The Company
Every day, NuHarbor Security improves the cybersecurity of our clients by making it stronger and easier to understand. Our comprehensive suite of security services, from strategic advising to 24-hour monitoring and management, provide an organizational view of security that is focused on results and recommendations that are valuable for both business and technical leaders. We’re growing quickly because our clients, and the general market, are looking for these outcomes and for the data it gives them to explain, promote, and justify, their security investment and mission.
The Role
The Offensive Operator I will simulate real-world cyber-attacks focused on identifying the web application risks and vulnerabilities of our clients by using attack tactics, techniques, and procedures (TTP) to demonstrate the business impacts of vulnerabilities within a network or system.
What you’ll do
- Live by the NuHarbor corporate values: Protect the House, Help Clients Win, Always Improve.
- Assist in development and delivery of offensive assessments and adversary emulation engagements
- Perform vulnerability assessments
- Apply offensive cybersecurity testing techniques, coordinate testing projects with internal and external system owners
- Cross-train with team members to develop skills, tools, and execution of offensive services
- Report the nature of identified cyber security risks and recommend risk mitigation measures to improve the cyber security posture of the client’s enterprise
- Identify security flaws in computing platforms and infrastructure and devise strategies and techniques to mitigate identified cybersecurity risks
Your foundation. The requirements for this role:
- Bachelor’s Degree and two (2) years of experience.
- Typical Degrees: Computer Science, Information Technology, Cybersecurity, Data Analytics, Mathematics, or related field(s).
- In lieu of a degree, two (2) years of experience in a related technology field and relevant industry certifications are accepted.
- One (1) or more years application development experience
- Demonstrable knowledge of secure application development practices and testing
- Proficiency and experience using scripting languages
- Proven ability to create technical reports and recommendations
- Familiarity or strong interest in security methodologies and best practices
- Two (2) years’ experience using TCP/IP protocols and networking concepts
- Experience with Microsoft, Linux, or MacOS platforms
- Must be a citizen of the United States
Additional capabilities that will differentiate you for this role:
- Strong written and/or verbal communication skills
- Ability to write technical content suitable for a wide variety of audiences
- One (1) or more years’ experience employing penetration testing tools and methodologies
- Dedicated to continuously learn and apply new technical skills
- Previous experience in a technical support or security-focused role
- Proven ability to deliver timely and accurate response to requests
- Certification or intent to certify in at least one of the following areas: OSWE, OSCP, CISSP, GPEN, GXPN, CompTIA Security+, CISM, CeH
The Rewards
What you can expect:
- The engagement and support of company leadership who recognize the challenge of marketing a complex cybersecurity service in a chaotic market.
- An organization that recognizes and rewards employee commitment and contribution to our customers’ satisfaction and success
- Growth in your career and capabilities as you help to chart a path to improving customer interactivity and service adoption.
- A collaborative and driven working environment in a rapidly growing company and market
- A fun and social working environment where you are encouraged to be your true self.
You can also expect competitive salary and benefits, including paid time to give back in your community and generous PTO.
We are purpose driven. We, as an organization, above anything else protect the house first and then help our customers win. If this sounds like the kind of organization you’d like to be a part of, we‘d like to hear from you.
AAP/EEO Statement
The Equal Employment Opportunity Policy of NuHarbor Security is to provide a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religion, national origin, gender, sexual orientation, age, marital status or disability. NuHarbor Security hires and promotes individuals solely based on their qualifications for the job to be filled.
NuHarbor Security believes that employees should be provided with a working environment which enables each associate to be productive and to work to the best of his or her ability. We do not condone or tolerate an atmosphere of intimidation or harassment based on race, color, religion, national origin, gender, sexual orientation, age, marital status, or disability. We expect and require the cooperation of all employees in maintaining a discrimination and harassment-free atmosphere.
Top Skills
What We Do
NuHarbor Security is a leading national cybersecurity services firm, supporting the diverse needs of hundreds of clients with clear, comprehensive, and outcome-based solutions. We support only best-of-breed security technologies with thoroughly trained and vetted analysts. We make cybersecurity easier for our clients by integrating the most comprehensive set of security services in the market, from compliance and offensive testing to award-winning 24×7 managed security operations. What’s more, NuHarbor advisors analyze information from multiple sources to deliver the most well-informed strategies for building, improving, and maintaining your cybersecurity program. NuHarbor makes it easy to secure what matters most to you.