Senior Security Consultant - Threat & Attack Simulation
Location: Remote (United States). Travel up to 25% for onsite assessments, client engagements, and company event attendance
Why GuidePoint TAS Team?
You'll work alongside some of the sharpest offensive security professionals in the industry on diverse, challenging engagements — from red teaming Fortune 500 companies to cloud penetration tests against complex multi-cloud environments and purple team exercises that directly improve client detection capabilities. We invest in your growth through training budgets, certification support, conference sponsorship, and dedicated research time. Your ideas directly shape our service offerings, and your published research and conference talks build your personal brand while advancing the practice.
GuidePoint's Threat & Attack Simulation Practice provides attack-oriented professional services including Red Teaming, Purple Teaming, Network Penetration Testing, Cloud Penetration Testing, Social Engineering, and custom assessments to address unique security concerns for our clients. Our service offerings evolve continuously in response to emerging threats and diverse client needs — your creativity and expertise will help us stay ahead.
About the Role
As a Senior Security Consultant, you will be a technically skilled and reliable team member who delivers exceptional results across the full range of our offensive security offerings. Your primary responsibilities include performing challenging and complex assessments, mentoring less experienced team members, and contributing to the practice's growth and improvement.
What You'll Do
Lead and Execute Offensive Engagements
Lead and execute assessments including red team operations, purple team exercises, external and internal network penetration tests, cloud penetration tests, application and API security assessments, Active Directory security reviews, wireless security assessments, social engineering campaigns, and custom engagements — with minimal technical oversight
Map assessment activities to the MITRE ATT&CK framework and align engagements with industry methodologies such as PTES, OWASP, and NIST guidelines
Perform reconnaissance, exploitation, post-exploitation, lateral movement, and privilege escalation across enterprise environments including on-premises infrastructure, cloud platforms (AWS, Azure, GCP), and hybrid architectures
Assess cloud-native environments including IAM configurations, serverless functions, container orchestration, and Infrastructure-as-Code deployments
Conduct application and API penetration testing targeting OWASP Top 10 vulnerabilities, business logic flaws, and authentication/authorization weaknesses
Evade defensive controls including EDR, NDR, email security gateways, and network segmentation during red team operations
Deliver High-Quality Reporting
Author comprehensive assessment deliverables tailored to both technical and executive audiences that fully detail technical execution, root-cause deficiencies, business impact, and realistic remediation strategies
Communicate findings confidently to both technical teams and non-technical leadership, translating complex attack chains into clear business risk
Build and Improve the Practice
Contribute to marketing and thought leadership through publishing research, speaking at industry conferences, authoring blog articles and whitepapers, hosting webinars, and developing security tools
Build automation, orchestration, and scripting solutions to reduce manual processes, improve efficiency, and enable new capabilities for evolving client needs
Develop and improve offensive tooling, custom implants, and C2 infrastructure to support assessment operations
Assist with practice development including improving existing service offerings, creating new offerings, and identifying emerging assessment areas such as AI/LLM security testing
Mentor junior and mid-level team members through regular one-on-one and group technical sessions, knowledge sharing, and hands-on guidance during engagements
Foster Client Relationships
Build strong client relationships by providing interactive, collaborative support and guidance that maximizes the value of every engagement
Represent GuidePoint professionally during pre-sales calls, scoping discussions, and client debriefs
Career Growth
Senior Security Consultants at GuidePoint have a clear path toward Principal Consultant, Technical Lead, and Practice Leadership roles. We support your development through dedicated training budgets, full certification reimbursement, conference sponsorship, and protected research time. Your contributions to tooling, research, and service development are recognized and rewarded.
