Security Analyst- TAS
Summary
GuidePoint Security’s Threat & Attack Simulation Practice provides attack-oriented professional services, Red Teaming, Purple Teaming, Network Penetration Testing, Cloud Penetration Testing, Social Engineering, and various ad hoc custom assessments to address unique information security concerns for clients.
As a Security Analyst, you will be a reliable team member that leverages your knowledge, skills, and experience to assist with delivering exceptional results to clients for the Practice’s core professional service offerings, as well as embarking on a long-term journey to hone your skills and mature your career as the company grows. Your primary responsibilities revolve around assisting with challenging and complex assessments, sharing knowledge with team members, and continuously improving your knowledge and skills to take on more advanced projects over time.
Security Analysts are encouraged to interact with the Threat & Attack Simulation Leadership Team and contribute to future success. GuidePoint Security’s Threat & Attack Simulation service offerings are perpetually evolving in response to emerging threats and diverse client needs. Your creativity and expertise will assist the Practice by adapting to this rapidly changing environment.
Role and Responsibilities
Assist in the delivery of Threat & Attack Simulation's professional services, including but not limited to Vulnerability Assessments, Internal and External Penetration Tests, Wireless Security Assessments, Onsite and Remote Social Engineering, and a variety of Custom Assessments
Contribute to comprehensive assessment deliverables that are proficiently tailored to both technical and managerial audiences and fully detail the technical execution, core deficiencies, business impact, and realistic remediation strategies
Utilize automation, orchestration, and scripting to reduce manual processes, improving overall efficiency while also enabling new capabilities to meet the rapidly changing needs of our clients
Contribute to marketing initiatives via activities such as publishing research, speaking at industry conferences, authoring blog articles and whitepapers, hosting webinars, and developing security tools
Perpetually strengthen relevant skills, knowledge, and abilities to stay at the forefront of the information security industry.
Foster client relationships by providing support, information, and guidance
Configure, operate, and manage a Breach and Attack Simulation (BAS) or continuous penetration testing platform and report results to relevant stakeholders promptly
Maintain a strong desire to learn, adapt, and improve along with a rapidly-growing company
Perform other duties as assigned
Education, Credentials, and Experience
Demonstrated self-motivation to learn and practice/lab new and emerging attack techniques and self-learning beyond academia is strongly preferred.
Experience performing offensive/attack-oriented security assessments is beneficial.
Experience in a consulting services role is beneficial.
Internal operational (non-consulting) experience is beneficial.
Lab-based certifications, such as OSCP, eJPT, HackTheBox pro labs, etc. are strongly preferred.
Other relevant industry certifications, such as GPEN and GCIH are also beneficial.
Experience with continuous penetration testing or Breach and Attack Simulation (BAS) platforms is a plus but not required.
About the job
Apply for this position
Security Analyst- TAS
Summary
GuidePoint Security’s Threat & Attack Simulation Practice provides attack-oriented professional services, Red Teaming, Purple Teaming, Network Penetration Testing, Cloud Penetration Testing, Social Engineering, and various ad hoc custom assessments to address unique information security concerns for clients.
As a Security Analyst, you will be a reliable team member that leverages your knowledge, skills, and experience to assist with delivering exceptional results to clients for the Practice’s core professional service offerings, as well as embarking on a long-term journey to hone your skills and mature your career as the company grows. Your primary responsibilities revolve around assisting with challenging and complex assessments, sharing knowledge with team members, and continuously improving your knowledge and skills to take on more advanced projects over time.
Security Analysts are encouraged to interact with the Threat & Attack Simulation Leadership Team and contribute to future success. GuidePoint Security’s Threat & Attack Simulation service offerings are perpetually evolving in response to emerging threats and diverse client needs. Your creativity and expertise will assist the Practice by adapting to this rapidly changing environment.
Role and Responsibilities
Assist in the delivery of Threat & Attack Simulation's professional services, including but not limited to Vulnerability Assessments, Internal and External Penetration Tests, Wireless Security Assessments, Onsite and Remote Social Engineering, and a variety of Custom Assessments
Contribute to comprehensive assessment deliverables that are proficiently tailored to both technical and managerial audiences and fully detail the technical execution, core deficiencies, business impact, and realistic remediation strategies
Utilize automation, orchestration, and scripting to reduce manual processes, improving overall efficiency while also enabling new capabilities to meet the rapidly changing needs of our clients
Contribute to marketing initiatives via activities such as publishing research, speaking at industry conferences, authoring blog articles and whitepapers, hosting webinars, and developing security tools
Perpetually strengthen relevant skills, knowledge, and abilities to stay at the forefront of the information security industry.
Foster client relationships by providing support, information, and guidance
Configure, operate, and manage a Breach and Attack Simulation (BAS) or continuous penetration testing platform and report results to relevant stakeholders promptly
Maintain a strong desire to learn, adapt, and improve along with a rapidly-growing company
Perform other duties as assigned
Education, Credentials, and Experience
Demonstrated self-motivation to learn and practice/lab new and emerging attack techniques and self-learning beyond academia is strongly preferred.
Experience performing offensive/attack-oriented security assessments is beneficial.
Experience in a consulting services role is beneficial.
Internal operational (non-consulting) experience is beneficial.
Lab-based certifications, such as OSCP, eJPT, HackTheBox pro labs, etc. are strongly preferred.
Other relevant industry certifications, such as GPEN and GCIH are also beneficial.
Experience with continuous penetration testing or Breach and Attack Simulation (BAS) platforms is a plus but not required.