Source Job

US Unlimited PTO

  • Deliver attack-oriented professional services including penetration testing, red teaming, and social engineering for clients.
  • Author comprehensive assessment deliverables detailing technical execution, core deficiencies, and remediation strategies.
  • Contribute to practice development and marketing initiatives through research, speaking, and tool creation.

Penetration Testing Red Teaming Cloud Security Scripting

17 jobs similar to Security Consultant-Threat & Attack Simulation

Jobs ranked by similarity.

United States

  • Perform scoped and open-ended assessments on internal and external facing systems.
  • Perform threat and vulnerability research to identify new ways of achieving the program’s mission.
  • Work with the customer Blue Team to identify gaps, address findings, and improve breach response.

Cyber Advisors is a rapidly growing Cybersecurity Consulting firm that simulates real-world attacks to uncover vulnerabilities. They believe in inclusion, employee development, and have a caring, happy culture where people feel valued.

US

  • Plan and execute penetration tests across applications, networks, and cloud infrastructure, producing detailed reports for technical and executive audiences.
  • Own remediation follow-through by translating findings into security engineering work items, and design controls across Azure, Okta, and other platforms.
  • Support ISC2's ISO/IEC 27001 ISMS program and continuously improve detection and hardening through automation and threat intelligence.

ISC2 is a nonprofit member organization for cybersecurity professionals, dedicated to a safe and secure cyber world. With a globally recognized portfolio of certifications and a charitable arm, they advocate for inclusion and excellence, supported by a large, global workforce.

US

  • Lead penetration testing across web apps, APIs, and infrastructure.
  • Deliver detailed reports with proof-of-concept exploitation scenarios.
  • Mentor junior consultants and contribute to security research.

VerTALENTS is a subsidiary of VerSprite Cybersecurity that specializes in technology staffing, connecting top technical talent with clients. They work with clients to fill both full-time and contracting opportunities, adding value to both clients and candidates.

$100,000–$130,000/yr
US

  • Perform offensive security assessments on cloud infrastructure, web applications, APIs, and traditional networks for clients across various industries.
  • Develop detailed penetration testing documentation and collaborate with teams to integrate security into CI/CD pipelines.
  • Contribute to building a new offensive security service line within a top-rated CPA and advisory firm.

Aprio is a top 20 CPA-led advisory firm serving fast-growing industries with expertise in assurance, tax, and advisory services. The firm has over 3,200 team members across 40+ offices globally, and is recognized as a Best Place to Work with a collaborative culture.

$155,520–$228,700/yr
US

  • Perform full-stack penetration testing of web applications, APIs, and mobile apps.
  • Conduct internal/external network audits and vulnerability validation.
  • Develop custom exploits, adversary emulation, and AI/LLM security testing.

Twilio is shaping the future of communications by delivering innovative solutions to hundreds of thousands of businesses and empowering millions of developers worldwide. The company values a remote-first work culture, global inclusion, and diverse experiences.

$192,000–$240,000/yr
United States

  • Perform penetration testing and design reviews to identify vulnerabilities and insecure designs.
  • Maintain and build internal tools to automate security efforts, including SAST and DAST testing.
  • Identify vulnerabilities, demonstrate business impact, and articulate risk to drive prioritization.

Brex is the intelligent finance platform that enables companies to spend smarter and move faster in over 200 markets. With tens of thousands of customers including DoorDash, Coinbase, and Zoom, Brex fosters a diverse and inclusive team culture where collaboration with some of the brightest minds in the industry is key.

$82,550–$170,180/yr
UK

  • Lead penetration testing engagements on applications with complex technology stacks, working independently and collaboratively.
  • Contextualize vulnerabilities and assess realistic impact to clients, ensuring quality reports and services are delivered efficiently.
  • Maintain strong depth of knowledge in application security and mentor teammates while collaborating with project managers and delivery teams.

Coalfire is a cybersecurity firm that helps clients navigate complex security challenges through advisory, assessment, and automation services. The company is headquartered in Chicago with offices across the U.S. and U.K., and supports clients worldwide with a team of passionate cybersecurity experts.

US Unlimited PTO

  • Lead and execute full-lifecycle red team engagements including scoping, planning, execution, and reporting.
  • Simulate advanced persistent threat tactics against enterprise network and cloud environments with custom tooling.
  • Collaborate with blue teams for purple team assessments and mentor junior consultants.

UltraViolet Cyber is a platform-enabled unified security operations company providing comprehensive security solutions for organizations. Founded and operated by security practitioners with decades of experience, the company serves Fortune 500, Federal Government, and Commercial clients and has global offices across the U.S. and India.

