• Serve as the first point of contact for customer issues via email, chat, or phone. • Troubleshoot and resolve basic technical issues using documentation and internal tools. • Record and track support issues in our ticketing system with clarity and precision. • Collaborate with engineering and security teams to escalate unresolved issues. • Contribute to user guides and help documentation for common support queries. • Continuously learn and apply knowledge of cybersecurity and threat detection. • Monitor, identify, and document phishing websites, fake domains, and impersonation profiles on social media platforms. • Initiate and manage takedown requests across hosting providers, registrars, and platforms. • Provide timely follow-ups and status updates to internal teams and stakeholders. • Assist in building and maintaining playbooks, SOPs, and threat feeds relevant to brand abuse. • As a member of the comanaged services team, monitor alerts and incidents generated on the CloudSEK portal. • Conduct initial triage and classification of potential threats. • Document response steps and escalate incidents as per defined protocols. • Stay updated with the latest cyber threats, TTPs, and security advisories. • Apply AI prompt engineering techniques to improve efficiency in threat detection and knowledge handling.

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk. Brief Description GuidePoint Security’s Continuous Security Validation (CSV) offerings combine the benefits of the latest in continuous attack simulation technology with our seasoned team of expert penetration testers and red teamers. As an Attack Simulation Engineer, you will be tasked with the effective operation of industry-leading automated penetration testing platforms to ensure our clients benefit from our unique approach. Additionally, you will identify and validate vulnerability at speed and scale to assist our clients in making meaningful and measurable improvements in their risk posture. Description As an Attack Simulation Engineer, you will be a technically adept and reliable team member who leverages your knowledge, skills, and experience to deliver exceptional results to clients for all of the Practice’s professional service offerings and assist with shaping the future of the practice. Your primary responsibilities revolve around performing challenging and complex assessments, mentoring less experienced team members, contributing to the practice’s growth and improvement, assist with pre-sales activities, and assisting with evaluating and onboarding new technologies that may be added to the Practice. As an Attack Simulation Engineer, you are encouraged to interact with the CSV Leadership Team and contribute to the Practice’s future success. GuidePoint Security’s Continuous Security Validation offering operates in perpetuity in response to emerging threats and diverse client needs. Your creativity and expertise will assist the Practice by adapting to this rapidly changing environment. Role Requirements - Deliver CSV services, including, but not limited to Continual and Coordinated penetration testing, Automated Assessments, Hybrid Assessments, Automated Remote Social Engineering Assessments, and Breach & Attack Simulation Assessments - Assist with technical oversight/quality assurance of CSV assessments as needed - Author comprehensive assessment deliverables that are proficiently tailored to both technical and managerial audiences and fully detail the technical execution, core deficiencies, business impact, and realistic remediation strategies - Contribute to marketing initiatives via activities such as publishing research, speaking at industry conferences, authoring blog articles and whitepapers, hosting webinars, and developing security tools - Perpetually strengthen relevant skills, knowledge, and abilities to stay at the forefront of the information security industry - Assist in the pre-sales process for both the services and the tools we support, attending and performing demos as required - Foster strong client relationships and represent GuidePoint well by providing interactive and collaborative support, information, and guidance to ensure delivery of maximum value - Serve as a Subject Matter Expert over one of the Practice’s main offering areas (Remote Social Engineering, Automated Penetration Testing, or Breach & Attack Simulation), including maintaining vendor certifications as they are available - Serve as an escalation point for abnormal findings, properly triage, and escalate as needed - Maintain situational awareness of the client's technology architecture, known weaknesses, solutions used for monitoring and threat intelligence, and any recent security events - Ensure that identified vulnerabilities are promptly validated and thoroughly investigated - Devise and document new procedures and runbooks/playbooks as directed - Maintain established Service Level Agreements (SLAs) - Attend GuidePoint GPSEC conferences as necessary to meet with account executives and clients regarding our services Education, Credentials, and Experience - Familiarity with offensive security tools used for network, host and application security testing - Experience in security technologies such as automated penetration testing tools, Breach & Attack Simulation Tools, Security Information and Event Management (SIEM), IDS/IPS, Data Loss Prevention (DLP), Proxy, Web Application Firewall (WAF), Endpoint Detection and Response (EDR), Anti-Virus, Sandboxing, network- and host-based firewalls, Threat Intelligence, Virtual