A successful candidate will contribute to a rapidly expanding team that evaluates the security posture of organizations through advanced, grassroots Offensive Security techniques.  If you are passionate about helping organizations achieve effective Defense though Offensive testing, then a role in our team might be for you.  People are our most valuable asset, therefore we encourage career growth and development opportunities for every individual on our team.
 

As a Consultant or Senior Consultant, you will perform various activities related to Offensive Security and testing, including, but not limited to:

• Delivering Penetration Testing and “Red Team” style Adversary Simulation engagements.
• Open-Source Intelligence, Social Engineering and Attack Surface Mapping
• Performing Network, Wireless, OT, IoT, Web and Mobile Offensive Security assessments independently and part of a team.
• Assessment of technical security controls and their weaknesses from the perspective of exploitation.
• Creating engagement plans, scoping, documenting findings, and producing actionable recommendations.
• Driving innovation in the development of exploits, tools, processes, and techniques.
• Training and mentoring new team members and students.
• Influencing function direction, strategy, and priorities.
• Presenting findings and research to customers and peers in a variety of venues.
• Collaborating with other functional teams at a global scale.

 

How do we define success for your role?

• You demonstrate BDO's core values through all aspects of your work: Integrity, Respect and Collaboration
• You understand your client’s industry, challenges, and opportunities; clients describe you as positive, professional, and delivering high-quality work
• You identify, recommend, and are focused on effective service delivery to your clients
• You share in an inclusive and engaging work environment that develops, retains & attracts talent
• You actively participate in the adoption of digital tools and strategies to drive an innovative workplace
• You grow your expertise through learning and professional development

 

Your experience and education

The ideal candidate will have experience in the information/offensive security field that includes performing Penetration Testing and Red Team style exercises.  Valuable skills and experience would include:

• Working knowledge of the tools included in Kali Linux and other purpose-built distros.
• A confident understanding of vulnerabilities which can be found in various technology systems such as Web, Network, OT and IoT.
• A firm grasp of testing/assessment methodologies, frameworks and approaches.
• Ability to effectively manage one’s time, multiple priorities, and customer requests.
• Effective communication skills which can be used to collaborate with peers and deliver value to the customer.
• Ability to build strong customer relationships, deliver value and advocate for the customer.
• An understanding that the work we do has a tangible impact to our customers, their organizations, and their livelihood.

 

The following qualifications are not required but would be considered an asset.

• An Offensive Security or Penetration Testing certification (OSCP, GWAPT, PNPT etc)
• A University or College accreditation in a related field.