Managing Consultant

Summary

Join Bishop Fox, a leading cybersecurity firm, as a Managing Security Consultant. Lead and mentor a team of security consultants, delivering high-quality security engagements for diverse clients. Leverage your extensive offensive security experience in red and purple teaming, application penetration testing, and network exploitation. Demonstrate expertise in various technologies, including cloud platforms, container technologies, and C2 frameworks. Contribute to the development of custom tools and payloads, and stay abreast of the latest EDR evasion techniques. This is a working manager role requiring technical proficiency and leadership skills.

Requirements

• 5+ years of offensive security experience leading and supporting a variety of adversary emulation engagements (red teaming and purple teaming) with clients from a variety of industries
• Proven experience serving as a Subject Matter Expert (SME) and servant leader within a consulting or technical practice
• Demonstrated team leadership and management skills, with a growth mindset and desire to continue developing as a people manager
• Strong proficiency with all common operating systems such as Windows, MacOS, Linux, ChromeOS
• Expertise in Windows Active Directory exploitation and lateral movement
• Working knowledge of “cloud” platforms (AWS/Azure/GCP and O365/Google Workspace) and container technologies (Kubernetes/Docker)
• Hands-on experience with c2 frameworks like Sliver, Nighthawk, Mythic, and others
• Experience with custom tool and payload development, as well as reverse engineering, and evasion techniques
• Experience researching and developing EDR evasion techniques
• Proficiency in multiple programming languages (preferably Python, Golang, JavaScript/TypeScript, C#, C/C++, PowerShell, and/or Bash)
• Network and web-related protocol knowledge (e.g., TCP/IP, HTTP, HTTPS, etc.)
• Demonstrated experience with social engineering, conducting reconnaissance, development, and delivery of phishing/vishing pretexts as well as an understanding of email security technologies and other related countermeasures
• Ability to drive high-performance teams, ensuring the consistent delivery of high-quality security engagements
• A passion for service innovation, with the ability to evolve and formalize Red Team capabilities and methodologies
• Experience with resource planning and scheduling coordination, balancing career growth opportunities with project demands

Responsibilities

• Lead teams in testing various application attack surfaces, hacking networks, and reversing software, among other areas – for both long-term client engagements as well as shorter-term needs, while staying hands-on in the tech yourself
• The Managing Security Consultant leads a small team of consultants ensuring that they deliver the highest quality security engagements while also finding fulfillment in their work
• This is a working manager role that is also expected to work on and successfully deliver technical programs as measured by NPS score and tracking of other KPIs, as well as provided by solicited and unsolicited client feedback

Benefits

• Generous Time Off and Company-Wide Holidays
• Team Events and International Travel Opportunities
• Work From Home Support
• Monthly Allowance for Cell Phone and Internet
• Training Budget
• Retirement; 401k Matching for Traditional and Roth Accounts in the US
• Health Insurance Options Including Medical, Dental, Vision
• Paid Parental Leave