Benefits that go beyond the basics.
Full medical, dental, and vision, paid vacations and holidays, and more.
Be part of an elite team
Secure the Planet.
Have fun doing it.
We hack things, build new technology, and create a more secure world for our customers. The opportunities are vast. The wins are epic. And we’re here for all of it.
Protect things. Get paid. Feel awesome.
We value our time and our wellbeing, we love what we do, and we look out for one another. Forgepath offers competitive salaries, flexible schedules, and a welcoming environment. For the right candidates, our workspace feels like a second home.
Make an office wherever feels right.
We’ve been working remotely for years and know how to do it right.
Training budgets, conferences, & swag.
Flexible training budgets, cool company swag, and a Defcon badge.
Explore Our Current Openings
Don’t see your dream job below? Head over to our contact page and send us a quick message. We’re always looking for excellent people to join our team, so check back often!
Select Department
About the engagement
You will be embedded with our anchor CPA firm client, leading their IT engineering function and reporting directly into senior technology leadership. You remain a ForgePath employee with full ForgePath benefits and career development. This is a player-coach role. Roughly half your time is hands-on engineering and architecture across the firm’s IT stack — automation, networking, cloud, endpoints, servers. The other half is leading and developing the engineering team: sitting beside a junior engineer to walk through firewall configuration, reviewing work, setting team direction, and translating between the engineering bench and the firm’s senior leadership.
Employment: Full-time, W-2 ForgePath employee
Location: Hybrid; must be able to maintain a meaningful in-person presence in Winchester, VA
Reports to: Direct line into the client’s Chief Technology & Information Officer; ForgePath manages employment and career development
Responsibilities
Leadership and team development (~50%)
- Lead the client’s IT engineering team; mentor and develop engineers through real work
- Set technical direction and standards for the team’s day-to-day operations
- Communicate clearly upward to the CTIO and practice leads — status, tradeoffs, recommendations in business language
- Champion practical AI adoption: get the team excited about AI, model thoughtful use, push the firm to use AI as a force-multiplier
- Help shape engineering practices, review culture, and on-call expectations
Hands-on engineering (~50%)
- Architect and build automation tooling and workflows that improve how the firm’s IT operates
- Engineer infrastructure improvements across the Microsoft cloud (Azure, Entra ID, Intune, Microsoft 365)
- Design and implement networking changes — firewalls, switches, segmentation
- Operate confidently across endpoints, servers, and cloud
- Bring sensible security awareness to everything you ship
Required Experience
- 7+ years in IT engineering, infrastructure, or platform work, with prior team leadership (formal or informal)
- Broad and current technical fluency across: Microsoft cloud (Azure, Entra ID, Intune, Microsoft 365), networking (firewalls, switches), endpoints, servers, and automation
- Strong PowerShell or comparable scripting; comfortable building automation end-to-end
- Demonstrable mentorship history — engineers you have measurably made better
- Confident communicating with senior leadership; able to translate technical decisions into business language
- Sound baseline security awareness — you do not need to be a security specialist, but you should not need it explained to you either
Preferred Experience
- Genuine AI enthusiasm and practical use of AI tools (LLMs, agentic workflows, automation copilots) in your own work
- Infrastructure-as-code (Terraform, Bicep, ARM)
- CI/CD pipelines (GitHub Actions, Azure DevOps)
- Experience in regulated environments (financial services, professional services, healthcare)
- Prior IT manager or engineering manager experience in a mid-market firm
Compensation
- Base salary $125,000–$135,000, commensurate with experience
- Full benefits: medical, dental, vision, and 401(k) with employer match
- Paid time off and ForgePath-supported professional development
About the engagement
This is not a portfolio vCISO role. You will dedicate your hours to a single client — a regional CPA firm of about 350 people — and own their information security program end-to-end. The client’s internal IT team handles operations; ForgePath owns security, and you are the senior face of that program. The client values continuity and a close advisory relationship with their CISO. We are looking for someone who wants to go deep with one organization rather than rotate across many.
