Overview
about us: at echelon risk + cyber, we believe in defending basic human rights to security and privacy. We seek a highly skilled and experienced offensive security consultant to join our dynamic team at echelon risk + cyber, a leading cybersecurity consulting firm. Our next team member will be ready to roll up their sleeves and identify opportunities for our clients and for echelon internally with unquestioned integrity. This team member will be passionate about cybersecurity and ready to use their knowledge to be an entrepreneurial problem solver and work alongside their echelon team members to build creative solutions.
as an offensive security consultant, you will conduct a diverse range of adversarial emulation assessments, including specialized web application, mobile application, and cloud testing engagements. The ideal candidate is eager to further develop their expertise while contributing to impactful client engagements that strengthen security resilience. At echelon, you will have the opportunity to engage with clients, business partners and systems that are at the cutting edge of technology. We allow our employees to build from the ground up and make an impact across the organization. We look for driven and proactive people that are eager to contribute to a distinct and thriving cybersecurity services organization, that can adapt to a rapid and changing environment.
what you will do
* execute security assessments and audits, including penetration testing (internal, external, web, wireless, cloud, physical), adversarial emulation exercises (red team operations), and social engineering engagements.
* build and maintain technical knowledge of adversarial activity to emulate similar ttps during security assessments.
* identify and exploit vulnerabilities beyond what automated tools detect, applying creative and resourceful thinking.
* deliver clear, detail-oriented documentation of findings, observations, remediation steps, and recommendations in professional reports and client presentations.
* contribute to the development of offensive security tools, scripts, and exploits based on emerging ttps.
* support internal research and innovation efforts to strengthen tradecraft and methodologies.
* assist senior team members with client-facing activities, including scoping, reporting, and presentations.
* contribute to thought leadership efforts such as blogs, community engagement, and conference participation.
* continuously improve your skills and knowledge in the offensive security and adversarial simulation space.
your knowledge, skills, and abilities
* 2–4 years of offensive cybersecurity experience, or equivalent time in an offensive cyber operations (title 10 or title 50) role.
* bachelor's degree in cybersecurity, it, or related field.
* hands-on experience with penetration testing in web, mobile, and cloud environments.
* at least one relevant offensive security certification (e.g., oscp, gpen, gwapt, oswe, ewptx).
* familiarity with penetration testing methodologies and frameworks (ptes, pci-dss, mitre att&ck).
* strong problem-solving skills and attention to detail in technical analysis.
* ability to communicate technical findings clearly to both technical and non-technical stakeholders.
* highly motivated, team-oriented, and eager to contribute to client engagements and team success.
* authorized to work in mexico.
* only resumes in english will be considered
preferred qualifications
* advanced certifications (osep, osce, crtp, crte, paces, gxpn).
* active engagement in penetration testing training platforms such as hackthebox (rank "hacker" or higher) or pentester academy.
* prior consulting experience in a client-facing role.
why echelon?
we are committed to creating an inclusive environment for our team with unquestioned integrity. If you have a special need that requires accommodation, please let your recruiter know. One of our core values is "people with personality" and we want to allow you the space to bring your full self to work.
we currently offer the following benefits:
* access to private medical insurance through metlife.
* life insurance policy via metlife.
* 30-day christmas bonus and a monthly technology stipend.
* contribution of 8% of the employee's salary to a savings fund.
* flexible vacation policy that allows you to manage your schedule and rest and recharge when you need to.
* family-friendly benefits, including 16 weeks off for maternity leave, 8 weeks off for non-birthing parent leave, and employer-paid short-term and long-term disability.
* support for individual development through certifications, continued learning, conferences, and more.
we value a diverse workforce and a culture of inclusivity and belonging. All employment decisions shall be made without regard to age, race, creed, color, religion, gender, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Echelon risk + cyber is an equal opportunity employer.
#j-18808-ljbffr