Required Qualifications
OSCP (Offensive Security Certified Professional) certification
Minimum of 4 years of experience performing offensive security assessments (penetration testing, red teaming, or adversary emulation)
Minimum of 2 years of experience in an enterprise-level consulting or professional services role
Intermediate knowledge of and practical experience with Active Directory attack techniques and privilege escalation
Proficiency in at least one scripting or programming language (Python, PowerShell, Bash, C#, or Go)
Experience with offensive security toolsets such as Cobalt Strike, Metasploit, Burp Suite, BloodHound, Impacket, or similar commercial and open-source frameworks
Strong written communication skills with the ability to produce client-ready reports that rarely require significant revision before delivery
Ability to manage time effectively across concurrent engagements and communicate issues promptly when they arise
Preferred Qualifications
Internal operational security experience (non-consulting) in an enterprise environment
6+ years of combined IT and information security experience
Hands-on cloud penetration testing experience across AWS, Azure, or GCP, including IAM abuse, serverless exploitation, container breakout, and cloud-native attack paths
Application and API security testing experience (OWASP Top 10, business logic testing, source code review)
Experience with AI/LLM security assessments (prompt injection, data exfiltration, model manipulation)
Practical experience evading modern defensive controls (EDR bypass, NDR evasion, AMSI bypass, ETW patching)
Experience developing custom offensive tools, loaders, or C2 frameworks
Active community involvement: conference speaking, blog or whitepaper authoring, open-source tool development, podcast appearances
Certifications (any of the following are a plus):
OSEP (Offensive Security Experienced Penetration Tester)
OSED (Offensive Security Exploit Developer)
OSWE (Offensive Security Web Expert)
CRTO (Certified Red Team Operator)
GXPN (GIAC Exploit Researcher and Advanced Penetration Tester)
GPEN (GIAC Penetration Tester)
GCIH (GIAC Certified Incident Handler)
GSE (GIAC Security Expert)
AWS Security Specialty, Azure Security Engineer, or equivalent cloud security certification
Tools & Frameworks You'll Work With
Cobalt Strike, Mythic, Sliver, Metasploit, Burp Suite Professional, BloodHound / SharpHound, Impacket, NetExec, Rubeus, Certify, Nmap, Nuclei, custom C2 and loader development, MITRE ATT&CK, PTES, OWASP Testing Guide, NIST SP 800-115
What We Offer
Yearly training budget to support certifications, as it relates to the role
Conference sponsorship (attendance and speaking)
Dedicated research and development time
Remote-first work environment with flexible scheduling
About the job
Apply for this position
Senior Security Consultant - Threat & Attack Simulation
Location: Remote (United States). Travel up to 25% for onsite assessments, client engagements, and company event attendance
Why GuidePoint TAS Team?
You'll work alongside some of the sharpest offensive security professionals in the industry on diverse, challenging engagements — from red teaming Fortune 500 companies to cloud penetration tests against complex multi-cloud environments and purple team exercises that directly improve client detection capabilities. We invest in your growth through training budgets, certification support, conference sponsorship, and dedicated research time. Your ideas directly shape our service offerings, and your published research and conference talks build your personal brand while advancing the practice.
GuidePoint's Threat & Attack Simulation Practice provides attack-oriented professional services including Red Teaming, Purple Teaming, Network Penetration Testing, Cloud Penetration Testing, Social Engineering, and custom assessments to address unique security concerns for our clients. Our service offerings evolve continuously in response to emerging threats and diverse client needs — your creativity and expertise will help us stay ahead.
About the Role
As a Senior Security Consultant, you will be a technically skilled and reliable team member who delivers exceptional results across the full range of our offensive security offerings. Your primary responsibilities include performing challenging and complex assessments, mentoring less experienced team members, and contributing to the practice's growth and improvement.
