Job Title: Pre-Sales Solutions Engineer, Offensive Security
Location: Bengaluru
EC-Council is the world’s largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 400,000 information security professionals globally that have influenced the cyber security mindset of countless organizations worldwide.
Visit us on www.eccouncil.org
EC-Council has partnered with FireCompass, a leading AI-powered offensive security platform. This opportunity is for a Presales Security Consultant role that will be aligned with and work directly alongside the FireCompass team, supporting customer engagements, solution demonstrations, and technical presales activities.
Visit Firecompass at https://firecompass.com/
About the Opportunity
FireCompass is growing its U.S. channel motion — run from Bangalore. This is an early-career seat for someone who wants to launch a high-impact career in channel and partnerships within cybersecurity, working U.S. hours with direct access to founders and senior sellers.
You’ll start by supporting partner onboarding, enablement, and coordination, and grow into managing your own set of U.S. partners. If you’re hungry, coachable, technically curious, and excited by a zero-to-one environment, this is your seat at the table.
Fire Compass is an Agentic AI platform for autonomous penetration testing and red teaming across Web, API and infrastructure. It discovers shadow assets and web applications, safely validates what is exploitable, and connects findings into multi-stage attack paths with near-zero false positives. Unlike traditional scanners, it discovers credential reuse, business-logic flaws, privilege escalation, and app-to-app or app-to-network lateral movement. It can operate autonomously or with expert-in-the-loop validation.
Why FireCompass?
- $20M Series A, backed by global cybersecurity leaders.
- Gartner Hype Cycle Leader for 4 consecutive years — featured in CART and ASM categories.
- Visionary Founders: Serial entrepreneur with multiple exits to NASDAQ-listed companies, Fortune 40-Under-40 honoree, RSA & TEDx speaker, and founder of CISO Platform, one of the world’s largest cybersecurity communities with 40,000+members. Our leadership team has held key roles at British Telecom, Tech Mahindra, Synopsys, MetricStream, Capgemini, IBM, and more.
- Award-Winning Innovation & Patents: Selected for the RSAC Innovation Showcase (US)and honored with the NASSCOM Emerge 50 award. Our platform is backed by multiple granted patents.
- Security Research Legacy: Teams that discovered critical CVEs in Microsoft, Intel, HP, broke BitLocker, and presented at DEF CON.
- Fortune 500 Customers: Trusted by Fortune 500 and Global 2000 clients across North America, the Middle East, and Asia.
- Media Spotlight & Book Features: Featured on national TV (CNBC TV18), in the Economic Times, Dark Reading, Security Magazine, and more. Covered in books such as The Game Changers, Silicon Dragon, and Startup Asia.
- Category-defining, patented technology trusted by some of the most targeted enterprises in the world.
- Direct access to leadership and a real say in how we sell.
- High ownership, structured mentorship, and a clear path to grow into a full-cycle AE.
Role Mission
You will be the technical owner of enterprise pre-sales engagements for FireCompass.
You will work with account teams, security leaders, AppSec teams, red teams, infrastructure teams, risk teams, and partners to translate customer problems into clear solution value, controlled POCs, technical proposals, and successful sales outcomes.
You must be credible with practitioners, clear with executives, rigorous with scope, and sharp in competitive positioning.
Offensive Security & Solution Expertise
Own technical discovery for enterprise opportunities across Web, API, infrastructure, ASM, CART, penetration testing, and red-team validation use cases.
Design and run controlled POCs with clear scope, success criteria, rules of engagement, exclusions, safety boundaries, test windows, credentials, and expected outcomes
Demonstrate FireCompass capabilities across asset discovery, shadow asset identification, Web/API testing, exploit validation, evidence review, attack-path analysis, reporting, and remediation workflows.
Explain the difference between vulnerability detection, exploit validation, attack simulation, exposure management, BAS, DAST, PTaaS, manual pentesting, and autonomous penetration testing.
Handle technical objections around false positives, false negatives, probabilistic coverage, production safety, scope limitations, repeatability, and evidence quality.
Understand and explain Web and API security issues including authentication flaws, authorisation bypass, business-logic vulnerabilities, credential reuse, privilege escalation, broken access control, insecure APIs, and app-to-infrastructure attack paths.
Engage confidently on OWASP Top 10, OWASP API Top 10, MITRE ATT&CK, PTES, red-team methodology, vulnerability management, and enterprise security validation practices.
Address enterprise requirements around deployment model, data residency, privacy, auditability, access control, integrations, reporting, and governance.
Support integrations and workflow discussions involving Jira, ServiceNow, SIEM, EDR, vulnerability management platforms, ticketing systems, and security reporting processes.
Explain how AI-assisted offensive security can be controlled, bounded, audited, and safely used in enterprise environments.
Prepare technical proposals, solution notes, POC plans, RFP/RFI responses, architecture inputs, executive summaries, and technical debriefs.
Provide structured feedback to product and engineering based on customer objections, competitive gaps, POC outcomes, and recurring field requirements.
Customer Leadership
Operate independently in complex enterprise sales cycles without needing constant technical supervision.
Communicate with equal credibility to CISOs, AppSec engineers, red teams, SOC teams, infrastructure teams, procurement, compliance, and risk stakeholders.
Convert complex offensive security concepts into clear business and technical narratives.
Maintain strong discipline in POC scoping, customer expectation management, evidence interpretation, and post-POC debriefs.
Stay calm and precise under customer challenge, especially when defending autonomous testing, AI-led workflows, exploit validation, and platform limitations.
Write clearly and concisely for technical, executive, and procurement audiences.
Build trust with customers by being technically honest, commercially aware, and outcome-focused.
Collaborate closely with sales, product, engineering, delivery, and partner teams without creating ambiguity in ownership.
