Job Description
SRA’s mission is to level up every day to protect our clients and their customers. This begins with our team members and their experience. SRA prides itself on maintaining a culture where team members have a shared sense of support and belonging, consistent with our It’s Personal company value. At SRA, we prioritize transparent career pathing, varied DEI programming and community groups, competitive benefits including mental health support, and an emphasis on a sustainable, healthy, and engaging work culture. SRA has twice been named a Best Place to Work by the Philadelphia Business Journal.
These Essential Functions, Requirements, and Skills are guidelines. If you are a candidate who does not meet this exact job description but can demonstrate excellent organization, attention to detail, professionalism, flexibility, and self-direction in your professional background, we hope you apply. SRA values a diverse workplace and strongly encourages people of all backgrounds to apply.
Summary/Objective
This role is part of SRA’s Advisory Services team, with a focus on Purple Teams. The Senior Consultant will be responsible for leading and executing advanced purple team testing programs for Fortune 1000 companies. This role requires expertise in using the VECTR platform for managing and reporting on these exercises. The ideal candidate will have a strong background in cybersecurity, penetration testing, and incident response.
Essential Functions
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Lead Purple Team Exercises: Plan, execute, and manage purple team exercises to evaluate the effectiveness of security controls and improve the organization’s defensive capabilities.
VECTR Operations: Use the VECTR platform to document, track, and report on purple team activities. Ensure the platform is updated and maintained to reflect the latest testing methodologies and results.
Test Preparation and Execution: Oversee the preparation, execution, and reporting of purple test cases. Ensure all activities are documented and outcomes are communicated effectively.
Metrics and Reporting: Develop and track metrics for measuring test outcomes, including defense success metrics and trending over time to demonstrate improvements. Draft actionable observations and recommendations specific to client environments.
Collaboration: Work closely with internal SRA teams, including Red and Blue, to integrate findings from purple team exercises into continuous improvement processes for each client.
Client Interaction: Engage with clients to understand their security needs, provide insight into their tooling, and deliver top-tier customer service. Effectively communicate findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel.
Training and Development: Provide training and guidance to team members on purple team methodologies and the use of VECTR.
Research and Innovation: Use knowledge gained during purple team exercises to conduct research initiatives with the purpose of improving our services and giving back to the community.
Supervisory Responsibility
N/A
Work Environment
This job operates in a professional office environment or remotely as needed/required. This role routinely uses standard office equipment.
Physical Demands
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. While performing the duties of this job, the employee is regularly required to talk and hear; use hands to finger, handle, or feel; and reach with hands and arms. The employee frequently is required to stand and walk. This is a largely sedentary role.
Candidates with disabilities are encouraged to apply and email [email protected] with any questions. Reasonable accommodations may be made to enable disabled individuals to perform the essential functions of this role.
Position Type/Expected Hours of Work
This is a full-time position and hours of work and days are Monday through Friday 8:30am to 5pm. Occasional evening and weekend work may be required as job duties demand.
Travel
Willingness to travel is expected, including overnight travel to SRA HQ in Philadelphia, PA. This is a remote role but ideal for someone on the east coast of the U.S. and/or within commuting distance of Philadelphia.
Required Education and Experience
Punctuality and timely attendance to external client and internal stakeholder needs.
Bachelor’s degree in computer science, cybersecurity, information technology, or a related field OR equivalent experience.
Minimum of 3 years of experience in cybersecurity, with a focus on technical assessments, defensive toolsets, tabletop exercises, and incident response.
Strong understanding of red and purple team methodologies and best practices.
Excellent communication and reporting skills, with the ability to present complex technical information to non-technical stakeholders.
Preferred Qualifications and Experience
- Relevant certifications (e.g., OSCP, CRTO, CISSP) are a plus.
- Proficiency in using the VECTR platform for managing and reporting on purple team exercises.
Other Duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.
EEO Statement
Security Risk Advisors is an Equal Opportunity Employer and prohibits discrimination or harassment of any kind. All employment decisions at SRA are based on business needs, job requirements, and individual qualifications, without regard to race, color, sex, sexual orientation, gender identity or expression, age, religion, national origin, disability, marital or family status, veteran status, medical condition, or any similar category protected under federal, state, or local laws.
Work with Experts: Robust internal training program, plus Company-paid external training. SRA recognizes the value of professional development for employees. Therefore, we encourage our employees to pursue continuing education and role-specific training. Every SRA employee is eligible to attend one training per year paid for by SRA.
Mental Health Services: SRA has partnered with BetterHelp to provide SRA employees with free mental health support. BetterHelp connects individuals with licensed therapists for chat, video, and phone sessions.
Medical / Dental / Other (regular full-time employees only)
Generous medical, dental, and vision benefits at different price points.
Company-paid disability and life insurance.
Company 401(k) plan including annual 3% safe harbor contribution.
Free patient advocacy service that helps find care providers and resolve insurance queries.
Free financial advising.
Generous parental leave, sick leave, and vacation policies.
Possibility to work remotely or with a flexible schedule when needed and approved.
Company-paid cell phone with discounted accessories.
1-2-3 Give Program: 1. SRA will give $1,000 to a charity of your choice. 2. If you give an additional amount (up to $1,000), then 3. SRA will match that amount up to $1,000.
Other discounted, employee-paid benefits including pet insurance, legal support, and voluntary life insurance.
(Subject to change)
