Back to Job Search

Senior Security Consultant (Information and Technology)

Award-winning executive recruitment company, Monroe Consulting Group, is recruiting on behalf of a leading cybersecurity consulting and services firm. Our esteemed client specializes in providing comprehensive security assessment and advisory services, including penetration testing, vulnerability management, and secure code reviews, to help organizations strengthen their digital resilience.

The Senior Security Consultant will be responsible for leading and executing end-to-end security assessment projects, including penetration testing, vulnerability assessments, and source code reviews across various platforms such as web, mobile, and desktop applications, APIs, cloud environments, and enterprise networks. This role involves managing client engagements, developing detailed security assessment reports, and providing expert recommendations to address identified risks. The successful candidate will act as a trusted advisor to clients, delivering high-quality consulting on remediation strategies while staying up to date with emerging cybersecurity threats, tools, and techniques.

Job Responsibilities

  • Oversee and manage end-to-end security assessment engagements.

  • Perform comprehensive security evaluations - including penetration testing, vulnerability assessments, and source code reviews - across diverse systems such as web, mobile, and desktop applications; APIs; cloud-based platforms; and both external and internal networks (Windows Active Directory environments), in alignment with recognized industry standards and best practices.

  • Develop detailed security assessment reports and supporting documentation, and effectively communicate findings and recommendations to clients.

  • Advise clients on remediation strategies to address identified security vulnerabilities.

  • Conduct ad-hoc research on emerging security threats and vulnerabilities to enhance assessment methodologies.

Job Requirements

  • Solid understanding of application security principles and best practices.

  • Proficient in at least one programming or scripting language.

  • Excellent verbal and written communication skills in both Thai and English.

  • Strong analytical thinking, problem-solving, and independent research abilities.

  • Capable of working effectively both independently and collaboratively within a team.

  • Highly motivated to continuously learn and stay current with emerging cybersecurity threats and offensive techniques.

  • Possession of hands-on offensive security certifications such as OSCP, OSWE, or OSCE is required.

  • Proven achievements in cybersecurity competitions are considered an advantage.

  • Experience in vulnerability research or participation in bug bounty programs is preferred.

  • Active involvement in cybersecurity training platforms (e.g., Hack The Box) is an added plus.