Reports to: Offensive Security Manager 

About Educate 360 

Educate 360 is a family of specialized training brands with a joint mission: to help individuals and organizations gain the skills needed to thrive in today’s technology-led and innovation-driven economy. Educate 360 develops integrated solutions across brands to achieve enterprise customers’ learning & development goals in Management & Leadership, Data Science, and IT skills through instructor-led training, coaching, consulting, and certification preparation.  

Role Summary 

TCM Security is hiring a Senior Offensive Security Engineer to grow our penetration testing practice. The ideal candidate brings deep technical expertise, a passion for offensive security, and the ability to operate as a subject matter expert across multiple disciplines. 

• Have at least 3-5 years of offensive security, including but not limited to: 

        o Web application and API penetration testing (required) 

        o Mobile application penetration testing (required) 

        o External penetration testing (required) 

        o Internal penetration and wireless testing (required) 

        o Social engineering 

        o Cloud penetration testing and assessments 

        o AI penetration testing 

        o Red team engagements 

• Hold industry-standard penetration testing certifications such as PNPT, PWPP, PWPE, PMPA, OSCP, OSWE, BSCP, or other related certifications. 
• Demonstrate deep expertise in web application and API testing, and be able to perform code review assessments.  
• Lead client debrief calls for standard engagements, presenting findings and answering technical questions with confidence. 
• Serve as a primary point of contact for clients during active engagements, managing day-to-day communication and access coordination. 
• Participate in pre-sales calls, helping scope engagements and serve as a technical SME for prospective clients. 
• Contribute to report quality - providing input, review, and feedback on deliverables. 
• Conduct debrief reviews with clients, and serve as a senior on debrief calls for junior members and contractors.  
• Propose and take ownership of internal project initiatives. 
• Participate in the hiring process, including interviewing candidates. 
• Serve as a mentor to junior members on the team, as well as improve team documents, standard operating procedures, and methodologies. 
• Stay current on emerging attack vectors and share knowledge across the team. 

Additional Details 

• The successful candidate may specialize in a particular area or develop a specialty as they progress, such as Red Team operations, AI security, hardware/embedded systems, or other emerging disciplines. 
• CVE research and/or bug bounty experience is a plus. 
• Source code review experience is a plus.  
• Must be US-based. 

Why Educate 360? 

We believe that great ideas emerge when people collaborate in an environment where thoughts and perspectives can be freely shared. Effective teamwork happens when every member feels empowered, valued, and respected. We are committed to fostering a culture where everyone is accepted, included, and encouraged to contribute in meaningful ways.  

Benefits: We're committed to supporting our employees’ health, financial stability, and overall well-being. Our comprehensive benefits include competitive Paid Time Off (PTO), Medical, Dental, and Vision plans, 100% company-paid Life and Disability insurance, and a generous 401(k) matching program.  

Equal Opportunity Employer: Educate 360 is committed to providing equal employment opportunity for all persons regardless of race, color, religion, sex, age, marital status, national origin, citizenship status, disability, or veteran status.