Reconix LogoReconix
Back to all openings
Offensive SecurityFull-timeBangkok, Thailand

Senior Cybersecurity Consultant

The tier CISOs ask for by name. Own complex engagements end to end on work that requires judgment and creativity beyond standard methodology.

Apply via [email protected]
About the Role

Own the hardest work end to end

Reconix's advanced squad is the tier CISOs ask for by name. You will own complex security engagements end to end, covering scoping, execution, reporting, and client readout, on work that requires judgment and creativity beyond standard methodology.

You will work across the eight attack surfaces the team covers: web, mobile, API, cloud, infrastructure, ATM, smart contract, and AI/LLM. Clients include D-SIB banks, SEC-licensed token issuers, OIC insurers, and enterprise accounts.

Responsibilities
Lead complex engagements across Red Team, adversarial simulation, cloud (AWS, Azure, GCP), mobile, OT/ICS, and smart contract
Scope engagements and write the technical sections of proposals independently
Deliver client-ready reports that are technically accurate, business-contextualized, and include an Executive Summary
Act as technical QA reviewer for mid-level and junior consultant reports
Mentor one to two consultants through structured guidance, not only by answering questions
Flag scope changes, timeline risks, and client concerns to the PM proactively
Contribute to the internal knowledge base by documenting new techniques and running at least one internal session per quarter
Identify natural upsell opportunities such as follow-on tests or remediation review, and flag them to Sales
Requirements
4+ years of penetration testing in a professional consulting or in-house security team
Hands-on experience in at least 3 of: web application, network and infrastructure, cloud, mobile, Red Team or adversarial simulation, OT/ICS, smart contract
Able to write and modify exploit code in Python, PowerShell, or equivalent
Holds at least one of OSCP, CRTE, CRTO, PNPT, BSCP, or an equivalent hands-on certification
Strong verbal and written English, capable of independently leading client kickoff and readout calls
Able to estimate project scope in mandays from first principles
Not Required, But Valued
Published CVEs, CTF placements, conference talks, or public research
Experience pricing or scoping engagements commercially
6 Months

What success looks like

Running two concurrent engagements without PM escalation
Reports released to clients needing only minor PM formatting review
At least one junior consultant visibly more capable because of your input

Apply for this role

Send a resume in PDF, the role title in the subject line, and two to three sentences on why Reconix specifically. Optional but valued: CTF handle, HackTheBox or TryHackMe profile, GitHub, writeup link, or disclosed CVE.

[email protected]