$247,000–$275,000/yr
US Unlimited PTO

  • Research Oracle Cloud Infrastructure services and identify offensive security opportunities across the platform.
  • Develop new attack techniques, attack paths, and security assessments targeting OCI environments.
  • Build and maintain production-quality Python code that powers NodeZero attack capabilities.

Horizon3.ai is a remote cybersecurity company that enables organizations to proactively find, fix, and verify exploitable attack vectors with its NodeZero autonomous pentesting platform. They are a team of former U.S. Special Operations cyber operators and engineers, committed to a culture of respect, collaboration, and ownership.

$160,000–$185,000/yr
US Unlimited PTO

  • Represent SpecterOps at industry conferences and events as a public-facing advocate.
  • Develop high-quality technical content such as blogs, tutorials, and videos to educate users.
  • Partner with the Community Manager to execute community growth initiatives and engagement campaigns.

SpecterOps is a cybersecurity company specializing in attack path management and open-source security tools like BloodHound. They are a remote-first organization with a focus on community engagement and employee growth, offering comprehensive benefits and a collaborative culture.

US Unlimited PTO

  • Deliver Application Security services including threat modeling, architecture reviews, and program assessments.
  • Author comprehensive reports tailored to technical and managerial audiences with remediation strategies.
  • Contribute to practice development and mentor team members while embracing emerging technologies.

GuidePoint Security provides trusted cybersecurity expertise, solutions, and services to help organizations minimize risk. With over 1,200 employees, the company fosters a collaborative culture focused on mentorship and knowledge sharing.

Global Unlimited PTO

  • Conduct threat modelling reviews of Technical Design Documents (TDDs) and provide actionable security recommendations early in the design process.
  • Perform application security assessments, including penetration testing, vulnerability assessments, and proof-of-concept development.
  • Investigate, triage, and respond to Bug Bounty program submissions, validating findings and driving timely remediation with engineering teams.

MoonPay is a unified payments platform for digital currency. Trusted by over 30 million customers and over 500 ecosystem partners, the company is committed to building a fairer, more open financial system with a culture of accountability and inclusivity.

US Unlimited PTO

  • Own end-to-end sales cycle for offensive security services within a defined territory.
  • Build and execute territory plan to expand new logo acquisition and grow revenue.
  • Lead consultative discussions with CISOs and security leaders to shape solutions.

UltraViolet Cyber is a platform-enabled unified security operations company providing cybersecurity solutions. The company has global offices across the U.S. and India, serving Fortune 500, Federal Government, and Commercial clients.

US 4w PTO

  • Lead application security reviews, threat modeling, and secure code review for new features and significant product changes.
  • Operate and improve SAST, DAST, and SCA tooling, triage findings, and partner with engineering teams to harden the codebase.
  • Plan and execute internal penetration tests against web applications, APIs, and mobile clients, and own the vulnerability management lifecycle.

ButterflyMX empowers people to automate property access, operations, and security from a single platform, serving over 20,000 properties worldwide. As a distributed, primarily remote workforce, they seek intelligent, passionate, and collaborative individuals driven by a shared commitment to excellence and innovation.

Europe US Unlimited PTO

  • Triage, validate, and remediate security vulnerabilities across products, infrastructure, and internal systems.
  • Develop, maintain, and contribute to internal and open-source security tooling, writing production-grade code.
  • Improve secure development practices through code reviews, threat modeling, and security design reviews.

Tiger Data provides the fastest PostgreSQL platform for transactional, analytical, and agentic workloads. With over 2,000 customers and 3 million active databases, it is a remote-first team backed by $180 million in funding.

UK 5w PTO

  • Research and create defensive security labs and crisis simulation content for the platform.
  • Work with the Product team on innovations and deploy new features.
  • Compile technical research into clear content for both technical and non-technical audiences.

Immersive Labs provides a cyber resilience platform that simulates real-world threats to test skills and measure performance. Founded in 2017, the company has grown to over 300 employees globally, secured over £150 million in funding, and been voted a best place to work.

$196,000–$242,000/yr
Global Unlimited PTO

  • Perform hands-on web application penetration tests on real customer applications to find vulnerabilities.
  • Identify coverage gaps in autonomous testing and manually reproduce edge cases for product improvement.
  • Partner with engineers to translate findings into product coverage and build regression test cases.

Horizon3.ai is a cybersecurity company that provides the NodeZero platform for autonomous penetration testing. They are a fast-growing, remote team of former U.S. Special Operations cyber operators, startup engineers, and cybersecurity practitioners committed to a culture of respect, collaboration, ownership, and results.