Machines, etc. - Advanced knowledge of at least one security tool from within the following domains: Automated Penetration Testing and Breach & Attack Simulation (i.e. Horizon3, Pentera, SafeBreach, Picus, etc…) - Experienced in client delivery for high-profile clients (i.e. Fortune 100) with utmost professionalism - Pentest+ Certification or equivalent, and in pursuit of OSCP (or other lab-based certification) - Internal security operations experience is strongly preferred - InfoSec community involvement, such as conference speaking, blog/whitepaper authoring, and podcast speaking/producing experience is strongly preferred - Minimum of two (2) years of experience in security operations - Minimum of one (1) year of experience in performing continual and coordinated penetration testing - Minimum of four (4) years working in an IT or IT Security environment Knowledge, Skills, and Abilities Technical - Assess network security postures for enterprise-level infrastructures by utilizing industry-standard approaches for conducting vulnerability assessments and penetration testing - Possess in-depth knowledge of formal assessment methodologies, as well as when to use intuition to creatively deviate from established processes - Identify common vulnerabilities through the use of automated tools and practical analysis - Identify obscure vulnerabilities by leveraging your expertise through manual analysis - Perform safe and reliable exploitation (to the extent possible) for exploitable vulnerabilities - Understand network, operating system, and application-based detective and preventative controls and evade and/or circumvent such controls effectively - Quickly and efficiently perform post-exploitation activities to demonstrate the impact of compromise - Knowledge of common open-source tools, such as Nmap, Metasploit, and the Kali Linux Suite (or equivalent) - Proficient with scripting languages, such as Ruby, Python, Bash, PowerShell, etc. - Proven ability to write code to solve problems and automate tedious and time-consuming tasks during assessments - Proficiency with web application attacks (e.g., OWASP Top 10) is strongly preferred - Understanding of modern cloud architectures and common cloud service provider services and offerings - Possess a solid understanding of TCP/IP, networking technologies, network segmentation, and vendor-specific technologies, such as Cisco and Juniper - Possess a solid understanding of firewall concepts and vendor-specific technologies, such as Cisco, Palo Alto, and Checkpoint - Possess a solid understanding of operating systems, such as Microsoft, Linux, and various Unix variants - Desire to initiate and conduct research projects - Familiarity with automation tools such as Ansible Business/Professional - Strong overall practice knowledge and problem-solving abilities (i.e., ability to handle tricky client/project situations with little to no assistance) - Ability to think outside the box when presented with complex problems - Contributions to the information security community are strongly preferred, such as conference speaking, blog articles/white papers, and/or podcasts. - Prizes continuous improvement and desires to aid with practice development as much as personal growth - Possess a desire to mentor and manage other team members and have a passion for sharing knowledge - Ability to professionally interact with clients and maintain composure while resolving difficult situations - Self-motivated and able to work independently, as well as being a reliable addition to team projects - Ability to effectively multitask and efficiently manage time when simultaneously working on multiple projects - Possess a firm understanding of the concept of risk as it relates to a business - Strong verbal communication skills include clearly articulating thoughts, being persuasive, and delivering presentations and training to technical audiences and all management levels - Excellent written communication skills for preparing formal deliverables, performing quality assurance reviews, and technical oversight for peers, proposals, training content, and white papers/blog articles - Comfortable interacting with executive management and conveying technical findings in an appropriate business context We use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application. Why GuidePoint? GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1,200 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 6,200 customers. Firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity. This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation. Some added perks…. - Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions) - Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options) - Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans - 12 corporate holidays and a Flexible Time Off (FTO) program - Healthy mobile phone and home internet allowance - Eligibility for retirement plan after 2 months at open enrollment - Pet Benefit Option

