Senior Cyber Security Consultant Responsibilities:Actively participate in security testing of web and mobile applications.Conduct thorough penetration tests on applications, systems, and networks to identify vulnerabilities.Support the internal and/or customer development team in the preparation, formalization, implementation and verification of security requirements following a “Security by Design” principle.Develop and execute hands-on DevSecOps programs, including penetration testing, automation, static/dynamic code analysis, threat modeling, and developer training.Ability to think like an attacker. Conduct secure design reviews and contribute to threat modeling exercises.Preparing reports at both technical and executive level, providing recommendations to an heterogeneous public.Plan, lead and execute projects, including team management.Stay up-to-date with the latest security trends, vulnerabilities, and industry best practices.Engage in continuous learning and research to improve your skills and contribute to the team's knowledge base. Requirements:Minimum 5+ years of consulting experience in Red Teaming/Pentesting and possesses industry recognised certifications (e.g. CISSP, OSCP, CRT, CREST, CRTP)Experienced and well versed in security testing domains. For example, red teaming, web/network/mobile/cloud/thick client vulnerability assessments and penetration testing.Proven experience in implementing proactive security solutions and integrating security into the software development lifecycle (SDLC).Ability to explain vulnerabilities and weaknesses in OWASP Top 10 and SANS Top 25 to any audience and discuss effective defensive techniquesFamiliarity with programming languages (e.g., Python, Bash, C#, or JavaScript).Hands-on experience securing cloud infrastructure and familiarity with containerization technologies (Kubernetes, Docker).

Senior PKI Consultant: * Mandatory skills: 1. Strong working knowledge of PKI management and concepts including CA deployment, template creation, and certificate lifecycle management. 2. Experience/exposure in implementing PKI-product such as Keyfactor, EJBCA, Autoenrolment, Orchestration services. 3. Azure exposure - solid understanding of federation, identity sync, ADFS, networking concepts. 4. Architecture design diagrams - working knowledge of creating high level architecture diagrams (having PKI focus is a plus) 5. Familiarity/Hands on experience working with NDES, Active Directory Certificate Services, Azure AD, Active Directory. 6. Familiarity with single sign on (SSO) and SAML, understanding of concepts such as claims aware applications. 7. Understanding of roles, permissions in Windows/Linux environments. 8. Understanding of PowerShell scripting, and ability to create custom workflows for API integrations. * Desired skills: 1. Knowledge/experience working with SCEP (simple certificate enrolment protocol). 2. Knowledge/experience working with ACME/CMP/EST protocols. 3. Knowledge/experience working EJBCA 4. IAM exposure - identify and access management with any products/technologies. 5. Familiarity in working with Linux/Unix operation systems. 6. Familiarity in working with ITSM solutions such as ServiceNow and BMC Remedy. Show more Show less

Senior PKI Consultant: * Mandatory skills: 1. Strong working knowledge of PKI management and concepts including CA deployment, template creation, and certificate lifecycle management. 2. Experience/exposure in implementing PKI-product such as Keyfactor, EJBCA, Autoenrolment, Orchestration services. 3. Azure exposure - solid understanding of federation, identity sync, ADFS, networking concepts. 4. Architecture design diagrams - working knowledge of creating high level architecture diagrams (having PKI focus is a plus) 5. Familiarity/Hands on experience working with NDES, Active Directory Certificate Services, Azure AD, Active Directory. 6. Familiarity with single sign on (SSO) and SAML, understanding of concepts such as claims aware applications. 7. Understanding of roles, permissions in Windows/Linux environments. 8. Understanding of PowerShell scripting, and ability to create custom workflows for API integrations. * Desired skills 1. Knowledge/experience working with SCEP (simple certificate enrolment protocol). 2. Knowledge/experience working with ACME/CMP/EST protocols. 3. Knowledge/experience working EJBCA 4. IAM exposure - identify and access management with any products/technologies. 5. Familiarity in working with Linux/Unix operation systems. 6. Familiarity in working with ITSM solutions such as ServiceNow and BMC Remedy. Show more Show less