Key Responsibilities
Strategic Leadership
  • Develop and execute a comprehensive strategy to expand the penetration testing business unit's capabilities, market presence, and profitability.
  • Drive innovation by implementing emerging technologies and methodologies to stay ahead of the threat landscape.
  • Position the business unit as an industry thought leader through publications, speaking engagements, and partnerships.
Service Delivery Excellence
  • Oversee the delivery of high-quality penetration testing services across various domains, including network, application, cloud, Red Teaming, and Ransomware simulations.
  • Establish and enforce rigorous quality assurance standards to ensure customer satisfaction and regulatory compliance.
  • Address complex client challenges and provide strategic recommendations for risk mitigation.
  • Maintain SISA's Brand Promises
Business Growth
  • Collaborate with the sales and marketing teams to identify and pursue new business opportunities.
  • Build strong client relationships to ensure retention, satisfaction, and referrals.
  • Identify market trends and customer needs to develop tailored service offerings.
Team Development
  • Recruit, mentor, and lead a team of cybersecurity experts, including penetration testers and consultants.
  • Foster a culture of collaboration, innovation, and continuous learning.
  • Provide training and development opportunities to ensure the team remains at the forefront of industry advancements.
Thought Leadership
  • Contribute to the broader cybersecurity community through white papers, webinars, and industry conferences.
  • Serve as a trusted advisor to clients, providing insights into emerging threats and best practices.
  • Advocate for security awareness and proactive risk management across industries.
Qualifications
  • Minimum of 15 years of experience in cybersecurity, with at least 10 years in penetration testing and 3 years in a leadership role.
  • Strong expertise in penetration testing methodologies (e.g., OWASP, NIST, MITRE ATT&CK) and tools (e.g., Burp Suite, Metasploit, Kali Linux).
  • Proven track record of scaling and managing profitable cybersecurity services or business units.
  • Deep understanding of compliance standards (e.g., ISO 27001, PCI DSS, GDPR, SOC 2).
  • Industry certifications such as OSCP, OSCE, CISSP, CEH, or equivalent are highly desirable.
  • Exceptional communication skills, with experience presenting to executive stakeholders and industry forums.
  • Strong business acumen and ability to align technical services with strategic goals.

View all job openings