Threat Emulation Engineer - Blue/Purple Team

GuidePoint Security•Chantilly, VA

2d•Onsite

About The Position

Join GuidePoint Security's elite security team as a Threat Emulation Engineer, where you'll be a technical leader solving challenging security problems. This role is responsible for service delivery and requires you to be a product subject-matter expert. You will work independently on small projects and collaboratively on large-scale enterprise deployments, fueling solutions that make a significant impact. The fast-paced environment celebrates and supports a continuous thirst for learning new technologies. GuidePoint focuses on sharing knowledge through comprehensive documentation and knowledge transfer, ensuring meaningful work. You'll be part of a large internal support group with extensive experience and benefit from an internal training program designed to enhance your skills and keep pace with technology changes. The goal is to enable engineers to become complete security professionals capable of analyzing security solutions, not just installing and configuring products, gaining broad knowledge and skills to advise on current threats.

Requirements

5–10 years of security systems engineering and troubleshooting experience.
Strong understanding of cyber threat techniques, intelligence analysis, and adversary TTPs.
Familiarity with MITRE ATT&CK and similar threat frameworks.
Experience designing log ingestion and aggregation strategies.
Knowledge of key security events across common IT platforms.
Proficiency with Windows, macOS, and Linux systems.
Experience with networking and security troubleshooting (firewalls, routing, NAT, etc.).
Ability to manage and deliver multiple projects independently.
Active DoD 8570 IAT Level II+ certification (e.g., Security+, CEH).
Active TS/SCI clearance with polygraph.
Active Top Secret/SCI clearance with a CI Poly within 10 years.

Nice To Haves

Experience configuring and utilizing enterprise SIEM platforms.
Understanding of OS auditing (Syslog, Windows Event Logs).
Experience with Mandiant Security Validation or other Breach and Attack Simulation (BAS) tools.
Red or purple team experience.
Experience developing SOC runbooks, workflows, and policy documentation.
Familiarity with various scripting languages (bash, python, powershell, perl).
Bachelor’s degree in a relevant field or equivalent experience.

Responsibilities

Complete internal training for Automated Security Validation (ASV).
Lead complex ASV deployments and partner with customers to address diverse security use cases.
Assess customer security posture and requirements to guide solution design.
Maximize ASV value by enabling customers and supporting their cybersecurity strategy.
Collaborate with internal product and technical teams to deliver solutions and drive innovation.
Apply prior experience, share best practices, and develop creative approaches to increase adoption.
Empower customers to independently address future security questions.

Benefits

Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family).
If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options).
Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans.
12 corporate holidays and a Flexible Time Off (FTO) program.
Healthy mobile phone and home internet allowance.
Eligibility for retirement plan after 2 months at open enrollment.
Pet Benefit Option.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume