanced Security Solutions

    Presidio Networked Solutions, LLC • New York, NY, United States
    [job_card.full_time]
    Presidio, Where Teamwork and Innovation Shape the Future.AtPresidio, we're at the forefront of a global technology revolution, transforming industries throughcutting-edge digital solutions and next...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security Analyst

    Security Analyst

    NS IT Solutions • New York City, New York, USA
    [job_card.full_time]
    Location : Hybrid - New York NY (must be onsite in one of the approved hub cities; see list below).Type : Contract (W2 only no sponsorship). Hybrid Locations (must work from one of these cities).New Y...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Security Engineer

    Senior Security Engineer

    NetBox Labs • New York City, New York, USA
    [job_card.full_time]
    This hands-on role will architect and operate systems that secure our code cloud supply chain and collaboration environments driving visibility resilience and trust across everything we build.Youll...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Security Engineer

    Senior Security Engineer

    The Rockridge Group • New York, NY, US
    [job_card.temporary]
    NY office (NYC) and datacenter (Weehawken, NJ) who could support on-site physical equipment (powering off a firewall, checking cable connectivity, shipping equipment, configuring equipment that is ...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Security Engineer (Product)

    Senior Security Engineer (Product)

    Headway • New York, NY, United States
    [job_card.full_time]
    The Trust team at Headway is focused on security and privacy for all of Headway’s customers - therapists, patients, and payers (ex : insurance companies and health systems).As an early member on the...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Security Engineer Offensive Security

    Senior Security Engineer Offensive Security

    Plaid • New York City, New York, USA
    [job_card.full_time]
    We believe that the way people interact with their finances will drastically improve in the next few years.Were dedicated to empowering this transformation by building the tools and experiences tha...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Application Security Engineer

    Senior Application Security Engineer

    Integral Ad Science • New York City, New York, USA
    [job_card.full_time]
    We are seeking a highly motivated.Senior Application Security Engineer.Integral Ad Science (IAS) applications and products. As a vital member of the Application Security team you will collaborate wi...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]