Your browser cookies must be enabled in order to apply for this job. Please contact if you need further instruction on how to do that.

Senior Enterprise Security Consultant

IT | Denver, CO | Full Time

Job Description

The Senior Enterprise Security Consultant plays a key role at DirectDefense as a leader on our technical team and performing network penetration testing and vulnerability assessment work on and within client environments. The Senior Enterprise Security Consultant conducts formal tests on a diverse variety of networks, servers, databases, and other infrastructure components to measure an organization’s susceptibility to compromise.


In addition to strong technical skills, the successful candidate in this role will have strong interpersonal skills and be able to communicate complex security topics to technical teams within various organizations. Key success factors include the ability to stay current on the latest vulnerabilities and technology trends, the ability to develop proofs of concept that accurately and effectively demonstrate vulnerabilities discovered, and the ability to communicate findings and recommendations clearly in writing.


Job functions:

  • Perform network and wireless penetration testing, social engineering (phishing, physical, and pre-text calling), server/network device configurations reviews, , and network architecture assessments
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences
  • Recognize and safely utilize attacker tools, tactics, and procedures
  • Develop scripts, tools, or methodologies to enhance team processes
  • Assist with scoping prospective engagements, leading engagements from kickoff through remediation, and mentoring less experienced staff
  • Preform Vulnerability Scanning and Malware Analysis
  • Assess, monitor and recommend improvements to our client’s security architecture
  • Define tasks, processes and procedures necessary to implement, maintain support, and monitor proposed solutions
  • Reviews, audits and evaluates security solutions and designs
  • Proactively identify technical and architectural risks, commenting and/or providing alternatives for improvement
  • Reviews to ensure use of best practices and in compliance with security frameworks like (ISO2700x, PCI, HIPAA, etc.)



  • Minimum of 3 years of experience with Network Penetration Testing
  • Familiarity with offensive toolkits used for Network Penetration Testing
  • Familiarity with offensive and defensive IT concepts
  • Knowledge of Linux and/or Windows administration