home » careers

individuals wanted

Have you ever seen a careers page that told you anything beyond how great your new job will be and had some photos of smiling faces? Neither have we. Instead let’s start with our handbook; read that before you look at the jobs. Our handbook is our code; it sets the tone for everything we do.

with that out of the way..

If you are interested in joining our team (and it really is a team) then please see our current job openings. Also while we have requirements for specific skill-sets, we are also firm believers in the idea that talented people can do almost anything. So if you see a job listed, and it is not exactly specific to you, but you think you could apply yourself to do it, let us know.

one last thing

If you are looking to be an infosec celebrity this is probably not the place for you. Doing research and speaking at cons is fantastic, and we encourage it. However, we have a lot of work to do and our clients have high expectations of us. We don't do B.S. or showboating, so if having your name in lights is your goal, best to move along.

benefits

Flexible working hours

As long as your work gets done, when you do it is mostly up to you.

Be treated like an adult

We don't do "ice breakers", have a foosball table, beanbags, or try our best to patronize you. You are an adult, we don't stop you acting like one.

Competitive health packages

We offer a range of health and dental plans. OccamSec pays 80% for employees and 50% for their families.

Employee referal bonus program

If you recommend someone for a job and we hire them, we give you a bonus.

Maternity and parental leave.

24 weeks paid maternity leave (after 1 year), 6 weeks of paid parental leave.

Training

Attend conferences, have access to a wealth of online courses and books.

Paid, flexible vacation

Time off is important, everyone gets at least four weeks paid vacation time plus quiet times (such as in late December when everyone basically gets the week off).

401k Plan

OccamSec makes a 3% contribution for everyone, regadless of whether or not you also want to contribute.

Life Insurance

It's always good to have some, we give you it.

current openings

New York, London (can be remote)

We are looking for security-focused pentesters, engineers, architects, and researchers to join our team. Job duties will include penetration testing, security analysis, security architecture and design, and research into current technologies and attacks.

Responsibilities:

A  Security Consultant must have (or develop) the experience, technical skill, consulting finesse, and management skills required to deliver a broad variety of technically demanding projects. This role may be appropriate for new hires with extensive self study, or who show an ability to learn. Otherwise it will generally be for those with  a history of effectively delivering software or hardware security projects.

Depending on level, consultants may be expected to act as technical lead on projects and to focus on developing skills needed to continue deliver high-quality projects, help colleagues at OccamSec through the act of mentoring, and exhibit technical prowess via research and tool development.

Some travel may be required, although much of our work can be delivered remotely. We also  monitor travel so that no one spends too much time on the road, our goal is to ensure no one gets burnt out.

Desired Experience / Skills:

The following technical skills are important for being successful in this role.

  • Web application and web service testing.
  • Network infrastructure penetration testing.
  • Mobile application security testing (Android and iOS).
  • Able to perform security-focused code review in 2+ programming languages.
  • Familiarity with secure configuration of Windows, Linux and MacOS systems.
  • Familiar with cloud platforms such as AWS, Azure and Google Cloud Platform.
  • Familiar with OS internals, virtualization or container technologies.
  • Able to guide clients through secure design methodologies such as threat modelling, and attack surface enumeration
  • Knowledge of hardware and embedded system security.
  • Familiarity with cryptography.
  • Detailed knowledge of bootloaders, operating systems and drivers.
  • Ability to perform black-box reverse engineering.

Personal Qualities:

  • Excellent spoken and written communication skills.
  • High-level of professionalism.
  • Outstanding attention to detail.
  • Self-motivated and a demonstrated self-starter.
  • Highly dependable.
  • Willingness to travel.

New York, Texas, London  (can be remote)

We are looking for creative thinkers, with analytical ability, who can think on their feet. Languages are always a plus as is the ability to get to the point quickly. We believe there is a difference between data and intelligence, our work is to is to effectively discern between the two.

Responsibilities:

  • Research and analyze content.
  • Assist with data collection activities.
  • Produce concise, written analysis and visual presentation of findings.
  • Quickly understand and deliver on company and customer requirements.
  • Write tactical and strategic assessments under deadlines.
  • Experience with information security, network security, or computer network operations.
  • Understanding of emerging cyber threats.

Some travel may be required, although much of our work can be delivered remotely. We also monitor travel so that no one spends too much time on the road, our goal is to ensure no one gets burnt out.

Required Experience / Skills:

  • Advanced understanding of cyber slang and the workings of the cyber underground economy.
  • Operate semi-autonomously to conduct collection, create solutions and support intelligence production per the standard operating procedures, with minimal guidance from your supervisors.
  • Experience refining source information and raw data into intelligence products.
  • Experience in a cyber threat intelligence organization to include military, intelligence community or commercial.

Personal Qualities:

  • Excellent spoken and written communication skills.
  • High-level of professionalism.
  • Outstanding attention to detail.
  • Self-motivated and a demonstrated self-starter.
  • Highly dependable.
  • Willingness to travel.

New York

OccamSec is looking for a project manager who can be responsible for delivering projects to our clients. You will work alongside our technical teams and be responsible for managing communications with clients and the project timeline, budget, scope and quality.

You also have a desire to learn about information security, since we believe you will need an understanding of what we do in order to manage projects effectively.

Responsibilities:

  • Manage projects of various sizes concurrently.
  • Coordinate with clients on scheduling.
  • Prepare clients to complete technical pre-requisites before projects start.
  • Work with technical personnel to create a project plan with clear success criteria, review the plan with clients, agree on risk and mitigation plan, then execute.
  • Enforce change control process to avoid scope creep.
  • Track tasks daily and provide a weekly report to clients and partners.
  • Proper project closing with clients.
  • Work with our team to continuously improve process.

Required Experience / Skills:

  • Minimum 3 years of project management experience.
  • Ability to manage multiple fast paced projects .
  • Must be able to independently conduct all customer meetings.
  • Stellar project management soft skills – able to identify stakeholders, set expectations, and communicate clearly at multiple levels.
  • Experience in information security highly desired.
  • Wiling to travel.
  • PMP desired.

Personal Qualities:

  • Excellent spoken and written communication skills.
  • High-level of professionalism.
  • Outstanding attention to detail.
  • Self-motivated and a demonstrated self-starter.
  • Highly dependable.
  • Willingness to travel.

New York, London

We're of the view that most machine learning and "A.I." is nothing of the sort. Sure, there's some cool stuff that can be done, but A.I.? So you are someone who wants to work on something new in the information security world, with a background in designing and implementing machine learning systems.

Responsibilities:

Being part of our team working on solving some interesting problems. You will be expected to provide ideas and insights across a range of issues we are focused on solving, therefore a willingness to speak up and question ideas is vital.

Required Experience / Skills:

  • Foundation in statistics and probability.
  • Ability to code in either python or OCaml.
  • Understanding of linear models, decision trees and neural networks.
  • Experience with tools/frameworks such as scikit-learn, tensorflow, Keras etc.
  • Maybe some experience with natural language processing, graph theory or algorithm design.

Personal Qualities:

  • Excellent spoken and written communication skills.
  • High-level of professionalism.
  • Outstanding attention to detail.
  • Self-motivated and a demonstrated self-starter.
  • Highly dependable.
  • Willingness to travel.