Offensive Cybersecurity Engineer – Remote

SUMMARY

As an Offensive Cybersecurity Engineer, you will conduct in-depth cybersecurity risk assessments for complex enterprise environments, including Microsoft 365, AWS, GCP, Active Directory, EDR systems, email security platforms, and networking equipment. Your responsibilities include identifying and evaluating security misconfigurations and vulnerabilities, analyzing risk impact across on-prem, cloud, and hybrid infrastructures, and producing detailed technical reports with actionable mitigation strategies for both executive and technical audiences. You will lead customer presentations, collaborate with Red Team members, and stay current with emerging tools and methodologies. This role requires strong technical expertise, critical thinking, excellent communication skills, and proficiency with cloud auditing tools like Scout Suite, alongside a commitment to continuous learning and innovation.

JOB RESPONSIBILITIES

• Perform cybersecurity risk assessments on complex, enterprise organizations. Systems and services include, but are not limited to: Microsoft 365, Amazon Web Services, Google Cloud Platform, Traditional Active Directory, Endpoint Detection and Response systems, Email Security Systems, and Networking Equipment.
• Identify and evaluate security misconfigurations and vulnerabilities while considering compensating controls and operational needs across the systems and services.
• Analyze the potential impact and likelihood of identified risks across different environments (on-prem, cloud, hybrid).
• Write highly detailed technical reports on the findings, mitigation strategies, compensating controls, and methodology that can then be digested by both an executive and technical audience.
• Create and conduct technical reviews of various highly detailed cybersecurity testing reports.
• Research and stay up to date with the latest testing techniques, tools, and methodologies.
• Present reports to customers and discuss nuanced technical recommendations, with the expectation of leading customer presentations within 3 months.
• Discuss with, collaborate with, and train teammates from the Cybersecurity Red Team around various tools and techniques associated with cybersecurity risk assessment.
• Assist team members on other projects and engagements, such as Social Engineering, Network Penetration Testing, and Vulnerability Review.

QUALIFICATIONS

• 3+ Years of professional technology experience (I.e., Sysadmin, Networking, Cloud infrastructure, Software Development, etc.) (Required)
• 2+ Years experience auditing major cloud platforms, like Azure, AWS, and GCP (required)
• 2+ Years of Penetration Testing Experience (nice to have)
• Bachelor's Degree in one of the following areas of concentration: Computer Science, Software Development, Information Technology, Cybersecurity (nice to have)
• One or more of the following certifications (nice to have)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Ethical Hacker (CEH)
• AZ-500: Microsoft Certified – Azure Security Engineer
• AWS Certified Security – Specialty
• Google Professional Cloud Security Engineer
• CPSA (Practitioner Security Analyst)
• CRT (Registered Penetration Tester)
• Critical and creative thinking to strategize how to add value to customer engagements.
• Ability to self-manage time and commitments.
• Strong attention to detail and well-organized.
• Highly motivated to continuously learn and innovate.
• Excellent verbal and written communication skills, especially when communicating complex concepts to non-technical audiences.
• Exceptional spelling and grammar skills for writing and proofreading documents.
• Familiarity and comfortability operating with Scout Suite and other cloud-based tools.

JOB REQUIREMENTS

• Should be willing to accept a long-term work-from-home arrangement.
• Should be amenable to a permanent night shift schedule.

BENEFITS

• Full Philippine Statutory Benefits
• 13th Month Pay
• De Minimis Allowance
• Night Shift Differential Pay
• Paid Time Off (PTO)
• Health Insurance
• Life Insurance (maximum of PHP 3M coverage)
• Company-Provided Equipment