Cybersecurity Consultant

The Cybersecurity Consultant will work in Horangi’s Cyber Operations (Offensive) team, and works directly with Horangi’s customers to perform offensive security assessments. Members of the Cyber Operations (Offensive) team are generally familiar with most aspects of cyber security but specialize in penetration testing of web and mobile applications and red team operations. They work closely with the Sales and Engagement Delivery team to deliver value to our clients and helping to place Horangi at the top of the security food chain.

Requirements :

• At least two years of experience in offensive security (e.g. penetration testing, red teaming).
• OSCP, CREST CRT or equivalent penetration testing-specific certifications
• Good competency in using scripting languages (Python, VBscript, Javascript, Powershell, etc.)
• Passionate about cybersecurity, technically hands-on, driven, willing to learn and teach, and curious about the inner workings of technologies and exploiting their vulnerabilities
• Excellent analytical, conceptualisation, and problem-solving skills

It would be good if you have :

• At least two years of red teaming / adversary simulation experience, preferably for financial institutions
• OffSec Certified Expert³(OSCE³), CREST Certified Simulated Attack Specialist (CCSAS) or equivalent offensive security related certifications
• Experience using tools such as Nmap, Burp Suite, Cobalt Strike, Fortify, etc.
• Public disclosure of vulnerabilities or relevant awards from bug bounty programmes.
• Strong communication and interpersonal skills to collaborate with key stakeholders

Why Horangi :

• We value technical competency (and development) in our consultants and the quality of work we deliver to our clients
• There is an annual training budget allocated for each consultant to take up cybersecurity related courses/certifications
• Opportunities to learn and perform a variety of security assessments beyond web and mobile penetration testing. We have done and continue to do adversary simulations, cloud security assessments, blockchain security and IoT testing. Opportunities to collaborate with defensive disciplines such as threat hunting are also available
• We have an awesome delivery team that will help minimize distractions and allow you, our consultant, to focus your efforts on the assessment
• Work with and learn from fellow similar-minded colleagues from countries such as United States, Korea, Romania and Indonesia