Sr. Offensive Security Consultant (Alpha Group)

Описание вакансии

VerSprite

VerSprite is an Inc. 5000 2020 fastest growing company and industry leader in PASTA threat modeling. Founded in 2007, VerSprite is a private cybersecurity consulting firm helping organizations tighten their risk-gaps with evolved security solutions and advanced threat intel tools.

VerSprite has a 97% client retention rate providing organizations with services like penetration tests, evolved red teaming engagements, vCISO, vSOC and VerSprite’s advanced security tools Cloud Security Assessment Platform and Cyber Threat Intelligence Portal.

Sr. Offensive Security Consultant (Alpha Group)

Location: Remote (U.S.) — Georgia preferred

This is a fully remote role. Candidates must be authorized to work in the United States. While remote, candidates located in Georgia or nearby states are strongly preferred to facilitate collaboration with internal teams and clients.

Overview

VerSprite is seeking an experienced Sr. Offensive Security Consultant to lead complex security assessments across modern enterprise environments.

This role focuses on advanced penetration testing and application security engagements while working closely with clients to identify real-world attack paths and security risks.

The ideal candidate combines strong technical expertise with consulting experience and the ability to clearly communicate security risk to both technical and executive audiences.

Responsibilities

· Lead penetration testing engagements across web applications, APIs, and enterprise infrastructure

· Perform advanced application security testing including business logic flaws and authentication weaknesses

· Conduct internal and external network penetration testing

· Lead Red Teaming engagements.

· Perform threat modeling exercises (e.g., PASTA methodology)

· Conduct cloud security assessments across AWS, Azure, and GCP

· Perform mobile application security testing (Android and iOS)

· Develop custom payloads and exploitation techniques

· Produce detailed technical reports including proof-of-concept exploitation scenarios

· Communicate technical findings and risk to client stakeholders

· Mentor junior consultants during engagements

· Contribute to internal research initiatives and security methodology improvements

Required Qualifications

· 7+ years of experience in offensive security or penetration testing

· Strong experience in web application, API penetration testing, external and internal network assessments. Experience testing Active Directory environments.

· Experience leading Red Teaming engagements.

· Strong experience writing penetration testing reports and technical documentation

· Ability to communicate security risks to technical and non-technical stakeholders

· Strong communication skills both written and spoken.

· Experience working in consulting or client-facing environments

Nice to Have

· Offensive security certifications such as OSCP, OSWE, OSEP, CRTO, or similar

· Experience performing hardware / product security testing.

· Public vulnerability disclosures

· Participation in bug bounty programs

· Security research publications or blog posts

· Contributions to open-source security tools

· Active participation in the security community (CTFs, conferences, etc.)

Benefits

We offer a competitive compensation package where you’ll be recognized for the value you bring to our business, along with:

• Opportunities to develop new skills and progress your career;
• The freedom and flexibility to handle your role in a way that’s right for you; and
• A collaborative environment where everyone works together to create a better working world

If this seems intriguing to you, please apply! We will reach out promptly to discuss your fit and additional job details.