What You'll Do
Lead and Execute Offensive Engagements
Lead and execute assessments including red team operations, purple team exercises, external and internal network penetration tests, cloud penetration tests, application and API security assessments, Active Directory security reviews, wireless security assessments, social engineering campaigns, and custom engagements — with minimal technical oversight
Map assessment activities to the MITRE ATT&CK framework and align engagements with industry methodologies such as PTES, OWASP, and NIST guidelines
Perform reconnaissance, exploitation, post-exploitation, lateral movement, and privilege escalation across enterprise environments including on-premises infrastructure, cloud platforms (AWS, Azure, GCP), and hybrid architectures
Assess cloud-native environments including IAM configurations, serverless functions, container orchestration, and Infrastructure-as-Code deployments
Conduct application and API penetration testing targeting OWASP Top 10 vulnerabilities, business logic flaws, and authentication/authorization weaknesses
Evade defensive controls including EDR, NDR, email security gateways, and network segmentation during red team operations
Deliver High-Quality Reporting
Author comprehensive assessment deliverables tailored to both technical and executive audiences that fully detail technical execution, root-cause deficiencies, business impact, and realistic remediation strategies
Communicate findings confidently to both technical teams and non-technical leadership, translating complex attack chains into clear business risk
Build and Improve the Practice
Contribute to marketing and thought leadership through publishing research, speaking at industry conferences, authoring blog articles and whitepapers, hosting webinars, and developing security tools
Build automation, orchestration, and scripting solutions to reduce manual processes, improve efficiency, and enable new capabilities for evolving client needs
Develop and improve offensive tooling, custom implants, and C2 infrastructure to support assessment operations
Assist with practice development including improving existing service offerings, creating new offerings, and identifying emerging assessment areas such as AI/LLM security testing
Mentor junior and mid-level team members through regular one-on-one and group technical sessions, knowledge sharing, and hands-on guidance during engagements
Foster Client Relationships
Build strong client relationships by providing interactive, collaborative support and guidance that maximizes the value of every engagement
Represent GuidePoint professionally during pre-sales calls, scoping discussions, and client debriefs
Career Growth
Senior Security Consultants at GuidePoint have a clear path toward Principal Consultant, Technical Lead, and Practice Leadership roles. We support your development through dedicated training budgets, full certification reimbursement, conference sponsorship, and protected research time. Your contributions to tooling, research, and service development are recognized and rewarded.
Required Qualifications
OSCP (Offensive Security Certified Professional) certification
Minimum of 4 years of experience performing offensive security assessments (penetration testing, red teaming, or adversary emulation)
Minimum of 2 years of experience in an enterprise-level consulting or professional services role
Intermediate knowledge of and practical experience with Active Directory attack techniques and privilege escalation
Proficiency in at least one scripting or programming language (Python, PowerShell, Bash, C#, or Go)
Experience with offensive security toolsets such as Cobalt Strike, Metasploit, Burp Suite, BloodHound, Impacket, or similar commercial and open-source frameworks
Strong written communication skills with the ability to produce client-ready reports that rarely require significant revision before delivery
Ability to manage time effectively across concurrent engagements and communicate issues promptly when they arise
Preferred Qualifications
Internal operational security experience (non-consulting) in an enterprise environment
6+ years of combined IT and information security experience
Hands-on cloud penetration testing experience across AWS, Azure, or GCP, including IAM abuse, serverless exploitation, container breakout, and cloud-native attack paths
Application and API security testing experience (OWASP Top 10, business logic testing, source code review)
Experience with AI/LLM security assessments (prompt injection, data exfiltration, model manipulation)
Practical experience evading modern defensive controls (EDR bypass, NDR evasion, AMSI bypass, ETW patching)
Experience developing custom offensive tools, loaders, or C2 frameworks
Active community involvement: conference speaking, blog or whitepaper authoring, open-source tool development, podcast appearances
Certifications (any of the following are a plus):
OSEP (Offensive Security Experienced Penetration Tester)
OSED (Offensive Security Exploit Developer)
OSWE (Offensive Security Web Expert)
CRTO (Certified Red Team Operator)
GXPN (GIAC Exploit Researcher and Advanced Penetration Tester)
GPEN (GIAC Penetration Tester)
GCIH (GIAC Certified Incident Handler)
GSE (GIAC Security Expert)
AWS Security Specialty, Azure Security Engineer, or equivalent cloud security certification
Tools & Frameworks You'll Work With
Cobalt Strike, Mythic, Sliver, Metasploit, Burp Suite Professional, BloodHound / SharpHound, Impacket, NetExec, Rubeus, Certify, Nmap, Nuclei, custom C2 and loader development, MITRE ATT&CK, PTES, OWASP Testing Guide, NIST SP 800-115
What We Offer
Yearly training budget to support certifications, as it relates to the role
Conference sponsorship (attendance and speaking)
Dedicated research and development time
Remote-first work environment with flexible scheduling