This role sits at the intersection of handson offensive security, people leadership, and delivery excellence. Youll work closely with Sales, Product, and Leadership to support scoping, improve delivery processes, and help evolve our service offerings as the business scales. Responsibilities Manage and execute offensive security engagements Oversee and contribute to penetration tests, red team activities, and advanced security assessments. Act as the technical escalation point for complex findings, edge cases, and client questions. Lead and mentor the offensive security team Manage a team of pentesters and security engineers, providing technical guidance, feedback, and career development. Foster a culture of learning, curiosity, and high professional standards. Ensure delivery quality and consistency Own engagement scoping, execution quality, and reporting standards. Ensure findings are accurate, reproducible, riskfocused, and actionable for engineering and compliance teams. Support sales and presales efforts Partner with Sales on technical discovery calls, scoping discussions, and proposal input. Help prospects understand realworld risk, testing depth, and value beyond checkbox compliance. Improve delivery operations Track and improve key delivery metrics (SLA adherence, retesting turnaround, utilization, client satisfaction). Identify bottlenecks and continuously refine delivery processes and tooling. Contribute to service evolution Provide handson input into the design and refinement of service lines (e.g., Red Teaming, AI/LLM testing, Secure Code Review, IoT). Help operationalize new offerings by defining scope, methodology, and delivery standards. Requirements 68+ years in offensive security with strong handson experience in penetration testing, red teaming, or related domains. 23+ years in a technical leadership or management role within a consultancy or internal security team. Proven experience managing client engagements endtoend in a professional services environment. Strong understanding of manual testing methodologies and frameworks (OWASP, ASVS, WSTG and NIST 800). Working knowledge of compliance and audit contexts (SOC 2, ISO 27001, PCI DSS) and how offensive testing maps to them. Ability to balance technical depth with delivery ownership and people management. Clear, confident communicator with engineers, executives, and nontechnical stakeholders. Bias toward action, accountability, and highquality outcomes. Nice to Have Experience working with SaaS, FinTech, or HealthTech companies. Familiarity with PTaaS or portaldriven delivery models. Offensive security certifications such as OSCP, OSEP, OSCE, or equivalent. #J-18808-Ljbffr
Job Title
Offensive Security Lead