Red Team Security Engineer
Location: Huntsville, AL (Redstone Arsenal)
Travel: Less than 10% of the time
Position Summary:
Our customer is hiring Red Team Security Engineer in Huntsville, AL. Candidate must have an active Secret Clearance with eligibility to obtain a Top Secret/SCI Clearance.
The Red Team Security Engineer will conduct multiple penetration tests of global customer networks, rapid development of domain or problem-specific tools that leverage identified vulnerabilities, research on the latest exploitation techniques and threat vectors, and design and configuration of representative test environments.
Candidate must support various training events, conferences, exercises, and demonstrations to ensure continued compliance with team member certification requirements to enhance technical capabilities, and to support authorized missions and test events.
Required Qualifications:
· Must have an active Secret Clearance with eligibility to obtain a Top Secret/SCI Clearance
· Bachelor’s in computer science/Management of Computer Information/Information Assurance or Security. Experience may be substituted for degree.
· Must have a CEH & CISSP Certification upon hire
· SPECIALIZED experience in Red Teaming, Computer Network Attack (CNA), Computer Network Exploitation (CNE), Computer Network Defense (CND), and/or penetration testing
· Ability to independently and rapidly develop tools and scripts from concept to production in a high-stress, short deadline, under-resourced environment using multiple programming languages
Additional Requirements:
· Experience with at least one of the following scripting languages (PowerShell, Bash, Python, Ruby, Node.js)
· Experience performing web application security assessments
· Experience with TCP/IP protocols as it relates to network security
· Experience with offensive tool sets including: Kali Linux, Metasploit, CobaltStrike, Intercepting Proxies, etc.
· Experience in using network protocol analyzers and sniffers, as well as ability to decipher packet captures
· Excellent independent (self-motivational, organizational, personal project management) skills
· Proven ability to work effectively with management, staff, vendors, and external consultants
· Ability to think outside the box and emulate adversarial approaches
· Capable of conducting penetration tests on applications, systems and network utilizing proven/formal processes and industry standards.
· Capable of managing multiple penetration test engagements, from cradle to grave, at the same time
· In depth understanding of emerging threats, vulnerabilities, and exploits
CULTURE REQUIREMENTS:
· Engineers, Analysts, and Developers at our customer are highly motivated, technical, and self‐organized. They place a lot of trust in their team members to develop technical solutions for ill‐defined problems (i.e. thrive in an environment where the problem is vague, requirements are lacking, and a solution is not obvious). They need problem solvers.
· They want their team members to be self‐motivated and eager to learn new skills. If you consider yourself a jack‐of‐all‐trades, and are eager to keep up with the latest trends in technology, you’ll fit right in.
