About us
SRLabs is home to knowledge leaders securing critical infrastructures in finance, energy, and telecommunications. We focus on hands-on hacking resilience – not compliance –, which we shape by combining our hacking research with impactful consulting work for innovation leaders that have a natural thrive for cutting-edge technologies.
What makes us unique?
We come from diverse backgrounds from all over the world, and that's just the way we like it. From coding, reverse engineering, penetration testing, exploit scripting, process design, research and consulting skills, our mix of colleagues possesses a vast set of qualifications, that equips us to influence design decisions of large-scale organisations.
We are looking for Security Consultant to join our team to drive security evolution through ethical hacking, research and consulting.
Job brief
As a Security Consultant, you provide security consulting services to a wide variety of clients. You work with our team on ramping up cyber programs for large-scale IT ventures. You increase our clients’ hacking resilience by working closely with their internal teams finding creative solutions to close gaps.
Your responsibilities:
- Collaborate with internal and external teams to identify security problems and gaps that require new and unique solutions
- Help clients to improve their hacking resilience through better architecture and processes. This includes work around Identity and Access Management, Network Architecture, Ransomware-resilient Backup and Recovery, and many other areas
- Perform assurance tests through penetration tests and red-team exercises
- Identify and prioritize security vulnerabilities and provide remediation recommendations
- Conduct pre-production IOT device security assessments
- Advise clients on improving their detection and response capabilities, for example by fine-tuning EDR systems, optimizing SOC processes and tools, and supporting incident response and crisis management
- Produce high-quality technical reports and presentations and become the trusted advisor of your client stakeholder
- Engage in hacking research and stay up-to-date on security best practices and techniques
What you bring:
- 2+ years of experience in IT security consulting, covering both defensive and offensive security domains
- Exposure to client communication and ability to provide appropriate and clear recommendations
- Experience in creating technical reports and presentations that are comprehensive to tech and non-technical audiences
- Excellent verbal and written communication skills in English
- Exceptional analytical and quantitative problem-solving skills
- Expertise in at least any of the two technical topics (vulnerability management, penetration testing, Active Directory security, red teaming, network security, Cloud security, embedded systems security, security architecture, security monitoring)
- Experience in SOC, SIEM, Ethical Hacking is nice to have of experience in IT security consulting, covering both defensive and offensive security domains
- Hacker mindset
What awaits you:
- Unique opportunity to join the world of cyber security in Hong Kong
- Diverse team of motivated Security Experts with people from many countries
- Opportunity to contribute to security research
- A wide range of benefits: discounts on ClassPass membership, private health insurance
- Annual company retreat (a week of working holiday, packed with fun, team building and knowledge sharing)
- Professional career development and internal training
- Competitive salaries
- Further education, training, and certificate opportunities
- Flexible home office
Apply now to join our team. We are looking forward to getting to know you!