Position Description
Secureside is a cybersecurity and technology company serving private and non-profit organizations of all sizes. Founded on the core principles of protecting, defending, and leading by example, our leadership team is well-respected for being experts guides to our clients. At Secureside, we believe that talented individuals are the key to success. We are always seeking new perspectives and unique skills to join our growing team.
The (Remote) Senior OSCP will find challenges on both sides of cyber – designing secure environments, comprising them, and iterating them through the cycle to stay ahead of the curve. The Senior OSCP will proactively stay up-to-date with the threats landscape, conduct threat intelligence research, and convert that knowledge into offense and defense. This new hire will also assist clients with threat detection as part of Clearview’s Managed Security Services Provider (MSSP) approach and provide guidance on how to technically and strategically harden defenses. Using a mix of open-source and professional cyber tools to assist Clearview’s Cyber Team, the Senior OSCP will develop a fully-baked cyber arsenal and actively engage in campaigns such as pen tests and red-team exercises. In addition to the above, this role will:
- Build and harden labs and production environments in traditional data center, hybrid, and cloud models
- Perform vulnerability assessments, penetration testing, and red-team exercises
- Act as a Senior Subject Matter Expert (SME)
- Support and/or lead application security testing
- Stay informed on current events through threat Intelligence from OSINT and industry partners to enable threat hunting operations and improve detection capabilities
- Build, customize and implement a suite of cyber tools, including automation and orchestration capabilities where applicable
- Engage with clients, as part of MSSP, to reveal weaknesses in their environments, identify better practices that should be instituted, and educate them on how to improve their security over time
- Participate in a diverse mix of engagements spanning across multiple areas of professional competency that allow individuals to grow new skills and become both well-rounded and highly marketable
- Prepare and deliver presentations to clients and prospective clients in person, virtually and by phone
- new long-term relationships
- Contribute to business development activities
What is required for consideration?
- At least one Tactical Security Certification from ISACA, SANS, ISC2, CompTIA, Offensive Security, and/or EC-Council
- Minimum 8 years of Information Technology experience including at least 4 years of Cybersecurity
- Experience in at least one of the following roles OR with one of the following responsibilities:
- Analyst, Team Lead, Project Lead, Project Manager, and/or Project Coordinator
- Technical Engineer and/or Solutions Engineer on the design and/or implementation side
- Development, Coding, Development Operations, Orchestration, and/or Automation
- Network and Systems design and/or integration
- Database design and management
- Working knowledge of the Cyber Kill Chain, MITRE ATT&CK Framework, CIS Top 20 and OWASP Top 10
- Experience with Python, PowerShell, Bash, and/or other scripting languages
- Experience with design, implementation, and/or operational support of Azure and AWS technologies (XaaS)
- Effective public speaking skills with the ability to prepare and deliver presentations
- Willingness and ability to travel to client sites across the country, as dictated by business need (possibly up to 25%)
- Project management experience including workflow balancing, activity scheduling, problem solving facilitation, prioritizing multiple complex tasks, and meeting deadlines
- Unwavering integrity and ethics
- Experience interacting with clients, establishing credibility, trust and healthy relationships
- Demonstrable examples of innovative thinking and problem solving
- High level of motivation, organization, and commitment to professional development
- Experience successfully working collaboratively and independently with minimal supervision
- Strong communication skills with the ability to convey complex cyber-related information and business risks to non-technical audiences
- Effective public speaking skills with the ability to prepare and deliver presentations.
What is preferred for consideration?
- OSCP
- LAMP stack, MEAN stack or similar development skills
- Experience interfacing with external clients
- Experience working in a consulting firm
- Experience managing / supervising direct reports
Qualifications
- To perform the job successfully, an individual should demonstrate the following competencies:
- Technical Skills – Demonstrates technical competency, knowledge, and professional care commensurate with completion of assignments, and an eagerness to learn and absorb new technical and industry-specific information.
- Interpersonal – Ability to cultivate strong collaborative working relationships and contacts within work group, across other company functions and with external organizations.
- Oral Communication – Listens and gets clarification; continually asks good questions and incorporates them into foundational knowledge. Demonstrates effective public speaking skills. Capable of leading meetings with business unit executives.
- Team Work – Contributes to building a positive team spirit.
- Written Communication – Writes clearly and informatively; able to read and interpret written information.
- Ethics – Treats people with respect; inspires the trust of others; demonstrated ability to successfully handle sensitive discussions, strong personal ethics commitment and demonstrated good judgment.
- Adaptability – Adapts to changes in the work environment; able to deal with frequent change, delays, or unexpected events.
- Analytic Skills – Ability to obtain, analyze, and evaluate evidentiary data to form an informed and objective opinion on the adequacy and effectiveness of the area being reviewed.
- Project Management – Demonstrates excellent analytical, project management and organizational skills. Able to manage multiple assignments proficiently. Effectively prioritizes tasks and manages time to meet established budget and milestones.
- Dependability – Follows instructions, responds to management direction; takes responsibility for own actions; keeps commitments; commits to long hours of work when necessary to reach goals.
- Professionalism – Reacts well under pressure; treats others with respect and consideration regardless of their status or position; accepts responsibility for own actions; follows through on commitments.
- Quality – Demonstrates accuracy and thoroughness; applies feedback to improve performance.