Leading, managing and performing red team security assessments from scoping thru reporting
Leading and performing physical exploitation, network exploitation and social engineering assessments
Leading and performing network reconnaissance and open source intelligence gathering
Leading, mentoring and helping to develop the maturity of junior Red Team members
Configuring and safely utilizing attacker tools, tactics, and procedures for Experian environments.
Developing scripts, tools, or methodologies to enhance Experian's red teaming processes.
Helping to execute the Red Team strategy to further enhance the Experian’s security posture.
Effectively communicating findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel.
Developing comprehensive and accurate reports and presentations for both technical and executive audiences.
Providing risk-appropriate and pragmatic recommendations to correct vulnerabilities or issues found.
Providing guidance to advance the defensive capabilities of the team and its subsequent ability to defend the Experian Enterprise.
Demonstrating advanced understanding of business processes, internal control risk management, IT controls and related standards
Identifying and evaluating complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
Understanding clients' business environment and basic risk management approaches
Building and nurturing positive working relationships with clients with the intention to exceed client expectations
EDUCATIONAL REQUIREMENTS :
Bachelor’s Degree (or foreignequivalent) in Electronics and Communications Engineering, ComputerScience, Computer Engineering, or Information Assurance
EXPERIENCE REQUIREMENTS :
Minimum of 5 years of experience in the offeredposition or position in Information Security
3 or more years’ experience in one or more of the following :
Network penetration testing and manipulation of networkinfrastructure
Web application penetration testing assessments
Email, phone, or physical social-engineering assessments
Developing, extending, or modifying exploits, shell code orexploit tools
Experience with Red, Blue, or Purple teaming exercises
Experience in large scale information technologyimplementations and operations preferred
Industry certifications such as OSCP / OSCE, OSWE, GPEN, GCIH,GWAPT, or GXPN.
SPECIAL SKILLSREQUIREMENTS :
Proficient in exploitation and post exploitation frameworks such as Cobalt Strike, Metasploit Framework, Empire
Proficient in one or more of the following programming languages (C, C++, C#, Go)
Proficient in one or more of the following scripting languages (Python, PowerShell, Bash, Ruby)
Advanced knowledge of Windows Operating System architecture and internals
Añadir a los favoritos
Eliminar de mis favoritos
Debes iniciar sesión en tu cuenta para agregar este empleo a tus favoritos. Haz clic en "Continuar" para acceder a tu cuenta o crear una cuenta nueva. Luego de iniciar sesión, podrás ver y organizar tus favoritos tanto en nuestro sitio web como en la aplicación móvil.