Senior Offensive Security Consultant

Job Description

Overview

The primary role of a Senior Offensive Security Consultant at Depth Security is to perform multidisciplinary assessment services as needed.

Examples include Application Security Assessments against web apps, mobile apps, web services, and fat-client applications.

Proficiency in delivering Network Vulnerability and Penetration Assessments both externally and internally against wired and wireless targets is also required.

Senior Security Consultants can assess external, internal, wired, and wireless networks. Social engineering assessments, both phishing-based and physical, may also be required occasionally.

Senior Security Consultants must demonstrate the highest skill levels and help set acceptable assessment standards for the Company.

Responsibilities

• Deliver Application Penetration Tests against web apps, mobile apps, web services, and fat-clients
• Deliver External, Internal, and Wireless Vulnerability and Penetration Tests
• Deliver phishing-based and physical Social Engineering Assessments
• Communicate with customers in a friendly manner, quickly and clearly, and with great accuracy during :

o Kickoff and scoping calls

o Assessment status updates and ongoing project communication

o Report delivery

o Wrap-up meetings

• Assist in enhancing various company methodologies
• Mentor Security Consultants and assist in their efforts to develop areas of expertise
• Demonstrate the highest level of offensive skills, pre and post-exploitation
• Demonstrate excellent writing skills both during email correspondence and report creation
• Prioritize findings based on perceived risk, using existing knowledge of clients' business to ascertain finding severity
• Lead by example in behavior, work ethic, and punctuality
• Interpret and obey any applicable customer testing restrictions based on scope and kickoff calls
• Utilize non-billable time to work on company-directed internal projects
• Contribute to company methodology and vulnerability repositories
• Contribute to company blog and to company image via speaking engagements

o Use Scanner in an appropriate manner to automatically find flaws.

o Quickly eliminate false positive based on intuition and response content

• Burp Extender contributor
• Github
• Kali Ninja
• Metasploit Expert
• Scripting skills : Whatever gets the job done

Qualifications

• 5+ years' full-time penetration testing experience
• Possess longer-term, multi-disciplinary, expert-level IT skills including sysadmin, infrastructure, net-engineering, software development, and security-engineer experience
• Applicants with common industry certifications such as OSCP, OSCE, SANS, CREST, and etc. will be preferred.
• Demonstrates knowledge of all classes of vulnerabilities and exploits
• Possess more blue-team knowledge
• Should have numerous public vulns / exploits / bug bounty write-ups
• Identifies vulnerabilities and discloses on public software on an ongoing basis
• Writes exploits from scratch if necessary
• BurpSuite Expert

o Ability to write BurpSuite Extender plugins

o Ability to configure working login macros

o Use Repeater and Intruder to manually find flaws.

About Us

Konica Minolta's journey started 150 years ago, with a vision to see and do things differently. We innovate for the good of society and the world.

The same purpose that kept us moving then, keeps us moving now. Konica Minolta Business Solutions U.S.A., Inc. is reshaping and revolutionizing the workplace to achieve true connectivity through the Intelligent Connected Workplace .

The company guides and supports its clients' digital transformation through its expansive office technology portfolio, including IT Services ( All Covered ), intelligent information management, managed print services and industrial and commercial print solutions.

Konica Minolta has been included on CRN's MSP 500 list nine times and The World Technology Awards named the company a finalist in the IT Software category.

Konica Minolta has been recognized as the #1 Brand for Customer Loyalty in the MFP Office Copier Market by Brand Keys for sixteen consecutive years, and is proud to be ranked on the Forbes 2021 America's Best-in-State employers list .

The company received Keypoint Intelligence's BLI 2021 A3 Line of The Year Award and BLI 2021-2023 Most Color Consistent A3 Brand Award for its bizhub i-Series .

Konica Minolta, Inc. has been named to the Dow Jones Sustainability World Index for nine consecutive years and has spent six years on the Global 100 Most Sustainable Corporations in the World list .

Konica Minolta partners with its clients to give shape to ideas and works to bring value to our society. For more information, please visit us online and follow Konica Minolta on Facebook , YouTube , LinkedIn and Twitter .

EOE Statement

Konica Minolta is an equal opportunity and affirmative action employer. We consider all qualified applicants for employment without regard to race, color, religion, creed, national origin, sex, pregnancy, age, sexual orientation, transgender status, gender identity, disability, alienage or citizenship status, marital status or partnership status, genetic information, veteran status or any other characteristic protected under applicable law.