Lead Senior Security Analyst

At Sensiba, we're more than just a Top 75 Accounting Firm - we're a purpose-driven organization committed to making a meaningful impact for our clients, our people, and our communities. Recognized as a Top Workplace USA, we're proud of our culture of exceptional employee engagement, collaboration, and continuous growth.

We help clients solve problems, navigate complexity, and build a foundation for sustainable success. Whether supporting fast-growing startups or established enterprises, we bring deep expertise and a people-first approach to every engagement.

In 2018, Sensiba became a certified B Corporation (B Corp) - a designation that reflects our commitment to using business as a force for good. This certification holds us accountable to high standards of social and environmental performance, transparency, and ethical governance. It's not just a badge - it's a reflection of how we operate, make decisions, and support our stakeholders.

Summary:

The Lead Senior Security Analyst will work directly with clients across various industries to lead and perform hands-on technical security assessments, identify vulnerabilities, and support retesting. This role focuses on uncovering and exploiting weaknesses in systems, applications, and networks. The Lead Senior Security Analyst will conduct penetration tests, collaborate closely with client teams to interpret findings, and answer questions that may arise. This role will utilize strong, professional communication skills with to deliver timely, clear updates and recommendations to clients. Additionally, the analyst will leverage coding expertise to think like an attacker and develop custom testing tools or scripts as needed.

Job Responsibilities:

• Plan, lead, and execute penetration testing engagements across a variety of environments, including networks, web applications, cloud environments, infrastructure, APIs and mobile applications.
• Simulate real-world attacks to uncover security weaknesses and provide actionable recommendations.
• Write custom scripts, tools, or proof-of-concept exploits as needed during assessments.
• Analyze and report vulnerabilities using industry-standard methodologies (e.g., OWASP, MITRE ATT&CK).
• Develop high-quality deliverables, including technical risk assessments and executive reports tailored to client audiences.
• Collaborate with clients to provide post-assessment guidance and recommendations to reduce risk and improve security posture.
• Actively participate in client meetings and presentations.
• Lead red team/blue team exercises and threat modeling activities.
• Stay current with emerging threats, techniques, and offensive tools to continuously improve service offerings.
• Contribute to internal knowledge sharing, methodology refinement, and the development of reusable tools/scripts for testing.
• Lead the development and improvement of internal testing methodologies, checklists, and procedures.
• Assist sales and business developments for service line growth, scoping calls, etc.
• Provide mentorship to less experienced individuals on the team.

Qualifications:

• Bachelor's degree or equivalent combination of education and experience is required (Bachelor's degree in Computer Science, Information Security, or related field is preferred).
• 3+ years of experience performing penetration testing and/or defensive security operations.
• 5+ years of experience in cybersecurity, offense security, consulting or software development roles.
• Experience with scripting or programming languages (Java, Python, BASH, Perl, Ruby, etc).
• Experience working in public accounting or similar consulting environment is preferred.
• Exposure to DevSecOps practices and CI/CD pipeline security is a preferred.
• Proficiency with penetration testing tools (e.g., Burp Suite, Metasploit, Nmap, Wireshark).
• Proficiency with defensive technologies (e.g., SIEM platforms, EDR solutions, firewalls, IDS/IPS) is a plus.
• Relevant certifications such as OSCP, GPEN, GWAPT, CEH, or CISSP is a preferred.

Compensation & Benefits:

This role offers a competitive base salary along with a comprehensive benefits package. The anticipated salary ranges for this position are outlined below and are subject to change:

• $105,000 - $140,000

When determining compensation, we consider a variety of factors such as a candidate's professional experience, skills, and qualifications. Please note that final offer amounts may vary from the ranges listed above and may be adjusted over time.

There are many reasons to join the Sensiba team: generous benefits, competitive compensation, professional advancement opportunities, and above all - our people. If you're looking for an environment that offers you growth, success, and professionalism without compromising your family, passions, and life outside of work, apply today!

Sensiba has a robust offering of benefits, including:

• Comprehensive Health Coverage - Medical, dental, and vision.
• Retirement & Financial Planning Support - 401(k) with match, financial wellness programs.
• Generous Paid Time Off - Vacation, sick time, holidays, and volunteer days.
• Flexible Work Arrangements - Hybrid or remote options, flexible hours.
• Performance-Based Bonus - Recognition for your contributions through discretionary bonuses.
• Professional Development Opportunities - Tuition reimbursement, certifications, mentorship.
• Career Growth & Internal Mobility - Clear paths for advancement and role transitions.
• Inclusive & Supportive Culture - DEI initiatives, employee resource groups, wellness programs.

At Sensiba, we believe that diversity drives innovation. We provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, Sensiba complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

Sensiba expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of Sensiba employees to perform their job duties may result in discipline up to and including discharge.