Senior Offensive Security Consultant

Offensive Security consultants run the delivery of our offensive security services. They help to interpret client challenges, innovate solutions, and deliver findings. 

As an OS consultant, you will work across the full spectrum of our pen testing services, whether point in time or continuous, as well as participate in larger engagements such as red teams. You will help our clients to build cyber resilience, enhance their understanding of the threat landscape and become better prepared to face dynamic and evolving security risks.

As a senior consultant, you will be responsible for supporting commercial efforts, as well as line management and maintenance of standards, tools and knowledge. We are looking for someone with a strong business acumen and technical background who can help us shape, sell and deliver impactful resilience workstreams to our clients. The commercial and leadership aspect of this role will take approximately 40% of your time, the rest being focused on delivery.

 

MAIN DUTIES AND RESPONSIBILITIES 

 

Client Engagement and Account Management 

• Engage with clients to understand their cyber security challenges
• Translate client challenges into solutions that fit S-RM’s Offensive Security service offering and value proposition
• Lead on proposal writing and presentations, with an understanding of delivery timelines, project resourcing requirements and pricing
• Contribute to the expansion of client accounts and winning of new business
• Gain an understanding of S-RM’s target sectors and industries

 

Offensive Security 

• Penetration testing 
• Vulnerability assessments and monitoring
• External infrastructure
• Web application
• API pen testing
• Phishing and spear phishing
• Internal pen testing
• Mobile application pen testing (Android and iOS)
• OT Pen testing

 

Red teaming

Support senior team members in the delivery of red team assessments (end to end, breaching the perimeter, assumed breach, bespoke)

• Configuration Reviews
• Cloud configuration review
• Application configuration review
• Hardware build review
• Delivery
• Deliver findings in a range of formats, including written reports, presentations, and verbal briefings

 

Training 

• Support the development and delivery of cyber security training packages on a range of topics
• Deliver client training on phishing/awareness/general cyber topics. 
• Threat Intelligence
• Keep abreast of threat intelligence developments, threat actor activity and security industry developments in mitigations and tooling
• Develop and deliver client threat profiles, threat assessments and dark web analysis

 

Mentoring and technical leadership

• Provide oversite, shadowing and knowledge sharing opportunities for pen testing to other team members
• Participate in monthly knowledge sharing sessions
• Gain an understanding of our cyber services outside of offensive security (incident response, cyber advisory, digital forensics) and support with offensive security skills where required
• Identify and address internal capability gaps with the support of senior team members

 

The successful candidate must have permission to work in South Africa by the start of their employment.

 

Our benefits

We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, this includes but is not exhaustive of:

• 23 days holiday per year in addition to public holidays (+1 day for every year of service up to a maximum of 30 days in total);
• Hybrid working and flexible working hours;
• Matching pension contribution up to 7% (up to a maximum of 14% combined), and financial education;
• Life Insurance 4X annual salary.

 

Parental Support:

• Fertility treatment leave – 5 days of leave per cycle of treatment per year;
• Maternity leave – 26 weeks of full pay followed by 13 weeks of half pay;
• Paternity leave – 6 weeks of full pay.

 

Various Health and Medical Benefits including:

• Medical Aid (taxable benefit) for you and your immediate family
• EAP program for you and your immediate family;
• Free access to the world-famous mindfulness app.