Why Work at GarrisonOne
We are not a large firm where junior staff get buried in repetitive tasks while senior people do the interesting work. From early in your time here, you will work on real client engagements, contribute to findings that shape security programs, and develop expertise that comes from solving genuine problems rather than following scripts.
Real Work from Day One
We do not have separate tracks for people who do client work and people who do internal work. Everyone at GarrisonOne works on client engagements. You will develop technical depth and client communication skills simultaneously because both matter for delivering work that is genuinely useful rather than technically correct but practically useless.
Breadth and Depth
Our practice covers assessment, penetration testing, managed security operations, compliance, and advisory work across multiple industries. You will develop deep expertise in your primary discipline while gaining working knowledge of adjacent areas that makes you more effective at your core role. Understanding how compliance requirements shape security architecture, or how detection capabilities affect what a penetration test actually needs to find, makes every practitioner better.
Current Threat Expertise
The threat environment changes constantly, and staying current is part of the job. We invest in ongoing training, research, and tooling so our team's knowledge reflects how attacks are actually happening today, not how they happened several years ago. AI-powered attacks, autonomous intrusion agents, and evolving ransomware techniques are active areas of focus rather than topics we track from a distance.
Work That Has Consequences
We work with healthcare organizations where a ransomware attack can affect patient care, financial institutions where a breach can cause direct financial harm to customers, and government agencies where a nation-state intrusion can have national security implications. The stakes of getting our work right are real, and that makes the work meaningful in a way that testing systems where the consequences of failure are abstract does not.
Roles We Hire For
We hire across the full range of cybersecurity disciplines. The specific openings we have at any given time vary, but the following represent the types of roles that are part of our team on an ongoing basis. If your background fits one of these areas and you are interested in working with us, reach out even if you do not see a specific posting that matches your profile.
Penetration Testers
We look for penetration testers with demonstrated hands-on technical capability across network, application, and social engineering testing. Experience with specific industries, such as healthcare or financial services, is a plus but not required. What matters most is the ability to think creatively about attack paths, communicate findings clearly to both technical and non-technical audiences, and conduct engagements with the professionalism that client-facing work requires. Certifications such as OSCP, GPEN, or equivalent are relevant but not a substitute for demonstrated skill.
Security Operations Analysts
Our SOC team needs analysts with experience in threat detection, alert triage, incident investigation, and the behavioral analysis that distinguishes genuine threats from normal activity variation in complex environments. Experience with SIEM platforms, EDR tools, and network traffic analysis is important. We are particularly interested in analysts who have experience working with AI-assisted detection tools and who can apply judgment to the output of automated systems rather than treating alerts as definitive conclusions.
Compliance & GRC Consultants
We need compliance practitioners who understand the substance of the frameworks they work with, not just their structure. Experience with HIPAA, PCI DSS, ISO 27001, SOC 2, NIST CSF, or CMMC is relevant depending on your background. What we look for most is the ability to translate regulatory requirements into practical security controls, communicate compliance gaps in terms that technical and leadership teams can act on, and build programs that produce genuine security improvement alongside compliance status.
Security Architects & vCISO Consultants
Our advisory practice includes senior practitioners who work directly with client leadership as Virtual CISOs and security architects. These roles require deep technical knowledge combined with the business communication and strategic thinking skills that executive-level advisory work demands. Experience owning a security program, presenting to boards and executives, and managing security across complex multi-system environments is relevant. The ability to build trust with client leadership and deliver difficult findings constructively is as important as technical expertise.
What We Look For
- Honesty About What You Know Security work requires intellectual honesty. Overstating certainty about findings, understating risk to avoid difficult conversations, or pretending to have expertise you do not have creates problems for clients. We look for people who are accurate about what they know, direct about what they do not, and willing to say when an answer requires more investigation.
- Client Focus Our clients depend on us for security outcomes that matter to their organizations. We look for people who take that responsibility seriously, communicate proactively, and measure their success by whether clients are genuinely better protected rather than whether deliverables were technically completed on time.
- Continuous Learning The threat environment changes faster than any static body of knowledge can track. We look for people who stay current not because it is required but because they are genuinely interested in how attacks evolve, what new techniques are emerging, and how defenses need to adapt. Curiosity about the adversary is the foundation of effective defense.
- Collaborative Approach Security problems are rarely solved by a single person working independently. We look for people who work well with colleagues across disciplines, who share knowledge rather than hoarding it, and who bring other team members into their thinking rather than treating engagements as solo efforts.
- Clear Communication The ability to explain technical findings to non-technical audiences without condescension or oversimplification is a skill that separates effective security practitioners from technically competent ones. We look for people who can write clearly, speak directly, and tailor their communication to whoever they are talking to.
How to Apply
Send your resume and a brief note about what kind of work you are looking for and why GarrisonOne is a fit to our careers team. We read every application. We do not use automated screening that filters candidates before a human sees their application. If your background is relevant to work we do, you will hear from us.
We are particularly interested in candidates with experience in healthcare, financial services, government, or education security, though we consider strong candidates from any background. If you have done research, contributed to open source security tooling, written publicly about security topics, or have other work you are proud of outside of formal employment, include it. It matters.
Get in Touch
Resources
Company
Contact
- US: 4752 Euclid Rd Suite 11,
Virginia Beach, VA 23462 - India: Orchard Street, Sector 61,
Gurgaon, Haryana - Phone: (301) 825-5518
- info@garrisonone.com
