Systems Security Engineer Lead
Experian Information Solutions, Inc
Costa Rica
hace 3 días
  • Leading, managing and performing red team security assessments from scoping thru reporting
  • Leading and performing physical exploitation, network exploitation and social engineering assessments
  • Leading and performing network reconnaissance and open source intelligence gathering
  • Leading, mentoring and helping to develop the maturity of junior Red Team members
  • Configuring and safely utilizing attacker tools, tactics, and procedures for Experian environments.
  • Developing scripts, tools, or methodologies to enhance Experian's red teaming processes.
  • Helping to execute the Red Team strategy to further enhance the Experian’s security posture.
  • Effectively communicating findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel.
  • Developing comprehensive and accurate reports and presentations for both technical and executive audiences.
  • Providing risk-appropriate and pragmatic recommendations to correct vulnerabilities or issues found.
  • Providing guidance to advance the defensive capabilities of the team and its subsequent ability to defend the Experian Enterprise.
  • Demonstrating advanced understanding of business processes, internal control risk management, IT controls and related standards
  • Identifying and evaluating complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
  • Understanding clients' business environment and basic risk management approaches
  • Building and nurturing positive working relationships with clients with the intention to exceed client expectations
  • EDUCATIONAL REQUIREMENTS :

    Bachelor’s Degree (or foreignequivalent) in Electronics and Communications Engineering, ComputerScience, Computer Engineering, or Information Assurance

    EXPERIENCE REQUIREMENTS :

  • Minimum of 5 years of experience in the offeredposition or position in Information Security
  • 3 or more years’ experience in one or more of the following :
  • Network penetration testing and manipulation of networkinfrastructure
  • Web application penetration testing assessments
  • Email, phone, or physical social-engineering assessments
  • Developing, extending, or modifying exploits, shell code orexploit tools
  • Experience with Red, Blue, or Purple teaming exercises
  • Experience in large scale information technologyimplementations and operations preferred
  • Industry certifications such as OSCP / OSCE, OSWE, GPEN, GCIH,GWAPT, or GXPN.
  • SPECIAL SKILLSREQUIREMENTS :

  • Proficient in exploitation and post exploitation frameworks such as Cobalt Strike, Metasploit Framework, Empire
  • Proficient in one or more of the following programming languages (C, C++, C#, Go)
  • Proficient in one or more of the following scripting languages (Python, PowerShell, Bash, Ruby)
  • Advanced knowledge of Windows Operating System architecture and internals
  • Inscribirse
    Añadir a los favoritos
    Eliminar de mis favoritos
    Inscribirse
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", doy mi consentimiento para que neuvoo procese mis datos de conformidad con lo establecido en su Política de privacidad . Puedo darme de baja o retirar mi autorización en cualquier momento.
    Continuar
    Formulario de postulación