Careers

There has never been a better time to begin a career in cybersecurity! The demand for cybersecurity services is growing fast and you can be a part of it. Joining the Security Risk Advisors team means:

LEVELING UP

Continuously learning new skills and technologies

GREAT CULTURE

Our team is close-knit and our facilities are designed for collaboration, hosting industry groups and our own fun events

MOVING FAST

Career advancement based on your accomplishments

Assessments

+- Senior Red Team Consultant

Security Risk Advisors is looking for senior Red Team Consultants to join our Technical Assessments team. Our style of consulting is dynamic, innovative, fast-paced, and highly rewarding.  Our Red Team Consultants support our clients by performing red team operations, penetration testing services and purple team simulations. We encourage research and innovation projects and offer all consultants free outside training each year. We work with a wide variety of clients and across all industry sectors with a focus on Fortune 50 and Fortune 500 organizations.

Core Responsibilities:

  • Red Teams: Conduct stealthy, flag-based red team engagements
  • Purple Teams: Take the role of a red team operator and conduct open-book exam style attack simulations and track actual progress with our VECTR™ toolset to strengthen our clients defenses against real attackers.
  • Penetration Testing: Assess internal and external networks for common and custom security flaws that can lead to widespread access to sensitive systems and data
  • Web and Mobile Assessments: dynamic web and mobile application security testing
  • Tactical Assessments: social engineering, spear phishing, physical break-ins, product security assessments, industrial control systems, architecture reviews
  • Documentation: document evidence of work in reports and status updates
  • Research and Innovation: use knowledge gained to conduct research initiatives with the purpose of improving our services and giving back to the community

 

Requirements:

  • 3-7 years previous professional information security consulting experience
  • Plan and execute adversary simulation engagements such as penetration testing, physical security assessments, red team experience including web application, network, wireless, and mobile hacking
  • Flexibility to accommodate changing schedules of client and project needs and willingness to work extended hours when needed
  • Excellent technical skills, impeccable soft skills, and are well-organized, self-directed individuals with familiarity working for a service-based information security consultancy
  • Strong written and verbal skills to effectively communicate successes and obstacles with team members and leads
  • Effectively communicate findings and strategy to client stakeholders including technical staff, executive leadership and legal counsel
  • Willingness to travel 20-40% depending on assignments and specializations

 

Exceeding Basic Requirements:

  • Bachelor’s degree Information Technology, IT Security, Computer Science, Computer Engineering or equivalent subject matter
  • Knowledge of programming or scripting languages, such as C#/.NET, C++, Python, PowerShell, Bash
  • Willingness to travel internationally and domestically on a more frequent basis
  • Involvement in public community contributions (blogs, conference presentations, public tool development)

 

About SRA:

Security Risk Advisors is a fast growing 100+ person company delivering state-of-the-art cyber security consulting services to market-leading organizations in the Financial Services, Healthcare, Pharmaceutical, Technology, Industrial and Consumer Products industries. Security Risk Advisors maintains a fast-paced and innovative culture that focuses exclusively on engagements that solve the emerging needs of our clients. Our environment fosters the continuous professional development necessary to remain at the top of our game.

+- DevOps Engineer

The DevOps Engineer position will be part of Security Risk Advisors’ Technical Assessments Practice. Our style of development is dynamic, innovative, fast-paced, and highly rewarding. We team with SRA’s other service lines to enhance our information security consulting practice in addition to building and deploying tools that serve our employees and our clients.

 

We’re rapidly improving our primary application VECTR (http://vectr.io/) with state-of-the-art enterprise software features. We’re looking for new team members to help us grow VECTR and build additional information security tools. This is an outstanding opportunity to work in a growing niche and interact with well-known client organizations.

 

Primary Responsibilities:

  • Installation and maintenance of VECTR (Dockerized Java/Tomcat, AngularJS, and MongoDB stack) deployed in cloud environments (AWS, Azure) and on client servers
  • Assist Software Development team define and implement best practices for operations and infrastructure to support internally developed tools and services
  • Assist Software Development team with implementation and maintenance of Continuous Integration/Continuous Deployment tooling like Bitbucket Pipelines
  • Protect organization’s value by keeping information confidential

 

Additional/Optional Opportunities:

  • DevSecOps client Assessments: app development standards, secure SDLC evaluation, and product selection
  • Remain current on information security and emerging threat trends, tools and methodologies to combat the same
  • Thoroughly document work in formal reports and present findings to management suitable for customer consumption
  • Software Development and Test Automation exposure if interested

 

Requirements:

  • 3+ years previous professional operations or DevOps experience working with cloud or virtualized installations of custom software
  • Shell scripting and basic programming experience
  • Knowledge and comfort using and administrating Linux
  • Strong organization skills with attention to detail
  • Flexibility to accommodate changing schedules of client and project needs
  • While rare, willingness to work extended hours to meet deadlines
  • Ability to work independently and articulate progress of projects to management
  • Bachelor’s degree in Information Technology or equivalent subject matter or experience

Skills and Qualifications:

Operations and Infrastructure Configuration and Management, Basic Scripting, Creative Problem Solving, Attention to Detail, Reporting, Teamwork, Adaptability, Time Management, Organization, Communication

 

 

 

About SRA:

Security Risk Advisors is a 100+ person fast-growing cybersecurity consulting company.  Our clients are concentrated in the Fortune 1000 and Global 1000.  We have a fast-paced, agile and fun culture that focuses exclusively on cutting edge cybersecurity engagements that solve the emerging needs of our clients.  Our environment fosters the continuous professional development necessary to remain at the top of our game. We are a Philadelphia-based company and our team members maintain flexible hours through a combination of work from home and reasonable travel.

