IT Security Manager (Offensive Security)

Requirements: Experience: 7+ years in Information Security, with 3–4+ years as a Penetration Tester, Red Teamer, or AppSec Engineer; hands-on ability to perform attacks like SQL injection or compromise Active Directory. Application Security Fluency:

Deep understanding of modern application stacks, including API security, microservices, and CI/CD pipelines. Scripting & Automation:

Proficient in Python, Go, or Bash for automating testing and security tools. Leadership & Risk Communication:

Ability to explain technical risks (e.g., XSS) in business terms to Product Managers or stakeholders. Legal & Ethics Knowledge:

Understanding of legal boundaries for ethical hacking (e.g., CFAA, safe harbor clauses). Preferred Certifications:

OSCP / OSCE (technical credibility), GWAPT / GPEN / GXPN (penetration testing), CISSP (management-focused).