Simplify Logo

Full-Time

Senior Technical Account Manager

Federal, Penetration Testing

Confirmed live in the last 24 hours

Synack

Synack

201-500 employees

Continuous penetration testing and vulnerability assessment

Compensation Overview

$120k - $150k/yr

+ Equity + Benefits

Senior

No H1B Sponsorship

Washington, DC, USA

Candidates must be US citizens and have a Current Top Secret clearance with SCI Eligibility.

US Citizenship, US Top Secret Clearance Required

Category
Customer Success
Sales & Account Management
Required Skills
Risk Management
Requirements
  • Experience with vulnerability discovery management, risk management frameworks and associated business workflows, and remediation
  • Good to have experience with scripting languages (language independent) and developing scripted solutions to problems
  • A knack for explaining technical concepts to a non-technical audience
  • Good to have any relevant industry certifications in cybersecurity and/or security management such as, Security+, CISSP, CISA
  • Compliance and audit familiarity with PCI, ISO 27001, SOC 1, SOC 2
  • Excellent time management, multi-tasking, and prioritization skills as well as the ability to manage multiple concurrent projects
  • Candidates must be US citizens
  • Current Top Secret clearance with SCI Eligibility
Responsibilities
  • Develop the scope of penetration tests and guide researchers to effective testing
  • Use your consultative communication skills to gather requirements, understand customer needs, and influence internal stakeholders
  • Partner with internal stakeholders to determine, develop, and analyze the client’s assets, such as their digital attack surface and value at risk, their existing vulnerability programs, tools, and methods, and their security program, including requirements and goals
  • Work independently with little guidance and provide technical product expertise to build the appropriate solution for the client’s needs
  • Provide technical SME support to internal stakeholders and the client on their strategic goals and testing requirements.
Desired Qualifications
  • Good to have experience with scripting languages (language independent) and developing scripted solutions to problems
  • Good to have any relevant industry certifications in cybersecurity and/or security management such as, Security+, CISSP, CISA
Synack

Synack

View
Website

Synack provides a security testing platform focused on continuous penetration testing, which simulates cyber attacks to find vulnerabilities in computer systems. Their service is conducted by the Synack Red Team, a global team of skilled security researchers, covering areas like cloud services, APIs, and web applications. Unlike traditional one-time tests, Synack's approach allows for quick deployment and ongoing assessments, helping clients reduce risks over time. The goal is to help companies secure their digital assets against increasing cyber threats.

Company Size

201-500

Company Stage

Series D

Total Funding

$107.3M

Headquarters

Redwood City, California

Founded

2013

Simplify Jobs

Simplify's Take

What believers are saying

  • Increased demand for AI/LLM pentesting expands Synack's service offerings.
  • Integration into Google Cloud Marketplace broadens Synack's customer base.
  • Synack's app for Splunk enhances security insights with defensive monitoring.

What critics are saying

  • Complex AI/LLM applications introduce new vulnerabilities requiring specialized knowledge.
  • Rapid growth of API vulnerabilities demands additional focus and resources.
  • Expansion to Google Cloud Marketplace may expose Synack to new competitive pressures.

What makes Synack unique

  • Synack offers continuous pentesting, unlike traditional one-off tests.
  • Their Red Team consists of elite global security researchers.
  • Synack provides real-time, customizable reporting for complete visibility.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Flexible vacation policy

Company bonding & team events

Covered health plan benefits

Growth & Insights and Company News

Headcount

6 month growth

0%

1 year growth

0%

2 year growth

-3%
PR Newswire
Nov 19th, 2024
Owasp Reveals Updated 2025 Top 10 Risks For Llms, Announces New Llm Project Sponsorship Program And Inaugural Sponsors

List for 2025 expands on evolving challenges as new sponsorship program enables OWASP Top 10 for LLMs and Generative AI Project to continue its vital work. WILMINGTON, Del., Nov. 19, 2024 /PRNewswire/ -- The OWASP Foundation today announced an update to the OWASP Top 10 for LLM Applications and Generative AI Project. Additionally, the OWASP Top 10 for LLM Apps and GenAI Project announced its sponsorship program that will allow organizations to support the project directly, enabling access to additional funding and resources so the organization can continue to invest in research, guidance and education, thus helping keep the industry adopt AI and generative AI applications more securely. The updated Top 10 List for LLMs provides a refreshed resource addressing the top 10 risks, vulnerabilities and mitigations for developing and securing generative AI and large language model (LLM) applications across the development, deployment, and management lifecycle. These applications can include static prompt augmented applications, agentic applications, LLM extensions, and complex applications

PR Newswire
Oct 29th, 2024
Runway Growth Capital Named To Inc.'S 2024 Founder-Friendly Investors List

Runway's recognition highlights its unwavering support for entrepreneurs through minimally dilutive capital solutions. MENLO PARK, Calif., Oct. 29, 2024 /PRNewswire/ -- Runway Growth Capital LLC ("Runway"), a leading provider of growth loans to venture and non-venture-backed companies seeking an alternative to raising equity, is proud to announce its inclusion in Inc. Magazine's 2024 Founder-Friendly Investors list. This marks another significant achievement for the firm, reinforcing its reputation as a trusted financial partner dedicated to empowering entrepreneurs by offering capital solutions that allow founders to maintain ownership of their businesses. "It has been a complicated few years for growth companies and the companies that fund them," said Mike Hofman, editor-in-chief of Inc

Help Net Security
Aug 1st, 2024
Synack PTaaS platform offers complete security testing suite

Synack has unveiled additional capabilities of its Penetration Testing as a Service (PTaaS) platform that deliver a comprehensive security testing experience.

