Cybersecurity Red Team Analyst Sr

About The Position

Requirements

• Expertise in attack tools and techniques
• Ability to use and analyze information produced from various commercial and open source tools
• Familiarity with large network infrastructure components (Load balancers, Proxies, hybrid cloud implementations, VPNs)
• Familiarity with network and host-based security system components (Firewalls, Endpoint Protection Solutions)
• Familiarity with modern virtualization platforms and technology.
• Experience managing red team projects from end-to-end (initial planning through remediation coordination)
• Ability to coordinate activities with a wide range of stakeholders
• Experience developing plans, creating reports, presentation, processes, etc.
• Must be able to work across IT organizations to drive successful outcomes of the program
• Ability to produce documentation in support of the program

Nice To Haves

• Computer Security related degree
• 6+ years in a cybersecurity role, 3+ years in red team
• Certifications related to red team and penetration testing such as OSCP, OSCE, OSWP, OSWE, GPEN, GWAPT, GXPN, GAWN
• Experience with COTS Adversary Emulation tools

Responsibilities

• Develop standard Red Team practice within ESS Cybersecurity. Define core processes, tools, and deliverables.
• Simulate attacks on the organization’s IT systems, networks, applications, and physical security to evaluate its security posture. Identify weaknesses that could be exploited by malicious actors and provide actionable recommendations to improve defenses.
• Work under consultative direction from management within Cybersecurity. Develop and implement plans and work with stakeholders independently to plan and execute activities.
• Develop detailed project plans that define technical approaches as well as impacts and requirements for stakeholders throughout the organization.
• Technical approaches may require a high degree of creativity and flexibility. Problems may be highly complex. Testing may often uncover unknown/unforeseen circumstances that require change in direction or new approaches. Position requires ability to independently make sound decisions to maximize effectiveness of tests.
• Must be able to maintain strong working relationships with stakeholders throughout the organization, including IT Operations, Applications, Network, GSOC, business sectors, etc. Stakeholders may be sensitive that simulated attacks may impact business operations. Position requires careful and responsible decisions regarding test approaches, and frequent and effective communications with stakeholders.
• Consult with stakeholders on findings and required actions to improve defenses. Develop and maintain detailed tracking that identifies scope, tests completed, and findings. Work with stakeholder to ensure findings are remediated.
• Serve as the Team Lead for the Red Team function within ESS Cybersecurity. Provide leadership and support to other Red Team Analysts on the team. Coordinate activities, ensure high quality delivery.
• Promote a culture of ownership, transparency, and results driven- performance.

Benefits

• health, dental, and vision insurance
• health savings accounts
• a 401(k) savings plan
• disability coverage
• life and accident insurance
• employee assistance program
• legal plan
• discounts on things like home, auto, and pet insurance
• paid time off
• paid holidays
• paid parental leave
• military leave
• bereavement leave
• any applicable federal and state sick leave
• company recognition program