Similar Jobs
Information Technology • Consulting
Lead and execute offensive security engagements, provide penetration testing services, mentor junior consultants, and refine methodologies in cybersecurity.
Top Skills:
Cobalt StrikeCore ImpactEmpireMetasploitPoshc2
Automotive • Hardware • Internet of Things • Mobile • Software • App development • PropTech
The role involves driving marketing, promoting products, managing customer relationships, supporting retail channels, and delivering training presentations for assigned territories.
Automotive • Hardware • Internet of Things • Mobile • Software • App development • PropTech
Grow sales within assigned territories, develop forecasts, sell products to dealers, maintain customer relationships, conduct training, and manage account functions.
We help the world Be Everyday Ready™
Today’s threatscape is relentless. So are we. At Cyderes, we specialize in building practical IAM, exposure management, and risk programs, and stopping active threats fast with MDR that works with your existing security tools — all augmented by AI and driven by seasoned operators. Our tireless global team is laser-focused on cybersecurity, arming organizations with the people, platforms, and perspectives they need to conquer whatever tomorrow throws their way.
About the Role:
Cyderes is looking for a Consultant to join Cyderes’ Offensive Security team to assist clients across a range of topics to support requests for information from organizations of many sizes and in several industries. This consultant will focus on PEN Testing, Red Team and Purple team simulation and supervising intelligence to support a general range of topics, but may also need to support other cadences of reports, such as weekly, monthly, and quarterly reports. Writing these reports requires the ability to work with or automate datasets from Cyderes platforms. The Consultant should have a technical proficiency in but not limited to network operations, application security, vulnerability management, and operating system functionality. They will assist in identifying gaps and improving the overall security posture for Cyderes’ clients.
Responsibilities:
- Performing threat analysis and recommends appropriate course of action, mitigation, and remediation in response to security events and trends
- Correlates and analyzes threat data from various sources to establish the identity of malicious users active in the computing environment.
- Produce and review intelligence summaries accessible to all clients.
- Engage with clients across report lifecycle: Initial scoping, finished intelligence delivery, and follow-up review / support
- Develop novel, automated, or simpler processes for regular research and analysis
- Track cyber threat trends across industries and technologies, and generate better ways to do so
- Work on projects across multiple research teams with sometimes tight deadlines
- Perform internal and external penetration testing of network infrastructure, applications, and database
- Perform web/mobile application, wireless network, and vulnerability assessments
- Provide support in design and development of purple team and red team exercises performing adversary simulations to test client controls.
- Create comprehensive reports and effectively communicate findings to key stakeholders (technical and/or executive).
- Identify and safely apply attacker tactics, techniques, and procedures (TTPs).
- Develop scripts, tools, or methodologies to enhance Cyderes’ red teaming processes.
Requirements:
- Certifications such as OSCP, CISSP are preferred
- 2-3 years of experience in three of the following areas:
- Executing network, wireless, web application, and API penetration tests
- Experience with Active directory (AD) and Kerberos
- Experience conducting vulnerability management and assessments
- Experience conducting social engineering assessments
- Experience conducting Purple Team and Red Team exercises
- Experience with Tenable.IO, Recorded Future, PlexTrac and Cymulatepreferred
- Experience with programming using one or more of the following: Perl, Python, ruby, bash, C or C++, C#, or Java, including scripting, automation, and editing existing code
- Developing, extending, or modifying exploits, shellcode or exploit tools
- Reverse engineering malware, data obfuscators, or ciphers
- Source code review for control flow and security flaws
- General knowledge of the MITRE ATT&CK Framework
- Thorough understanding of network protocols, data on the wire, and covert channels
- Mastery of Unix/Linux/Mac/Windows operating systems, including bash and PowerShell
Cyderes is an Equal Opportunity Employer (EOE). Qualified applicants are considered for employment without regard to race, religion, color, sex, age, disability, sexual orientation, genetic information, national origin, or veteran status.
Note: This job posting is intended for direct applicants only. We request that outside recruiters do not contact us regarding this position.
What you need to know about the Colorado Tech Scene
With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