Threat Management

GRC & Strategy

CyberSOC

+- Information Security Operations Consultant

The Information Security Operations Consultant position will be part of Security Risk Advisors’ CyberSOC Team. This role will be involved in the day-to-day, 24×7, operations of the SOC. This is an outstanding opportunity to work with a wide variety of tool sets and various client organizations.

Responsibilities:

  • Eyes on glass security monitoring for threats.
  • Respond to alerts, investigate to determine if they are true positive or false positive.
  • Use the latest security monitoring technologies to detect malware and hackers.
  • Use Security Information Event Management tools (SIEM), Endpoint Detection & Response tools (EDR), and Network Security Monitoring tools (NSM) such as FireEye, Fidelis, Splunk, Intel/McAfee, RSA, IBM, Symantec, Resilient, Cybereason, Tanium, CarbonBlack, Bro and Snort.
  • Thoroughly document work and present findings to management suitable for customer consumption.
  • Attend conferences and training as required to maintain proficiency.
  • Protect organization’s value by keeping information confidential.

 

Requirements:

  • 1-3 years of professional experience, campus applicants are welcome.
  • Strong organization skills with attention to detail.
  • A demonstrated passion for technology.
  • Work effectively as part of a team, yet function well with independent responsibilities.
  • Experience or coursework around incident investigation and forensics, information security and computer networking.
  • Interest in taking the initiative for personal growth and development.
  • Flexibility to accommodate changing schedules of client and project needs and willingness to work extended hours when needed.
  • Strong written and verbal communication skills with a high level of professionalism.
  • Bachelor’s degree in Computer Engineering Technology or equivalent subject matter.
  • Willingness to travel.
  • Ability to work non-core hours including weekends and night shifts.

 

Skills and Qualifications:

Creative Problem Solving, Attention to Detail, Coordination, Reporting, Team Work, Highly Motivated, Writing, Decision Making, Analyzing Information.

 

About SRA:

Security Risk Advisors is a fast growing 100+ person company delivering state-of-the-art cyber security consulting services to market-leading organizations in the Financial Services, Healthcare, Pharmaceutical, Technology, Industrial and Consumer Products industries. Security Risk Advisors maintains a fast-paced and innovative culture that focuses exclusively on engagements that solve the emerging needs of our clients. Our environment fosters the continuous professional development necessary to remain at the top of our game.

+- Information Security Operations Consultant (Ireland)

The Information Cybersecurity Operations Consultant position will be specific to morning watch (6 AM to 2 PM) and part of Security Risk Advisors’ CyberSOC Team. This role will be involved in the day-to-day, 24×7, operations of the CyberSOC. This is an outstanding opportunity to work alongside experienced information security professionals with a wide variety of cutting-edge tool sets and serving our customers in a wide variety of industry verticals. This opportunity represents an excellent opportunity to break into, or advance in, the cybersecurity field.

Responsibilities:

 The Information Cybersecurity Operations Consultant is responsible for the evaluation of all incidents, events, security, vulnerabilities, monitoring, coordination and reporting on cyber incidents impacting our global clients.

  • Investigate security events; follow pre-defined actions to handle monitoring incidents, events and high severity issues including escalating to other support groups.
  • Use the latest security monitoring technologies to detect malware and hackers.
  • Use Security Information Event Management tools (SIEM), Endpoint Detection & Response tools (EDR), and Network Security Monitoring tools (NSM) such as FireEye, Fidelis, Splunk, Intel/McAfee, RSA, IBM, Symantec, Resilient, Cybereason, Tanium, CarbonBlack, Bro and Snort.
  • Thoroughly document work and present findings to management suitable for customer consumption.
  • Attend conferences and training as required to maintain proficiency.
  • Protect organization’s value by keeping information confidential.
  • Report common and repeat problems (trend analysis) to management and propose process and technical (tuning) improvements.
  • Use SIEM technology to provide analysis and trending of security log data from diverse security devices and other network collectors.
  • Provide incident response support when analysis confirms actionable incident.
  • Provide threat and vulnerability analysis as well as security advisory services.
  • Coordinate with the team on activities impacting customer operations.
  • Undertake professional development and certification opportunities.
  • Other duties as assigned.

Requirements:

  • 1-3 years’ professional experience in IT industry/Network engineering. University graduate and IT crossover applicants are welcome.
  • Training provided.
  • Excellent organisational skills with strong attention to detail.
  • A demonstrated passion for technology.
  • Work effectively as part of a team yet function well with independent responsibilities.
  • Experience or coursework around incident investigation and forensics, information security and computer networking.
  • Interest in taking the initiative for personal growth and development.
  • Flexibility to accommodate changing schedules of client and project needs and willingness to work extended hours when needed.
  • Strong written and verbal communication skills with a high level of professionalism.
  • Bachelor’s degree in Computer Science or equivalent subject matter.
  • Willingness to travel.
  • Ability to work non-core hours including weekends and early morning shifts
  • Knowledge of common Internet protocols and applications.
  • Ability to multi-task, prioritise, and manage time effectively.
  • Excellent interpersonal skills and professional demeanour.
  • Excellent customer service ethos.

Location:
Kilkenny City.

About SRA:
Security Risk Advisors is a 120+ person fast-growing cybersecurity consulting company. Our clients are concentrated in the Fortune 1000 and Global 1000. We have a fast-paced, agile and fun culture that focuses exclusively on cutting edge cybersecurity engagements that solve the emerging needs of our clients. Our environment fosters the continuous professional development necessary to remain at the top of our game. We are a Philadelphia-based company and our team members maintain flexible hours through a combination of work from home and reasonable travel.

Operations

Co-Ops and Internships

Work With Us

Threat Management

GRC & Strategy

Operations

Co-Ops and Internships