Security Consultant

Role Summary

By adopting an attacker’s mindset, you will help our global clients proactively strengthen their security posture through high-quality penetration testing and strategic risk mitigation advice. Based in our Manila delivery center, you will be a key contributor to our global delivery capabilities, working on diverse and high-impact engagements while benefiting from structured professional development and mentorship.

• Technical Assessments: Execute comprehensive technical tasks across various security assessment and penetration testing projects.
• Vulnerability Management: Identify, document, and support the remediation of security flaws and incidents.
• Strategic Advisory: Deliver actionable risk mitigation strategies and technical solutions customized to specific client environments and global best practices.
• Global Collaboration: Work closely with international project teams and stakeholders to ensure project success and client satisfaction.
• Client Engagement: Manage professional interactions with clients, fostering trust through clear and consistent communication regarding technical findings.
• Knowledge Sharing: Contribute to internal capability-building and mentor junior team members where applicable.

• Technical Expertise: Hands-on experience performing security assessments for web applications, web services, and both internal and external infrastructures.
• System Knowledge: Strong familiarity with Linux systems and command-line operations.
• Mobile Security: A solid understanding of security protocols for mobile applications (iOS and Android).
• Communication: Exceptional English proficiency (written and verbal) with the ability to translate complex technical vulnerabilities for non-technical stakeholders.
• Experience: Proven experience working within international teams, preferably in a consultancy or global delivery center environment.

• Certifications: Possession of industry-recognized certifications such as OSCP, BSCP, CRT, or CPSA.
• Compliance Standards: Familiarity with regulatory frameworks such as PCI DSS or HIPAA.
• Advanced Technical Skills: Experience in source code review, programming, or scripting to automate security tasks.
• Network & Cloud: Ability to perform active firewall configuration reviews and experience with cloud platform security assessments.