• Design and automate controls, detection mechanisms, and tooling to improve the Information Security of Algolia’s infrastructure and products • Research, evaluate, and recommend new Information Security technologies, techniques, and frameworks • Design, implement, and maintain information security monitoring and remediation systems that move the needle in protecting Algolia’s customers’ data, and protecting Algolia’s systems and data • Partner with engineering and product teams to integrate Information Security into new features, systems, and development pipelines • Contribute to improving Information Security standards, processes, and best practices across the company • Conduct Information Security risk assessments and threat models of core systems, services, and third-party vendors (this does not include answering customer third-party risk assessment questionnaires). • Participate in and sometimes lead Information Security incident response activities and post-incident analysis • Support ongoing and emerging Information Security and compliance initiatives (e.g., SOC 2, Type II, ISO 27001, C5, GDPR) • Manage and enhance Algolia’s public bug bounty and vulnerability disclosure programs

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description At Algolia, Information Security is built into everything we do. It is not an afterthought; it’s a core design and operational principle. Our Information Security team ensures that trust, privacy, and resilience are embedded throughout our infrastructure, products, and internal processes. As Algolia continues to expand globally, we are growing our Information Security team to match that scale. We are seeking a North-American based, pragmatic, technically strong, and collaborative information security engineer to strengthen our Information Security posture and enable the company to innovate securely and confidently. What You’ll Do - Design and automate controls, detection mechanisms, and tooling to improve the Information Security of Algolia’s infrastructure and products - Research, evaluate, and recommend new Information Security technologies, techniques, and frameworks - Design, implement, and maintain information security monitoring and remediation systems that protect Algolia’s customers’ data, and Algolia’s systems and data - Partner with engineering and product teams to integrate Information Security into new features, systems, and development pipelines - Contribute to improving Information Security standards, processes, and best practices across the company - Conduct Information Security risk assessments and threat models of core systems, services, and third-party vendors - Participate in and sometimes lead Information Security incident response activities and post-incident analysis - Support ongoing and emerging Information Security and compliance initiatives (e.g., SOC 2, Type II, ISO 27001, C5, GDPR) - Manage and enhance Algolia’s public bug bounty and vulnerability disclosure programs Qualifications - 3–6 years of experience in Information Security engineering, infrastructure protection, or related technical domains - Strong understanding of Information Security principles for modern cloud environments (AWS, GCP, or Azure) - Strong understanding of, comfort with, and at least three years of experience in operating, configuring, and managing log management / SIEM, threat detection and posture management, endpoint detection and response, SAST, SOAR, and other information security systems - Knowledge of common internet Information Security threats, attack vectors, and mitigation strategies - Proficiency in scripting or automation with at least one language (Python, Bash, Go, or similar) - Solid understanding of computer systems, networks, and low-level protocols from an Information Security perspective - Experience in incident detection, response, and vulnerability management - Excellent communication skills, with the ability to explain Information Security risks and concepts to both technical and non-technical audiences - Full professional proficiency in English Requirements - Experience scaling Information Security programs in high-growth SaaS organizations (10,000+ customers, $50–200M ARR range) - Cloud-specific Information Security certifications or equivalent training (e.g., AWS Security Specialty, GCP Professional Security Engineer) - Experience with complex secrets management systems such as Hashicorp Vault - Experience contributing to Information Security communities, such as bug bounty triage, open-source security tools, or Capture the Flag events - Background in privacy engineering, threat modeling, or secure software design Benefits - A culture that values continuous learning, curiosity, and collaboration in Information Security - A global, remote-friendly team that treats Information Security as an enabler of innovation - Opportunities to make a measurable impact on the Information Security of systems used by millions of end users - Ongoing professional development and support as the Information Security landscape evolves Company Description Algolia is an Equal Opportunity Employer and does not discriminate on the basis of race, color, religion, sex, age, national origin, military status, veteran status, disability status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. The annual base salary compensation range for this role reflects US market pay data within this location. The exact compensation offered for this role may vary depending on specific location and job-related knowledge, technical skills, and experience; and is only one part of our Total Rewards philosophy to compensate and recognize employees for their work. Algolia’s flexible workplace model is designed to empower all Algolians to fulfill our mission to power search and discovery with ease. We place an emphasis on an individual’s impact, contribution, and output, over their physical location. We have a global presence with offices in Paris, NYC, London, Sydney and Bucharest, however we also offer many of our team members the option to work remotely either as fully remote or hybrid-remote employees.