Emplea.do

Senior Offensive Security Specialist

KPMG · LaPieza · CDMX, Estado de Mexico, Guadalajara, Mexico.

Descripción del puesto

Senior Penetration Tester / Offensive Security Specialist 🔍
Join KTSA (KPMG Technology Services Americas), a technology delivery center supporting KPMG firms across the Americas. You'll work in a highly collaborative, multicultural environment, partnering with global cybersecurity teams to strengthen enterprise security through advanced offensive security practices.

🎯 Role Purpose
We are looking for a highly skilled Offensive Security professional to conduct advanced penetration testing, cloud security assessments, red teaming exercises, and AI security evaluations across enterprise environments.
This is a highly technical, hands-on role for someone passionate about identifying vulnerabilities, simulating real-world attack scenarios, and helping organizations strengthen their security posture. The ideal candidate combines deep offensive security expertise with curiosity, continuous learning, and the ability to operate effectively in a global, English-speaking environment.

📌 Key Responsibilities
Conduct advanced network, web application, and cloud penetration tests across enterprise environments.
Execute offensive security assessments to identify, validate, and document security vulnerabilities.
Perform red teaming exercises to evaluate detection, response, and resilience capabilities.
Conduct AI Red Teaming assessments, including testing for prompt injection, model evasion, data poisoning, and other emerging AI threats.
Assess security controls and collaborate with stakeholders to support remediation efforts.
Develop scripts and automation to improve assessment efficiency and repeatability.
Apply industry-standard methodologies and frameworks such as MITRE ATT&CK, MITRE ATLAS, OWASP, PTES, and NIST.
Collaborate with cybersecurity teams and stakeholders based in the United States and across the Americas.
Stay current with emerging attack techniques, threat intelligence, and offensive security trends.
Mentor and share knowledge with peers while contributing to the growth of the security practice.

🧑‍💻 Requirements
Bachelor's degree in Computer Science, Cybersecurity, Information Technology, Engineering, or a related field.
5–8+ years of experience in cybersecurity, penetration testing, offensive security, red teaming, or related disciplines.
Strong hands-on experience performing:
Network Penetration Testing
Web Application Penetration Testing
Cloud Security Assessments
Vulnerability Assessments
Offensive Security Engagements
Solid understanding of cloud environments including AWS, Azure, and GCP.
Experience with AI security concepts and AI Red Teaming methodologies.
Strong knowledge of offensive security frameworks and methodologies:
MITRE ATT&CK
MITRE ATLAS
OWASP
PTES
NIST
Proficiency in scripting and automation using:
Python
Bash
PowerShell
Experience identifying and validating common and emerging security threats.
Advanced English level (C1+) with experience working in multicultural environments.
Strong analytical, communication, and problem-solving skills.
Self-driven learner with a high degree of autonomy and curiosity.

⭐ Preferred Qualifications
Previous experience in dedicated Red Team operations.
Experience performing cloud penetration testing in large-scale environments.
Exposure to adversarial machine learning and AI security testing.
Offensive security certifications such as:
OSCP
OSCE
GPEN
CISSP
Similar industry-recognized certifications
Azure security certifications are a plus.

🌎 Work Model
Hybrid work model for candidates based in Mexico City, State of Mexico, and Guadalajara (Puerta de Hierro). Candidates located outside these areas may work remotely.
Collaboration with international teams across the Americas, primarily in English.

🚀 Why Join KTSA
Work on cutting-edge offensive security and AI security initiatives.
Gain exposure to enterprise-scale environments supporting KPMG firms across the Americas.
Access paid certifications, continuous learning platforms, and professional development programs.
Collaborate with highly skilled global cybersecurity teams.
Enjoy clear growth opportunities into advanced offensive security and Red Team functions.
Comprehensive benefits package