Senior Cybersecurity Engineer & Trainer

Dynamic technical position in a small growing company. This position has a steep learning curve, is fast-paced, requires a growth mindset, strong communication skills, a great attitude, and a high technical aptitude. If you are looking for a cog in the wheel type of role, this is not it. In this position, you will have direct influence and impact on the growth and success of the company. Most of the work we do is project-based work, so you will have the opportunity to work on a number of projects, rather than doing the same thing every day.

Here's a list of items (not all inclusive) this role would be responsible for:

  • Audit and compliance assistance with guidelines and regulations, such as our Enterprise Security Audit, GDPR, and PCI DSS. This work could vary from leading the audit to functioning as a team member responsible for reviewing the technical controls.
  • Cybersecurity certification training for courses such as Security+, CISSP, CEH, etc. You will be expected to train 1-2 weeks per month. We will put you through a Train-the-Trainer course. You will be able to sit through courses taught by other instructors.
  • Penetration testing (phishing, black box, white box, gray box, web app, wireless, etc.). We have various skill categories for penetration testing team members. Your assigned role per engagement will be based on your skill level.
  • Vulnerability assessments. We run onsite and remote vulnerability assessments for clients using various tools. You will be expected to run these solo or as part of a team.
  • Cybersecurity consulting. Ad hoc consulting, based on client requirements. Could vary from helping a client implement technical controls for an audit to assessing how sensitive data, such as PHI, flows through an enterprise.
  • Technical support for sales.

Overall Skills Required (not all inclusive):

  • Growth mindset
  • Experience as a trainer, delivering courses
  • High technical aptitude
  • Positive attitude
  • Excellent communicator
  • Team player
  • Attention to detail
  • Adaptability
  • Ownership of circumstances

Technical Skills Strongly Desired:

  • Strong networking skills - TCP/IP, ethernet, DNS, ARP, troubleshooting
  • Network traffic analysis - Wireshark
  • Scripting - Python, Bash
  • Vulnerability assessment tools (Nessus, OpenVAS)
  • Kali Linux
  • Metasploit Framework
  • Recon - Passive and Active - Nmap, Discover, GHDB, Shodan
  • Understanding of web technologies - Java, JavaScript, PHP, ASP, JSON, API, etc.
  • Web Application Assessment Tools - Burp, OWASP ZAP, etc.
  • Operating systems: Windows, Linux
  • Virtualization - VMware, VBox

Preferred Technical Skills:

  • Programming languages, such as C++, Java, and JavaScript are a huge plus
  • Wireless Tools - Wifite, Aircraft-ng
  • Password cracking - Online and Offline - hydra, hashcat, etc.
  • Phishing - storylines and tools

Certifications Desired:

  • Security+
  • CISSP
  • CEH
  • ECSA
  • OSCP
  • LPT (Master)

Travel:

  • 10-15%, maybe more, if desired

Location:

  • Greater St. Louis Area

Apply:

Send your resume to careers@alpinesecurity.com.  Include in your email why you're a good fit for this position and anything else relevant.