Sr. Manager, Offensive Security

About The Position

Requirements

• Education typically obtained through security certifications or completion of a Bachelor's degree in Computer Science, Engineering, Math or equivalent work experience.
• Strong understanding of offensive and defensive security, including offensive evasion and defensive detection techniques.
• Strong understanding of enterprise and cloud networking and application technology.
• 4 years of general security penetration testing experience.
• 8 or more years of general IT or information security experience including at least 3 years of leadership, supervisory or mentorship experience.
• Demonstrated success or ability to retain highly engaged, high performing teams.
• Experience managing or supervising penetration testing efforts of other team members.
• Working knowledge of communication network technologies.
• Advanced working understanding of penetration test assessment procedures and penetration test tools such as Kali Linux, proxies, and other industry standard tools.
• Expert knowledge of Open Web Application Security Project (OWASP) Top 10 Vulnerabilities and testing procedures.
• Advanced working understanding of information gathering techniques and processes.
• Advanced working understanding of web application technologies, programming languages, databases, Linux, Unix, Mac OSX, and Windows operating systems.
• Effective interpersonal skills.
• Experience in analyzing risk associated with security vulnerabilities required.
• Strong security assessment writing skills.

Nice To Haves

• 6 or more years of security experience within the financial sector.
• Hands-on practical Offensive Cybersecurity certifications (OSCP, OSWE, eJPT, Pentest+, eCPPT, eCPTX, eWPT, eWAPTX, GIAC, etc.) or equivalent.
• General information security management certifications (CISSP, CISM, CISA, etc.) or equivalent.
• Cloud certifications (SAA, SAP, AWS Security Specialty, etc.) or equivalent.

Responsibilities

• In depth knowledge of all aspects of offensive security.
• Implement security penetration testing directives as defined by the Director, Offensive Security, and in line with written security standards, and industry best practices.
• Responsible for the development, hiring and performance discussions management of the offensive security team.
• Responsible for the escalation and communication of penetration testing and bug bounty findings.
• Develop metrics to measure individual and team performance, as well as value provided to the organization.
• Assist with internal security investigations and emerging threat activities.
• Provides effective and positive leadership in developing highly engaged, high-performance teams that provide quality results.
• Researches, evaluates, and stays current on emerging security tools, trends, policies, best practices, techniques, and technologies.
• Communicate in an open and productive manner with all team members, leadership, and customers to collaboratively solve the needs of the business.
• Work with Security Architects and Engineers to gather information and conduct penetration tests.
• Maintain demonstrable knowledge of current vulnerability exploitation techniques.
• Interacts with customers, regulators, and auditors on a regular basis.
• Support the company's commitment to risk management and protecting the integrity and confidentiality of systems and data.

Benefits

• Healthcare Coverage - Competitive medical (PPO/HDHP), dental, and vision plans as well as company contributions to your Health Savings Account (HSA) or pre-tax savings through flexible spending accounts (FSA) for commuting, health & dependent care expenses.
• 401(k) Retirement Plan - Featuring a 100% Company Safe Harbor Match on your first 6% deferral immediately upon eligibility.
• Paid Time Off - Unlimited Time Off for Exempt (salaried) employees, as well as generous PTO for Non-Exempt (hourly) employees, plus 11 paid company holidays and a paid volunteer day.
• 12 weeks of Paid Parental Leave.
• Maven Family Planning - provides support through your Parenting journey including egg freezing, fertility, adoption, surrogacy, pregnancy, postpartum, early pediatrics, and returning to work.