Manager, Offensive Security

GainsightGainsight·Remote(Remote- United States)
Cybersecurity

WFA Digital Insight

The demand for skilled offensive security professionals has surged by 25% in the past year, driven by the increasing complexity of cyber threats. Gainsight, a pioneer in AI-driven customer success, is looking for a seasoned Manager of Offensive Security to bolster its defenses. With the rise of remote work, companies like Gainsight are seeking experts who can navigate the evolving threat landscape. This role offers a unique chance to work with a cutting-edge platform, leveraging AI to enhance customer success. Before applying, candidates should be aware that they will need to demonstrate expertise in pen testing, red teaming, and threat analysis, as well as strong leadership skills to expand the team's capabilities.

Job Description

About the Role

The Manager of Offensive Security at Gainsight will play a pivotal role in fortifying the company's defenses against cyber threats. This is a remote position based in the United States, offering the flexibility to work from anywhere while being part of a dynamic team. The successful candidate will be responsible for performing comprehensive security assessments, including Red and Purple Team exercises, to identify vulnerabilities and strengthen the company's security posture. This role involves collaboration with various teams, including engineering, IT, and product, to ensure that security is integrated into every aspect of the business.

As a key member of the security team, the Manager of Offensive Security will be expected to stay abreast of the latest threats and technologies, continuously updating the company's security strategies to stay ahead of potential threats. This is a high-visibility role that requires not only technical expertise but also the ability to communicate complex security issues to both technical and non-technical stakeholders.

Gainsight's commitment to innovation and customer success creates a unique environment where security professionals can thrive. With a growing suite of products and a strong focus on AI-powered relationship intelligence, the company offers a challenging and rewarding landscape for offensive security specialists to make a real impact.

What You Will Do

  • Perform Red and Purple Team assessments to simulate real-world attacks and identify vulnerabilities in the company's systems and applications.
  • Conduct external and internal wireless assessments, web and mobile application testing, and embedded system assessments to ensure comprehensive security coverage.
  • Develop and maintain a threat intelligence program to stay informed about emerging threats and adjust the company's security strategies accordingly.
  • Recognize and safely utilize attacker tools, tactics, and procedures to enhance the company's defensive capabilities.
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences, ensuring that security findings and recommendations are clearly communicated.
  • Perform offensive technical cyber security engagements of a varied nature, including network, cloud, social engineering, scripting, and tool development.
  • Collaborate with the engineering team to ensure that security is integrated into the development lifecycle, from design to deployment.
  • Expand the team's capabilities through tool creation, research on offensive techniques, and incorporation of threat actor intelligence.
  • Provide training and guidance to junior team members, promoting a culture of continuous learning and professional development.
  • Participate in internal presentations and knowledge-sharing activities to elevate the organization's overall security awareness and expertise.

What We Are Looking For

  • 5-7 years of relevant experience in offensive security, including recent management experience.
  • 5 years of experience with pen testing and red teaming functions, including network, web application, mobile, cloud, social engineering, scripting, or tool development.
  • Experience with tools used for wireless, web application, and network security testing.
  • Strong understanding of threat intelligence and the ability to analyze and communicate complex security issues.
  • Experience with cloud security platforms and technologies.
  • Certifications related to offensive security, such as OSCE, OSEP, OSEE, OSCP, CCSAS, CCT, INF, or relevant SANS courses, are highly desirable.
  • Excellent communication and leadership skills, with the ability to motivate and direct a team of security professionals.
  • Strong problem-solving skills, with the ability to think creatively and outside the box.

Nice to Have

  • Experience implementing or assessing information security implementation or assessment of security controls.
  • Familiarity with AI and machine learning technologies and their applications in security.
  • Knowledge of compliance frameworks and regulatory requirements, such as GDPR, HIPAA, etc.
  • Experience with security orchestration, automation, and response (SOAR) solutions.

Benefits and Perks

  • Competitive salary and benefits package.
  • Opportunity to work with a cutting-edge AI-powered customer success platform.
  • Flexible remote work arrangement, with the option to work from anywhere in the United States.
  • Comprehensive health insurance, including medical, dental, and vision coverage.
  • Generous PTO policy, including vacation days, sick leave, and holidays.
  • Access to professional development opportunities, including training, conferences, and certifications.
  • Participation in the company's equity program, with the potential for long-term financial rewards.
  • Flexible spending accounts for health and dependent care.
  • Access to employee assistance programs, including mental health support and financial counseling.

How to Stand Out

  • To stand out in your application, ensure your resume and cover letter highlight specific examples of your experience with pen testing, red teaming, and threat analysis.
  • Prepare to discuss your approach to staying current with emerging threats and technologies, and how you incorporate this knowledge into your security strategies.
  • Familiarize yourself with Gainsight's products and services, and be prepared to discuss how your skills and experience align with the company's mission and goals.
  • Consider including examples of your leadership experience, particularly in expanding team capabilities and guiding junior team members.
  • Be prepared to discuss your experience with security tools and technologies, including those used for wireless, web application, and network security testing.
  • Show enthusiasm for the role and the company, and highlight your passion for offensive security and its importance in the current threat landscape.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.