Offensive Security Engineer

US Bank-posted 5 months ago
$111,605 - $131,300/Yr
Mid Level
Remote • Cincinnati, OH
Credit Intermediation and Related Activities
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at—all from Day One. This role performs the daily operation and execution of offensive security-related tools, processes and controls related to offensive cyber initiatives. It involves a variety of ethical hacking activities against the technical security controls and systems, coordinating and delivering remediation items of identified risks and control deficiencies, optimizing security processes, and serving as a subject matter expert across multiple security domains.

  • Conduct Threat Emulation
  • Conduct innovative research in cyber security
  • Conduct active offensive and/or adversarial operations
  • Conduct physical security assessments
  • Develop custom tooling in support of Red Team operations
  • Develop in-depth findings reports
  • Document the impact and severity of attack chains to be presented to the lines of business
  • Act as a subject matter expert to convey technical details on attacks to the blue teams
  • Bachelor's degree in Engineering or Science, or equivalent work experience
  • Five or more years of experience in information security, with a background in offensive security
  • Previous Red Team experience or expertise in Red Team operations/assessments
  • Experience in writing proof-of-concept exploits and creating custom payloads and modules for common (post)exploitation frameworks and tools
  • Well versed with security tools & C2 frameworks such as Cobalt Strike, Metasploit, Mythic, Sliver etc.
  • Proficiency in defeating endpoint security and controls (A/V, EDR, XDR, etc.) in support of Red Team operations
  • Proficiency in one or more coding/scripting language (e.g., Perl, Python, PowerShell, Shell Scripting, C/C#/C++, golang, etc.)
  • Knowledge and experience with web-based application attacks
  • Experience utilizing and maintaining infrastructure as code
  • Previous experience performing 'purple-team' activities
  • Working knowledge of IT environment including service-oriented and IT architecture, industry trends and direction, system and technology integration, and IT standards, procedures and policies, and emerging technologies
  • Extensive knowledge of technical troubleshooting
  • Working knowledge of information security architecture, security technologies, administration, audits, and network and internet security
  • Working proficiency of various offensive security tools
  • Ability to work cooperatively and professionally with co-workers, customers, and management
  • Strong verbal and written communication skills
  • Significant experience identifying security vulnerabilities for the company's networks, application systems, hardware infrastructure and emerging technologies to improve the enterprise information security posture
  • Ability to present complex material in a digestible, consumable manner to all levels of management
  • Strong ability to create proof of concepts from discovered potential vulnerabilities
  • Ability to manage complex security scenarios and develop innovative solutions to address the most recent cyber threats
  • Healthcare (medical, dental, vision)
  • Basic term and optional term life insurance
  • Short-term and long-term disability
  • Pregnancy disability and parental leave
  • 401(k) and employer-funded retirement plan
  • Paid vacation (from two to five weeks depending on salary grade and tenure)
  • Up to 11 paid holiday opportunities
  • Adoption assistance
  • Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
Track Jobs with Teal

Job Search Resources

AI Resume Builder
Network Security Engineer Resume Examples
Network Security Engineer Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service