Engagement: Part-time / contract, ~20 hours per month (occasional months may extend toward 40)
Location: Remote, with periodic travel to Winchester, VA for executive briefings and key meetings
Reports to: ForgePath Security leadership; works directly with the client’s CIO, CTIO, and managing partners
Responsibilities
- Own the client’s information security strategy, roadmap, governance, and executive reporting
- Maintain and mature the firm’s GLBA / FTC Safeguards Rule and HIPAA compliance posture
- Serve as the executive-level security voice to the CIO, CTIO, managing partners, and audit/risk committee
- Lead policy development, risk assessment, third-party risk, and incident response governance
- Provide principal-level technical advisory on architecture, tooling, and cloud security decisions — security and adjacent technology
- Partner with ForgePath delivery teams on tactical execution (pentest scoping, VM strategy, security tooling rollouts)
- Brief the client’s leadership quarterly and on-demand for major events
Required Experience
- 7+ years in information security leadership, including 3+ in a CISO, vCISO, or Director of Security capacity
- Direct experience supporting CPA firms or comparable professional services environments
- Working command of GLBA / FTC Safeguards Rule and HIPAA — applied, not just templated
- Strong technical foundation: you can engage substantively on cloud (Microsoft/Azure preferred), endpoint security, network security, and identity
- Executive presence — you can sit across from a managing partner and earn their trust quickly
- Willing and able to act as a principal technology advisor on decisions that extend beyond strict security scope
Preferred Experience
- Active CISSP, CISM, or CCISO
- Prior in-house experience inside a public accounting firm’s IT or risk organization
- Familiarity with SOC 2 and PCI in adjacent contexts
Compensation
- $125–$150/hour, 1099 contractor
- Approximately 20 hours per month, with rare months extending toward 40
About the engagement
You will be embedded with our anchor CPA firm client, splitting your time roughly 50/50 between supplementing their internal help desk and working as a security analyst inside the security program ForgePath manages on their behalf. You will be ForgePath’s hands-on presence in their office. This is a great seat for someone who wants to grow into deeper security work without giving up the IT generalist skills that keep them sharp and useful.
Responsibilities
Help Desk (~50%)
- Tier 1 / Tier 2 end-user support: workstations, accounts, productivity software, common application issues
- Microsoft 365 administration (Exchange Online, Teams, SharePoint, Entra ID basics)
- Hardware support, imaging, and provisioning alongside the client’s IT team
- Ticket queue ownership and triage
Security (~50%)
- Vulnerability management: scan operations, finding triage, remediation tracking with IT and end users
- Phishing simulation campaigns: planning, deployment, reporting, follow-up training
- Security ticket triage and investigation (EDR alerts, email security, identity)
- Incident response support under ForgePath senior leadership
- Routine hygiene: access reviews, configuration checks, hardening tasks
Required Experience
- 2–4+ years across IT support / help desk / junior SOC or security analyst work (any combination)
- Strong Microsoft 365, Azure, and Windows endpoint fundamentals
- Familiarity with vulnerability scanning workflows — you don’t need to be an expert, but you should know what a CVSS score is and how to drive a fix
- Solid customer service instincts: patient, professional, willing to help
- Lives within reliable commuting distance of Winchester, VA, and can be on-site 2–3 days per week
Preferred Experience
- Security+, Network+, or equivalent certifications
- Experience with EDR platforms (Microsoft Defender, SentinelOne)
- Prior exposure to phishing simulation tools (KnowBe4, etc.)
- Curiosity about offensive security — there is real room to grow toward pentest and red-team adjacent work over time
Employment: Full-time, W-2 ForgePath employee
Location: Winchester, VA. On-site at the client (160 Exeter Drive) 2–3 days per week — closer to 3. Remote the remainder.
Reports to: ForgePath Security; coordinates day-to-day with the client’s IT and security leadership
Compensation
- Base salary $65,000–$72,000, commensurate with experience
- Full benefits: medical, dental, vision, and 401(k) with employer match
- Paid time off and ForgePath-supported professional development
About the role
ForgePath is hiring its founding seller — a senior cybersecurity services rep who wants the upside of a build-from-scratch opportunity in a growing consultancy. The commission structure (15% off the top on new business and renewals, plus 5% on continuing client revenue you originated) is designed to reward both early-stage selling and long-term client growth. You will own the sales motion end-to-end, partnering with the founder on outbound strategy and account development. ForgePath has HubSpot and Apollo as the foundation; you will help shape how we use them.
Engagement: 1099 contractor, 100% commission
Location: Fully remote (US-based)
Reports to: ForgePath CEO
Responsibilities
- Own net-new pipeline generation: prospecting, outbound, qualification, deal management, and close
- Manage the full deal cycle for ForgePath’s cybersecurity services portfolio: vCISO, penetration testing, vulnerability management, managed security services, dark web monitoring, compliance support, security assessments
- Partner with ForgePath leadership on scoping, pricing, and proposal development
- Collaborate with the founder on refining ForgePath’s lead-generation approach (HubSpot pipeline, Apollo workflows, outreach cadence) — sharpening what works as deals progress
- Build and maintain relationships with prospects, partners, and renewal clients
Who this role fits
This role is best suited for someone with an existing book or warm network in cybersecurity services who wants long-term residual income and is willing to trade short-term cash flow for compounding upside. Independent reps, fractional sellers, and experienced sellers between gigs are all plausible fits. This is not the right role for someone who needs a base salary or a turnkey territory.
Required Experience
- Demonstrated cybersecurity services sales track record — vCISO, penetration testing, managed security services, compliance support, or similar consulting offerings (product sales experience alone is not a substitute)
- Comfort owning the full sales cycle from prospect to close
- Hands-on experience with HubSpot or a comparable CRM, plus prospecting tools (Apollo, ZoomInfo, or similar)
- Self-directed — you are comfortable working independently in a small consultancy where some processes are still being refined
- Existing network or warm-sourcing capability in cybersecurity services buyers
Preferred Experience
- Prior experience selling for a small or boutique services firm
- Familiarity with the regulatory drivers behind cybersecurity buying (GLBA, HIPAA, PCI, SOC 2)
- Experience selling into mid-market firms in financial services, professional services, or healthcare
Compensation
- 15% commission on the contract value of all new business closed, paid off the top
- 15% commission on the first renewal of each closed account
- 5% commission on continuing client revenue, paid for as long as both (a) the client remains with ForgePath and (b) the seller remains engaged with ForgePath
- The 5% applies only to revenue from contracts the seller originated or in which they actively participated. New SOWs or expansions that the seller is not involved in fall outside the residual structure.
- 100% commission; no base salary or draw
- 1099 contractor relationship
About the engagement
You will be embedded with our anchor CPA firm client, leading their IT engineering function and reporting directly into senior technology leadership. You remain a ForgePath employee with full ForgePath benefits and career development. This is a player-coach role. Roughly half your time is hands-on engineering and architecture across the firm’s IT stack — automation, networking, cloud, endpoints, servers. The other half is leading and developing the engineering team: sitting beside a junior engineer to walk through firewall configuration, reviewing work, setting team direction, and translating between the engineering bench and the firm’s senior leadership.
Employment: Full-time, W-2 ForgePath employee
Location: Hybrid; must be able to maintain a meaningful in-person presence in Winchester, VA
Reports to: Direct line into the client’s Chief Technology & Information Officer; ForgePath manages employment and career development
Responsibilities
Leadership and team development (~50%)
- Lead the client’s IT engineering team; mentor and develop engineers through real work
- Set technical direction and standards for the team’s day-to-day operations
- Communicate clearly upward to the CTIO and practice leads — status, tradeoffs, recommendations in business language
- Champion practical AI adoption: get the team excited about AI, model thoughtful use, push the firm to use AI as a force-multiplier
- Help shape engineering practices, review culture, and on-call expectations
Hands-on engineering (~50%)
- Architect and build automation tooling and workflows that improve how the firm’s IT operates
- Engineer infrastructure improvements across the Microsoft cloud (Azure, Entra ID, Intune, Microsoft 365)
- Design and implement networking changes — firewalls, switches, segmentation
- Operate confidently across endpoints, servers, and cloud
- Bring sensible security awareness to everything you ship
Required Experience
- 7+ years in IT engineering, infrastructure, or platform work, with prior team leadership (formal or informal)
- Broad and current technical fluency across: Microsoft cloud (Azure, Entra ID, Intune, Microsoft 365), networking (firewalls, switches), endpoints, servers, and automation
- Strong PowerShell or comparable scripting; comfortable building automation end-to-end
- Demonstrable mentorship history — engineers you have measurably made better
- Confident communicating with senior leadership; able to translate technical decisions into business language
- Sound baseline security awareness — you do not need to be a security specialist, but you should not need it explained to you either
Preferred Experience
- Genuine AI enthusiasm and practical use of AI tools (LLMs, agentic workflows, automation copilots) in your own work
- Infrastructure-as-code (Terraform, Bicep, ARM)
- CI/CD pipelines (GitHub Actions, Azure DevOps)
- Experience in regulated environments (financial services, professional services, healthcare)
- Prior IT manager or engineering manager experience in a mid-market firm
Compensation
- Base salary $125,000–$135,000, commensurate with experience
- Full benefits: medical, dental, vision, and 401(k) with employer match
- Paid time off and ForgePath-supported professional development
About the engagement
This is not a portfolio vCISO role. You will dedicate your hours to a single client — a regional CPA firm of about 350 people — and own their information security program end-to-end. The client’s internal IT team handles operations; ForgePath owns security, and you are the senior face of that program. The client values continuity and a close advisory relationship with their CISO. We are looking for someone who wants to go deep with one organization rather than rotate across many.
