Headquarters: 185 Jordan Road Troy, NY · Information Technology
Title: Senior Security Specialist - Penetration Tester Supervisor: Cybersecurity Service Manager Status: Full Time, Exempt Travel Requirements: Up to 50% Location: Remote or Troy, NY
Position Description: The Senior Security Specialist, Technical is a credentialed and experienced cybersecurity professional who has advanced knowledge of information security concepts and functions. The Senior Security Specialist advises and leads execution of short and long-term solutions for GreyCastle Security clients in a wide range of business environments. This position is a critical member of a cybersecurity-focused technical solution team, composed of capable and high-caliber cybersecurity professionals. The ideal candidate thrives, excels and easily adapts in a fast-paced work environment.
Ideal Skills, Experience, Competencies and Qualifications:
Bachelor’s Degree or equivalent professional experience in cybersecurity industry.
5+ years of B2B experience in the cybersecurity industry.
Extensive experience with programming or scripting languages such as Python, PowerShell, Bash, Ruby, Java, XML, SOAP, JSON, AJAX, etc.
Proven expertise leading delivery of cybersecurity services, including but not limited to:
Web Application Penetration Testing
Wireless Penetration Testing
Physical Security Testing
Demonstrated experience leading services to meet industry accepted standards such as OWASP, NIST SP 800-115 and PCI penetration testing requirements.
Extensive experience with penetration testing frameworks and tools, such as Kali Linux, The Penetration Testers Framework, Metasploit, Canvas, Cobalt Strick, Burp Suite Pro, Nexpose, Nessus, Wireshark, Nmap, etc.
Expert level understanding of system architecture and design, operating systems, network infrastructure, device configuration hardening, and patch and configuration management
Proven ability to clearly engage, influence and guide executive and board-level professionals
Ability to perform:
Professional and engaging presentation skills
Training and coaching experience
Critical thinking and problem-solving logic
Proficient with Microsoft programs and collaboration tools (e.g., Zoom, WebEx, Teams).
OSCP, OSCE, GXPN, GPEN, GWAPT or other security-related certification commensurate with the job duties and responsibilities.
GreyCastle Security considers this position as High Risk with a very likely potential to view, access, or download restricted information, private client information or internal data. This information must be treated with sensitivity and in the most secure manner defined in the Information Classification and Handling Standard policy.
Information security is everyone’s responsibility. GreyCastle Security employees are responsible for:
Understanding and following GreyCastle Security’s information security policies and procedures
Remaining vigilant and reporting any suspicious activity or possible weaknesses in GreyCastle Security’s information security
Actively participating in GreyCastle Security’s effort to maintain and improve information security
Supervisory Responsibility: This position has no supervisory responsibilities.
Work Environment: This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.
Physical Demands: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of the job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the job, the employee will have prolonged periods of sitting at a desk and working on a computer while consistently repeating motions with wrists, hands, and/or fingers to operate computer and office equipment. The employee may occasionally lift and/or move in excess of 15 pounds. The employee will frequently communicate with others to exchange information, both verbally and in writing.
Position Type/Expected Hours of Work:
This is a full-time position, and hours of work and days are typically Monday through Friday, 8:00 a.m. to 5 p.m.
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.