Job functions :
Leading, managing and performing red team security assessments from scoping thru reporting
Leading and performing physical exploitation, network exploitation and social engineering assessments
Leading and performing network reconnaissance and open source intelligence gathering
Leading, mentoring and helping to develop the maturity of junior Red Team members
Configuring and safely utilizing attacker tools, tactics, and procedures for Experian environments.
Developing scripts, tools, or methodologies to enhance Experian's red teaming processes.
Helping to execute the Red Team strategy to further enhance the Experian’s security posture.
Effectively communicating findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel.
Developing comprehensive and accurate reports and presentations for both technical and executive audiences.
Providing risk-appropriate and pragmatic recommendations to correct vulnerabilities or issues found.
Providing guidance to advance the defensive capabilities of the team and its subsequent ability to defend the Experian Enterprise.
Demonstrating advanced understanding of business processes, internal control risk management, IT controls and related standards
Identifying and evaluating complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
Understanding clients' business environment and basic risk management approaches
Building and nurturing positive working relationships with clients with the intention to exceed client expectations
Bachelor’s Degree (orforeign equivalent) in Electronics and Communications Engineering, ComputerScience, Computer Engineering, or Information Assurance
EXPERIENCE REQUIREMENTS :
Minimum of 5 years ofexperience in the offered position or position in Information Security
3 or more years’experience in one or more of the following : Network penetrationtesting and manipulation of network infrastructure;
Web applicationpenetration testing assessments; Email, phone, or physicalsocial-engineering assessments; Developing, extending,or modifying exploits, shell code or exploit tools;
Experience with Red,Blue, or Purple teaming exercises
Experience in largescale information technology implementations and operations preferred
Industry certificationssuch as OSCP / OSCE, OSWE, GPEN, GCIH, GWAPT, or GXPN.
Proven previous job stability, including maintaining long-term work relationships with former employers
Must be able to clear the company’s pre-employment screening
SPECIAL SKILLSREQUIREMENTS :
Proficient inexploitation and post exploitation frameworks such as Cobalt Strike, MetasploitFramework, Empire
Proficient in one or moreof the following programming languages (C, C++, C#, Go)
Proficient in one ormore of the following scripting languages (Python, PowerShell, Bash, Ruby)
Advanced knowledge ofWindows Operating System architecture and internals
Añadir a los favoritos
Eliminar de mis favoritos
Debes iniciar sesión en tu cuenta para agregar este empleo a tus favoritos. Haz clic en "Continuar" para acceder a tu cuenta o crear una cuenta nueva. Luego de iniciar sesión, podrás ver y organizar tus favoritos tanto en nuestro sitio web como en la aplicación móvil.