Engagement: Part-time / contract, ~20 hours per month (occasional months may extend toward 40)
Location: Remote, with periodic travel to Winchester, VA for executive briefings and key meetings
Reports to: ForgePath Security leadership; works directly with the client’s CIO, CTIO, and managing partners
Responsibilities
- Own the client’s information security strategy, roadmap, governance, and executive reporting
- Maintain and mature the firm’s GLBA / FTC Safeguards Rule and HIPAA compliance posture
- Serve as the executive-level security voice to the CIO, CTIO, managing partners, and audit/risk committee
- Lead policy development, risk assessment, third-party risk, and incident response governance
- Provide principal-level technical advisory on architecture, tooling, and cloud security decisions — security and adjacent technology
- Partner with ForgePath delivery teams on tactical execution (pentest scoping, VM strategy, security tooling rollouts)
- Brief the client’s leadership quarterly and on-demand for major events
Required Experience
- 7+ years in information security leadership, including 3+ in a CISO, vCISO, or Director of Security capacity
- Direct experience supporting CPA firms or comparable professional services environments
- Working command of GLBA / FTC Safeguards Rule and HIPAA — applied, not just templated
- Strong technical foundation: you can engage substantively on cloud (Microsoft/Azure preferred), endpoint security, network security, and identity
- Executive presence — you can sit across from a managing partner and earn their trust quickly
- Willing and able to act as a principal technology advisor on decisions that extend beyond strict security scope
Preferred Experience
- Active CISSP, CISM, or CCISO
- Prior in-house experience inside a public accounting firm’s IT or risk organization
- Familiarity with SOC 2 and PCI in adjacent contexts
Compensation
- $125–$150/hour, 1099 contractor
- Approximately 20 hours per month, with rare months extending toward 40
About the engagement
You will be embedded with our anchor CPA firm client, splitting your time roughly 50/50 between supplementing their internal help desk and working as a security analyst inside the security program ForgePath manages on their behalf. You will be ForgePath’s hands-on presence in their office. This is a great seat for someone who wants to grow into deeper security work without giving up the IT generalist skills that keep them sharp and useful.
Responsibilities
Help Desk (~50%)
- Tier 1 / Tier 2 end-user support: workstations, accounts, productivity software, common application issues
- Microsoft 365 administration (Exchange Online, Teams, SharePoint, Entra ID basics)
- Hardware support, imaging, and provisioning alongside the client’s IT team
- Ticket queue ownership and triage
Security (~50%)
- Vulnerability management: scan operations, finding triage, remediation tracking with IT and end users
- Phishing simulation campaigns: planning, deployment, reporting, follow-up training
- Security ticket triage and investigation (EDR alerts, email security, identity)
- Incident response support under ForgePath senior leadership
- Routine hygiene: access reviews, configuration checks, hardening tasks
Required Experience
- 2–4+ years across IT support / help desk / junior SOC or security analyst work (any combination)
- Strong Microsoft 365, Azure, and Windows endpoint fundamentals
- Familiarity with vulnerability scanning workflows — you don’t need to be an expert, but you should know what a CVSS score is and how to drive a fix
- Solid customer service instincts: patient, professional, willing to help
- Lives within reliable commuting distance of Winchester, VA, and can be on-site 2–3 days per week
Preferred Experience
- Security+, Network+, or equivalent certifications
- Experience with EDR platforms (Microsoft Defender, SentinelOne)
- Prior exposure to phishing simulation tools (KnowBe4, etc.)
- Curiosity about offensive security — there is real room to grow toward pentest and red-team adjacent work over time
Employment: Full-time, W-2 ForgePath employee
Location: Winchester, VA. On-site at the client (160 Exeter Drive) 2–3 days per week — closer to 3. Remote the remainder.
Reports to: ForgePath Security; coordinates day-to-day with the client’s IT and security leadership
Compensation
- Base salary $65,000–$72,000, commensurate with experience
- Full benefits: medical, dental, vision, and 401(k) with employer match
- Paid time off and ForgePath-supported professional development
About the role
ForgePath is hiring its founding seller — a senior cybersecurity services rep who wants the upside of a build-from-scratch opportunity in a growing consultancy. The commission structure (15% off the top on new business and renewals, plus 5% on continuing client revenue you originated) is designed to reward both early-stage selling and long-term client growth. You will own the sales motion end-to-end, partnering with the founder on outbound strategy and account development. ForgePath has HubSpot and Apollo as the foundation; you will help shape how we use them.
Engagement: 1099 contractor, 100% commission
Location: Fully remote (US-based)
Reports to: ForgePath CEO
Responsibilities
- Own net-new pipeline generation: prospecting, outbound, qualification, deal management, and close
- Manage the full deal cycle for ForgePath’s cybersecurity services portfolio: vCISO, penetration testing, vulnerability management, managed security services, dark web monitoring, compliance support, security assessments
- Partner with ForgePath leadership on scoping, pricing, and proposal development
- Collaborate with the founder on refining ForgePath’s lead-generation approach (HubSpot pipeline, Apollo workflows, outreach cadence) — sharpening what works as deals progress
- Build and maintain relationships with prospects, partners, and renewal clients
Who this role fits
This role is best suited for someone with an existing book or warm network in cybersecurity services who wants long-term residual income and is willing to trade short-term cash flow for compounding upside. Independent reps, fractional sellers, and experienced sellers between gigs are all plausible fits. This is not the right role for someone who needs a base salary or a turnkey territory.
Required Experience
- Demonstrated cybersecurity services sales track record — vCISO, penetration testing, managed security services, compliance support, or similar consulting offerings (product sales experience alone is not a substitute)
- Comfort owning the full sales cycle from prospect to close
- Hands-on experience with HubSpot or a comparable CRM, plus prospecting tools (Apollo, ZoomInfo, or similar)
- Self-directed — you are comfortable working independently in a small consultancy where some processes are still being refined
- Existing network or warm-sourcing capability in cybersecurity services buyers
Preferred Experience
- Prior experience selling for a small or boutique services firm
- Familiarity with the regulatory drivers behind cybersecurity buying (GLBA, HIPAA, PCI, SOC 2)
- Experience selling into mid-market firms in financial services, professional services, or healthcare
Compensation
- 15% commission on the contract value of all new business closed, paid off the top
- 15% commission on the first renewal of each closed account
- 5% commission on continuing client revenue, paid for as long as both (a) the client remains with ForgePath and (b) the seller remains engaged with ForgePath
- The 5% applies only to revenue from contracts the seller originated or in which they actively participated. New SOWs or expansions that the seller is not involved in fall outside the residual structure.
- 100% commission; no base salary or draw
- 1099 contractor relationship
Meet Our Leadership
Get to know the minds behind ForgePath—the leaders shaping secure, scalable solutions to defend against tomorrow’s cyber threats.
-
Kevin Lassar
CEO & FounderRead Full BioKevin Lassar
CEO & FounderI built my career in ethical hacking and software engineering. Over the years, I’ve helped organizations strengthen their security while turning technology into a business advantage.
As Founder & CEO of Forgepath, I lead a team that helps CPA firms, financial institutions, and mid-market organizations navigate cybersecurity and compliance with confidence.
My approach is simple: cybersecurity is not just about manging risk — it’s strategy. Done right, it enables smarter business decisions, builds trust with clients, and creates long-term resilience.
-
Dani Lensky
COO & CISORead Full BioDani Lensky
COO & CISOI live by the principle that security done right empowers innovation, rather than holds it back. I help organizations transform security from a perceived constraint into a genuine competitive advantage, building strategies that align security with real-world business needs to drive growth, resilience, and trust.
It takes courage to push beyond superficial fixes and advocate for changes that truly shift the risk equation. It takes curiosity and determination to deeply understand the intersection of business and technology, finding solutions that both secure and propel the business forward.
Having spent much of my career securing high-stakes industries where mission success critically depends on trust, compliance, and resilience, I’ve learned firsthand how to navigate complex risk landscapes while keeping businesses agile and competitive.
This is my leadership philosophy: Security succeeds when it is pragmatic, understood at every level, and integrated into culture. By connecting technical teams and executives—and ensuring security is seen as a core business enabler and force multiplier—I build cultures where security isn’t just respected; it’s embraced.
-
Matt Berry
CTORead Full BioMatt Berry
CTOI bring over 25 years of experience working across offensive and defensive cybersecurity, with a background that spans national security, enterprise consulting, and technical leadership. Most of my career has been spent in environments where security problems are real, the stakes are high, and the work has to hold up in practice.
As Chief Technology Officer at Forgepath, I lead the technical direction of our services and help shape how we approach real world security testing and defense. I focus on building practical, repeatable Red Team and security assessment methods, mentoring engineers, and making sure what we deliver actually reflects how attackers operate.
Before Forgepath, I worked in both commercial and government roles leading offensive security efforts, running Red Team engagements, and helping organizations understand and reduce risk across their environments. Earlier in my career, I supported U.S. national security missions as a Computer Network Operator, where I worked on advanced network exploitation, tool development, and technical analysis in high trust environments.
My approach to security is straightforward and hands on. Good security should make sense, work in the real world, and stand up to real attackers, not just check a box for compliance.