Technical Manager - Threat Management and IoT

A Threat Technical Manager should be a highly skilled penetration tester proficient in both technical and soft skills, capable of performing complex IoT assessments and developing/adapting emerging TTP’s while maintaining a business focus and meeting client requirements. This position will work both independently, as part of a team, and as a team lead to perform Security Assessments including Product/IoT assessments, vulnerability assessments, penetration tests, wireless security assessments, and social engineering. The Technical Manager also contributes to developing and continuously improving the Security Assessment practice through various industry contributions and leading team initiatives (e.g., tool development, conference presentations, and blog posts).

How you'll make an impact:

• Perform penetration tests, secure code reviews, and advanced advisory activities through client services engagements
• Write status updates and final deliverables during client engagements
• Provide tactical and strategic guidance and detailed remediation advice to help clients achieve stronger security postures
• Build and maintain professional relationships with client stakeholders and provide them with information about application security and secure development lifecycle topics
• Able to perform firmware extraction and analysis
• Obtain and evolve technical expertise, certifications, and industry credentials through formal and informal training and other learning initiatives
• Contribute content to the Optiv blog and present on security topics via webinars and security conferences
• Establish and maintain productive relationships with the wider delivery team, practice management, and client management team
• Identify and recommend improvements in Optiv’s methodologies and internal processes and provide input and support for updating consulting tools, techniques, and knowledge base
• Review the work provided by other team members to confirm their deliverables are of the highest quality

What we're looking for:

• Practical experience in an application security role that included manual testing
• 3+ years of experience performing Product/IoT Assessments, Penetration Tests, Wireless Security Assessments, and/or Social Engineering to enterprise-level organizations
• 5+ years of experience in a consulting services role, or related information security positions
• CREST Certification preferred (Council of Registered Security Testers)

• Canadian government clearance is a plus

• Previous job experience in an information security consulting services or enterprise security team role
• Previous experience in Incident Management preferred
• Ability to travel up to 40% of the time to client sites
• Deep understanding of software security architecture and design
• Ability to work with diverse and dynamic teams
• Successful implementation of application testing methodologies for web applications and APIs
• Ability to assess mobile applications on IOS and Android platforms
• Able to assist in setting the strategic direction of the practice based on experience and industry background
• BA/BS degree preferred in computer science, software engineering, cybersecurity, or mathematics
• Ability to clearly articulate the benefits of your Optiv subject matter product and service solutions portfolio to various client stakeholders
• Proven experience in a pre-sales, post-sales, or non-sales technical capacity in an information security environment
• Ability to listen and communicate effectively with vendors, prospects, clients, account managers, and management
• Confident presentation, written, and oral communication skills

What you can expect from Optiv:

• A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups
• Work/life balance
• Professional training resources
• Creative problem-solving and the ability to tackle unique, complex projects
• Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities
• The ability and technology necessary to productively work remotely/from home (where applicable)