GuidePoint Security is hiring a Senior Security Consultant- Threat & Attack Simulation- Remote (Anywhere in the U.S.)

GuidePoint Security is looking for a Senior Security Consultant to join its Threat & Attack Simulation Practice. In this role, you will deliver complex offensive security assessments with minimal oversight, contribute to the growth of our services, and help shape the future of our practice.

What You'll Do

• Lead and execute assessments including red team operations, purple team exercises, network and cloud penetration tests, application/API security assessments, social engineering campaigns, and custom engagements.
• Map assessment activities to the MITRE ATT&CK framework and align engagements with industry methodologies like PTES, OWASP, and NIST guidelines.
• Perform reconnaissance, exploitation, post-exploitation, lateral movement, and privilege escalation across on-premises and cloud environments (AWS, Azure, GCP).
• Assess cloud-native environments including IAM configurations, serverless functions, container orchestration, and Infrastructure-as-Code deployments.
• Conduct application and API penetration testing targeting OWASP Top 10 vulnerabilities, business logic flaws, and authentication/authorization weaknesses.
• Evade defensive controls including EDR, NDR, email security gateways, and network segmentation during red team operations.
• Author comprehensive assessment deliverables tailored to both technical and executive audiences detailing technical execution, root-cause deficiencies, business impact, and realistic remediation strategies.
• Build automation, orchestration, and scripting solutions to reduce manual processes and improve efficiency.
• Develop and improve offensive tooling, custom implants, and C2 infrastructure to support assessment operations.
• Assist with practice development including improving existing service offerings, creating new offerings, and identifying emerging assessment areas such as AI/LLM security testing.
• Mentor junior and mid-level team members through one-on-one and group technical sessions, knowledge sharing, and hands-on guidance during engagements.
• Build strong client relationships by providing interactive, collaborative support and guidance.
• Represent GuidePoint professionally during pre-sales calls, scoping discussions, and client debriefs.
• Contribute to marketing and thought leadership through publishing research, speaking at conferences, authoring blog articles/whitepapers, hosting webinars, and developing security tools.

What We're Looking For

• OSCP (Offensive Security Certified Professional) certification.
• Minimum of 4 years of experience performing offensive security assessments (penetration testing, red teaming, or adversary emulation).
• Minimum of 2 years of experience in an enterprise-level consulting or professional services role.
• Intermediate knowledge of and practical experience with Active Directory attack techniques and privilege escalation.
• Proficiency in at least one scripting or programming language (Python, PowerShell, Bash, C#, or Go).
• Experience with offensive security toolsets such as Cobalt Strike, Metasploit, Burp Suite, BloodHound, Impacket, or similar commercial and open-source frameworks.
• Strong written communication skills with the ability to produce client-ready reports that rarely require significant revision before delivery.
• Ability to manage time effectively across concurrent engagements and communicate issues promptly when they arise.

Nice to Have

• Internal operational security experience (non-consulting) in an enterprise environment.
• 6+ years of combined IT and information security experience.
• Hands-on cloud penetration testing experience across AWS, Azure, or GCP, including IAM abuse, serverless exploitation, container breakout, and cloud-native attack paths.
• Application and API security testing experience (OWASP Top 10, business logic testing, source code review).
• Experience with AI/LLM security assessments (prompt injection, data exfiltration, model manipulation).
• Practical experience evading modern defensive controls (EDR bypass, NDR evasion, AMSI bypass, ETW patching).
• Experience developing custom offensive tools, loaders, or C2 frameworks.
• Active community involvement: conference speaking, blog or whitepaper authoring, open-source tool development, podcast appearances.
• Certifications: OSEP, OSED, OSWE, CRTO, GXPN, GPEN, GCIH, GSE, AWS Security Specialty, Azure Security Engineer, or equivalent cloud security certification.

Technical Stack

• Cobalt Strike, Mythic, Sliver, Metasploit
• Burp Suite Professional
• BloodHound / SharpHound, Impacket, NetExec, Rubeus, Certify
• Nmap, Nuclei
• Custom C2 and loader development
• MITRE ATT&CK, PTES, OWASP Testing Guide, NIST SP 800-115

Team & Environment

You'll be part of our Threat & Attack Simulation Practice, joining a team of skilled professionals who collaborate and provide mentorship.

Benefits & Compensation

• Yearly training budget to support certifications.
• Conference sponsorship (attendance and speaking).
• Dedicated research and development time.
• Remote-first work environment with flexible scheduling.
• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans).
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans.
• 12 corporate holidays and a Flexible Time Off (FTO) program.
• Healthy mobile phone and home internet allowance.
• Eligibility for retirement plan after 2 months at open enrollment.
• Pet Benefit Option.

Work Mode

This is a remote position and is open to candidates located anywhere within the United States.

GuidePoint Security is an equal opportunity employer.