Show curiosity, field intensity, and willingness to learn fast in a category that is still being defined.
Represent FireCompass with maturity in high-stakes meetings, security reviews, RFP defences, competitive bake-offs, and partner-led engagements.
Commercial & Customer Impact
Improve technical win rate by making FireCompass easier to understand, evaluate, trust, and buy.
Increase POC-to-close conversion through better scoping, stronger success criteria, sharper demonstrations, and cleaner technical debriefs.
Position FireCompass against manual pentesting firms, PTaaS providers, BAS platforms, ASM/EASM tools, DAST scanners, vulnerability management platforms, and autonomous testing competitors.
Build reusable demo narratives, objection-handling responses, RFP content, POC templates, and competitive positioning material.
Support enterprise opportunities across India, Middle East, North America, and other strategic markets as required.
Enable channel partners through technical deep dives, joint demos, POC support, and field-ready messaging.
Help customers justify investment through improved coverage, validated findings, reduced manual effort, faster assessment cycles, better evidence, and clearer risk prioritisation.
Protect deal quality by identifying poor-fit use cases, unsafe scopes, unrealistic expectations, and technical gaps early.
Act as a field intelligence source for product roadmap, competitive strategy, sales messaging, and market positioning.
Required Experience
5 to 10 years in pre-sales, sales engineering, solutions consulting, offensive security consulting, AppSec, red teaming, or enterprise cybersecurity SaaS.
Strong hands-on understanding of Web application security, API security, infrastructure testing, penetration testing, attack surface discovery, vulnerability validation, and offensive security workflows.
Proven ability to run enterprise demos, POCs, technical discovery, RFP/RFI responses, and customer objection handling.
Ability to engage both technical practitioners and senior security leaders.
Working knowledge of cloud security across AWS, Azure, or GCP.
Familiarity with common security tools such as SIEM, EDR, vulnerability scanners, DAST tools, ASM platforms, ticketing systems, and security reporting workflows.
Ability to write high-quality technical and executive-facing documents.
A Bachelor’s degree or formal qualification in Computer Science, Engineering, Information Security, or a related field is welcome, but not mandatory. Proven skill, hands-on cybersecurity depth, and relevant enterprise pre-sales experience matter more than academic credentials.
Preferred Experience
Prior experience with offensive security platforms, ASM/EASM, BAS, PTaaS, DAST, vulnerability management, AppSec, red-team automation, or exposure management products.
Experience with regulated industries such as BFSI, telecom, healthcare, government, or large technology enterprises.
Certifications such as OSCP, OSWE, CEH, CISSP, CREST, AWS Security Specialty, or equivalent practical credentials.
Basic scripting or automation experience in Python, Bash, PowerShell, or similar.
Experience in a startup or high-growth cybersecurity product company.
Why This Role Is Different
You will not be selling a commodity scanner or a conventional services wrapper. You will help shape how enterprises evaluate and adopt autonomous offensive security.
You will work at the intersection of AI, penetration testing, attack surface management, exploit validation, red-team automation, and enterprise risk reduction.
You will influence the product directly through field feedback, POC outcomes, competitive learnings, and customer requirements.
You will gain exposure to serious enterprise security problems across large customers, regulated industries, and global markets.
You will build rare expertise in a category that is still early and likely to become strategically important.
Tangible rewards include competitive compensation, performance-linked incentives, potential equity participation where applicable, enterprise customer exposure, and accelerated role growth in a high-impact cybersecurity company.
Intangible rewards include category-building ownership, technical depth, founder-level visibility, strategic customer access, and the opportunity to become one of the early field experts in autonomous offensive security.
What Success Looks Like
Customers trust FireCompass faster because your discovery, demos, and POCs are precise, credible, and outcome-driven.
Sales teams rely on you for technical strategy, competitive positioning, and deal progression.
POCs are scoped properly, executed safely, and debriefed clearly.
RFPs and technical responses become sharper, more reusable, and more defensible.
Product and engineering receive high-quality field intelligence from your customer engagements.
FireCompass wins more serious enterprise opportunities because you make the platform technically credible, commercially relevant, and easy to evaluate.
Additional Information
EC-Council is an equal opportunity workplace and an affirmative action employer. We are committed to providing equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or veteran status. We do not discriminate based on these or any other characteristics protected by applicable laws or regulations in the locations where we operate.
EC-Council is dedicated to working with and providing reasonable accommodations to individuals with disabilities. If you have a medical condition or disability that limits your ability to complete any part of the application process and require reasonable accommodation, please contact us at
[email protected] and let us know how we can assist.
To be eligible for this position, candidates must be able to provide proof that they are either a citizen of the country or have legal authorization to work in the country where the position is posted and are currently residing there. EC-Council does not offer employment to ineligible candidates and reserves the right to revoke employment in case the candidate loses the authorization to work.
If, as part of the recruitment process, you are required to complete or submit any form of work, project, case study, or assignment, please note that such material will be considered the exclusive property of EC-Council. By submitting such work, you acknowledge that EC-Council retains all rights, title, and interest in the submitted content, including any intellectual property contained therein.
Candidates further waive any intellectual property or moral rights in such submissions, confirm that the work is original and free of third-party infringement, and acknowledge that it is provided solely for evaluation purposes, with no ownership or other rights retained.
Our Privacy Policy outlines how we collect, use, store, and protect your personal data during the recruitment process. This may include information such as your name, contact details, employment history, qualifications, and any other details you provide as part of your application. All data is handled in compliance with applicable data protection and privacy regulations.
Please review our policy here: EC-Council Privacy Policy- User & company | Data Protection. Submission of your application will be considered as your acceptance of the terms stated above.