PR Newswire
Jun 20th, 2024
Zweiter Schwachstellen-Jahresbericht Von Synack Zeigt Anstieg Beim Schweregrad Sowie Fortschritte Bei Der Behebung

Der Bericht für 2024 enthält Aufschlüsselung nach Branchen sowie eine Analyse der SchwachstellenREDWOOD CITY, Kalifornien, 20. Juni 2024 /PRNewswire/ -- Synack, die führende Plattform für Sicherheitstests, hat heute ihren zweiten Jahresbericht „State of Vulnerabilities" veröffentlicht, der Hunderttausende Stunden von Penetrationstests und eine Analyse von über 14.000 ausnutzbaren Schwachstellen zusammenfasst, um einen klaren Überblick über Schweregrad, Umfang und Behebungstrends von Softwarefehlern in verschiedenen Branchen zu liefern.„Um intelligente Sicherheits- und Geschäftsentscheidungen treffen zu können, ist es wichtig, die Angriffsfläche zu verstehen und zu wissen, wie sich eine erfolgreiche Ausnutzung von Schwachstellen auf Ihr Unternehmen auswirken könnte", so Jay Kaplan, CEO und Mitbegründer von Synack. „Wir sind stolz darauf, die zweite Jahresausgabe des State of Vulnerabilities Report von Synack zu veröffentlichen, um Unternehmen in den Bereichen Gesundheitswesen, Finanzdienstleistungen, Bundesbehörden, Technologie und Fertigung dabei zu helfen, besser zu verstehen, mit welchen Schwachstellen sie konfrontiert sind und wie sie den Angreifern einen Schritt voraus sein können. Wir sehen viele Gründe, optimistisch zu sein, aber das bedeutet nicht, dass die Bedrohung abnimmt."Schwachstellen mit kritischem Schweregrad nehmen zu – Verbesserungen bei den BehebungszeitenDas Synack Red Team (SRT), eine Community der weltweit vertrauenswürdigsten und erfahrensten ethischen Hacker, hat herausgefunden, dass in allen Branchen der Anteil von Schwachstellen mit kritischem Schweregrad im Jahr 2023 höher liegt als im Jahr 2022, während der Anteil der Schwachstellen von hohem Schweregrad leicht zurückgeht. Trotz des zunehmenden Drucks auf die Sicherheitsteams konnten die Unternehmen die durchschnittliche Zeit bis zur Behebung von Schwachstellen mit kritischem Schweregrad um 24 Tage und von Schwachstellen mit hohem Schweregrad um 18 Tage auf 56 bzw. 74 Tage verkürzen.Der Bericht stellt jedoch fest, dass dieselben Kategorien von Schwachstellen Jahr für Jahr fortbestehen

PR Newswire
Jun 20th, 2024
Le Deuxième Rapport Annuel De Synack Sur L'État Des Vulnérabilités Révèle Une Augmentation De La Gravité Et Des Progrès En Matière De Remédiation

Le rapport 2024 comprend une analyse détaillée des vulnérabilités par secteur d'activité.REDWOOD CITY, Californie, le 20 juin 2024 /PRNewswire/ -- Synack, la principale plateforme de tests de sécurité, a publié aujourd'hui son deuxième rapport annuel sur l'état des vulnérabilités. Ce rapport combine des centaines de milliers d'heures de tests de pénétration et une analyse de plus de 14 000 vulnérabilités exploitables, offrant un aperçu direct de la gravité, du volume et des tendances de remédiation des failles logicielles dans différents secteurs.« Comprendre votre surface d'attaque et l'impact potentiel de l'exploitation des vulnérabilités sur votre organisation est crucial pour prendre des décisions éclairées en matière de sécurité et de gestion d'entreprise », a déclaré Jay Kaplan, PDG et co-fondateur de Synack. « Nous sommes fiers de publier le deuxième rapport annuel de Synack sur l'état des vulnérabilités pour aider les organisations des secteurs de la santé, des services financiers, du gouvernement fédéral, de la technologie et de la fabrication à comprendre les vulnérabilités auxquelles elles sont confrontées et comment elles peuvent rester une longueur d'avance sur les attaquants. Nous voyons de nombreuses raisons d'être optimistes, mais cela ne signifie pas que la menace diminue. »Augmentation des vulnérabilités de gravité critique, mais amélioration des délais de remédiationL'équipe Red Team (SRT) de Synack, une communauté des hackers éthiques les plus dignes de confiance et les plus qualifiés au monde, a découvert que, tous secteurs confondus, les clients ont connu une part plus élevée de vulnérabilités de gravité critique en 2023 par rapport à 2022, et une légère réduction des vulnérabilités de haute gravité. Malgré les pressions croissantes sur les équipes de sécurité, les organisations ont réduit leur temps moyen de remédiation pour les vulnérabilités de gravité critique de 24 jours et pour les vulnérabilités de haute gravité de 18 jours, atteignant respectivement 56 et 74 jours.Cependant, le rapport a identifié les mêmes catégories de vulnérabilités persistantes d'année en année, indiquant des menaces accrues liées aux failles d'injection, mises en évidence dans une récente alerte « Secure by Design » de la Cybersecurity and Infrastructure Security Agency