Red Team Operator

As a Red Team Operator, you will be in an individual contributor role responsible for supporting a global program by emulating real-world threats using threat actor tactics, techniques, and procedures with the goals of training and measuring the effectiveness of people, processes, and technology used to defend an environment. This position requires the ability to manage multiple complex engagements simultaneously.

As part of the Global Security organization, within Cyber Operations, the Red Team Operator will need to develop strong relationships within Security and with Technology globally in order to successfully execute the Red Team mission.



What you’ll do

The Red Team Operator is an individual contributor role to support the Cyber Operations group within the Global Security Organization. The Red Team Operator would be responsible for performing the following tasks:

• Plan and conduct threat actor emulation engagements, utilizing their tactics, techniques, and procedures in order to train and measure the effectiveness of people, processes, and technology.

• Architecting and building Red Teaming command and control infrastructure.

• Report results of threat actor emulation engagements to appropriate stakeholders and support Cyber Detection and Response with detection development.

• Research and develop beacon object files, endpoint detection and response evasion tactics, and command and control communication channels in restricted environments.
  

What experience you need

• 5+ years of experience in Cyber Security.

• 2+ years of experience in either penetration testing or vulnerability analysis

• Familiarity with command and control frameworks such as Cobalt Strike and Sliver.

• Familiarity of implementing command and control framework customizations.

• Familiarity with Google Cloud Platform or Amazon Web Services.

• Understanding of the MITRE ATT&CK framework.

• Solid understanding of *NIX and Windows operating system functionality.

• Experience working with basic networking fundamentals, e.g., IP, TCP, UDP.

• Familiarity with programming languages such as C, C++, Go, Python, Ruby, etc.
  

What could set you apart

• Industry certification in Offensive Security Certified Professional, Certified Red Team Operator, or similar.

• Portfolio of software development projects, research, or documentation of implementing lab environments relating to information security.

• Experience automating cloud technologies via API calls.

#LI-Hybrid

#LI-KD1