Senior Consultant, Offensive Security

Kroll is a global leader in risk and financial advisory solutions. The company's Offensive Security professionals focus on discovering and mitigating unique security risks for clients worldwide, using cutting-edge tools and expert knowledge to find vulnerabilities in networks, systems, and software.

Role & Responsibilities

The Senior Consultant will report to a Principal Consultant in India and play a central role in Kroll's cybersecurity practice. This position combines technical leadership with client-facing responsibilities and mentorship.

• Project Leadership & Execution: Lead and deliver various offensive security engagements, including web, mobile, API, and network penetration tests. You'll be the technical authority for both clients and your team.
• Client Management & Scoping: Act as the technical leader for client engagements. This involves scoping solutions to their cybersecurity challenges and serving as a security subject matter expert. You will also solution and scope new projects, such as penetration tests and cloud security projects.
• Team Leadership & Mentorship: Lead the technical delivery of engagements by defining the execution strategy, delegating tasks to junior team members (Associate Consultants and Consultants), and providing them with feedback and mentorship. You will serve as a role model for their career growth.
• Strategic Initiatives: Contribute to the growth and evolution of the practice by executing internal strategic initiatives and thinking strategically about ways to improve the team.

Essential Traits & Prerequisites

Kroll is looking for a candidate with a strong background in offensive security and the soft skills to lead and mentor a team.

Experience:

• A minimum of 6+ years in cybersecurity.
• At least 3+ years specifically in penetration testing, application security, or red teaming.
• Proven ability to lead and deliver cybersecurity engagements.
• Experience working both independently and as part of a team.

Technical Expertise:

• Expert knowledge of key offensive and defensive security domains, including application security, cloud security, and infrastructure security.
• High degree of adaptability, being tool- and industry-agnostic.

Education & Soft Skills:

• A Bachelor's degree or college diploma in information security, computer science, engineering, or a related field.
• Excellent oral and written communication skills are essential.
• The willingness to be generous with your knowledge and patient with junior team members is a critical trait for this role.