Senior Manager - Red Team | Remote US
United States
Applications have closed
Coalfire
Coalfire is a cybersecurity and compliance services company that works with enterprises and tech businesses in FedRAMP, cloud migration, AI Risk, pen…Position Summary
The Senior Manager is responsible for the performance of their team of consultants, including team utilization/billability, skillset development, mentoring, and project execution. The Sr. Manager has a strong understanding of Advanced Persistent Threat Tactics Techniques and Procedures (APT TTP), Red Teaming, penetration testing, compliance frameworks, and offensive security best practice requirements, as well as a strong mentoring mentality. The Sr. Manager oversees projects, performs project tasks, and ensures quality reports for clients. They work closely with Project Managers, Directors, and other Delivery team members to effectively manage their team, project timelines, and deliverables for which they are responsible. Sr. Managers may also be asked to support Sales activities.
What You"ll Do
- Manage priorities, tasks and hours on projects in conjunction with the project manager to achieve successful project delivery with team and non-team planned resources
- Either handle or escalate client and project-related issues in a timely manner
- Interface with clients as a thought leader, individual contributor, and/or Engagement Lead through entire engagement, interacting will all levels of client organizations
- Establish and maintain positive, collaborative relationships with clients and stakeholders
- Collaborate with project managers, quality management, sales, and other delivery team members to drive customer satisfaction and meet project deliverables
- Lead customer-facing meetings including charter/kickoff, periodic status, and project debrief meetings
- Provide mentorship and coaching to team members in areas of Red Team-specific penetration testing tradecraft, security consultation, and reporting / presentations
- Provide HR administrative duties for team members as required
- Work with Red Team Leadership to develop/mature/maintain SOP’s and methodologies in support of Red Team products and services
- Continuous professional development in maintaining a strong depth of knowledge in the practice area
- Support the team growth through the hiring interview process, acting as the hiring manager and working with your Director on compensation
- Track team utilization against billable targets
- Continue to perform direct, billable tasking in any/all Red Team offerings, including assessments, advisory work, training, and more
- Provide Sales Support as necessary and in support of developing skills on a management career path. Additionally, continue to develop yourself as the seasoned technical SME
- Ability to travel up to 10% (potentially & during normal circumstances)
What You"ll Bring
- Ability to lead penetration testing projects/team independently for the full project lifecycle
- Strong understanding of advanced pen testing methodologies and Software Development Lifecycles (SDLC)
- In-depth experience with various testing methodologies and creating custom solutions to hard problems “on-the-fly”
- Strong working knowledge with tools such as Burp Suite, MITRE CALDERA, Wireshark etc.
- Strong working knowledge of at least two programming or scripting languages
- Strong understanding of API/web services, as well as web, mobile, thick client, and IoT applications
- Strong understanding of security principles, policies, and industry best practices
- An aptitude for technical writing, including assessment reports, presentations, and operating procedures
- Familiarity with Open Web Application Security Project (OWASP), Software Assurance Maturity Model (SAMM), and National Institute of Standards and Technology (NIST) Special Publications
- Understanding of the essential business practices of a professional consulting organization
- Significant experience in a consulting/professional services role
- Significant experience in Red Team or a related role
Bonus Points
- An advanced degree in an IT-related field
- Knowledge of applied cryptographic protocols
- OSCP/E, OSWE, OSED, GWAPT, GPEN, or GXPN certification(s)
At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.
Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.
At Coalfire, equal opportunity and pay equity is integral to the way we do business. A reasonable estimate of the compensation range for this role is $94,000 to $163,000 based on national salary averages. The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors. You may also be eligible to participate in annual incentive, commission, and/or recognition programs. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#LI-Remote#LI-HJ1
Tags: APIs Application security APT Burp Suite Compliance GPEN GWAPT GXPN IoT NIST Offensive security OSCP OSWE OWASP Pentesting Red team SAMM Scripting SDLC Travel
Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Flex vacation Health care Insurance Parental leave Salary bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Security Consultant jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information System Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open Threat intelligence-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Java-related jobs
- Open DevSecOps-related jobs