Sr. Offensive Security Consultant; Alpha Group

Company Overview

Ver Sprite is an Inc.  fastest growing company and industry leader in PASTA threat modeling. Founded in 2007, Ver Sprite is a private cybersecurity consulting firm helping organizations tighten their risk-gaps with evolved security solutions and advanced threat intel tools.

Ver Sprite has a 97% client retention rate providing organizations with services such as penetration tests, evolved red teaming engagements, vCISO, vSOC, and Ver Sprite's advanced security tools Cloud Security Assessment Platform and Cyber Threat Intelligence Portal.

Remote (U.S.) — Georgia preferred. This is a fully remote role. Candidates must be authorized to work in the United States. While remote, candidates located in Georgia or nearby states are strongly preferred to facilitate collaboration with internal teams and clients.

Ver Sprite is seeking an experienced Sr. Offensive Security Consultant to lead complex security assessments across modern enterprise environments. This role focuses on advanced penetration testing and application security engagements while working closely with clients to identify real-world attack paths and security risks. The ideal candidate combines strong technical expertise with consulting experience and the ability to clearly communicate security risk to both technical and executive audiences.

• Lead penetration testing engagements across web applications, APIs, and enterprise infrastructure
• Perform advanced application security testing including business logic flaws and authentication weaknesses
• Conduct internal and external network penetration testing
• Lead Red Teaming engagements
• Perform threat modeling exercises (e.g., PASTA methodology)
• Conduct cloud security assessments across AWS, Azure, and GCP
• Perform mobile application security testing (Android and iOS)
• Develop custom payloads and exploitation techniques
• Produce detailed technical reports including proof‑of‑concept exploitation scenarios
• Communicate technical findings and risk to client stakeholders
• Mentor junior consultants during engagements
• Contribute to internal research initiatives and security methodology improvements

• 7+ years of experience in offensive security or penetration testing
• Strong experience in web application, API penetration testing, external and internal network assessments. Experience testing Active Directory environments
• Experience leading Red Teaming engagements
• Strong experience writing penetration testing reports and technical documentation
• Ability to communicate security risks to technical and non‑technical stakeholders
• Strong communication skills both written and spoken
• Experience working in consulting or client‑facing environments

• Offensive security certifications such as OSCP, OSWE, OSEP, CRTO, or similar
• Experience performing hardware / product security testing
• Public vulnerability disclosures
• Participation in bug bounty programs
• Security research publications or blog posts
• Contributions to open‑source security tools
• Active participation in the security community (CTFs, conferences, etc.)

• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that's right for you
• A collaborative environment where everyone works together to create a better working world