Systems Security Engineer Lead
Experian Information Solutions, Inc
Heredia, Heredia, Costa Rica
hace 1 día

Job functions :

  • Leading, managing and performing red team security assessments from scoping thru reporting
  • Leading and performing physical exploitation, network exploitation and social engineering assessments
  • Leading and performing network reconnaissance and open source intelligence gathering
  • Leading, mentoring and helping to develop the maturity of junior Red Team members
  • Configuring and safely utilizing attacker tools, tactics, and procedures for Experian environments.
  • Developing scripts, tools, or methodologies to enhance Experian's red teaming processes.
  • Helping to execute the Red Team strategy to further enhance the Experian’s security posture.
  • Effectively communicating findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel.
  • Developing comprehensive and accurate reports and presentations for both technical and executive audiences.
  • Providing risk-appropriate and pragmatic recommendations to correct vulnerabilities or issues found.
  • Providing guidance to advance the defensive capabilities of the team and its subsequent ability to defend the Experian Enterprise.
  • Demonstrating advanced understanding of business processes, internal control risk management, IT controls and related standards
  • Identifying and evaluating complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
  • Understanding clients' business environment and basic risk management approaches
  • Building and nurturing positive working relationships with clients with the intention to exceed client expectations
  • EDUCATIONALREQUIREMENTS :

    Bachelor’s Degree (orforeign equivalent) in Electronics and Communications Engineering, ComputerScience, Computer Engineering, or Information Assurance

    EXPERIENCE REQUIREMENTS :

  • Minimum of 5 years ofexperience in the offered position or position in Information Security
  • 3 or more years’experience in one or more of the following : Network penetrationtesting and manipulation of network infrastructure;
  • Web applicationpenetration testing assessments; Email, phone, or physicalsocial-engineering assessments; Developing, extending,or modifying exploits, shell code or exploit tools;
  • Experience with Red,Blue, or Purple teaming exercises

  • Experience in largescale information technology implementations and operations preferred
  • Industry certificationssuch as OSCP / OSCE, OSWE, GPEN, GCIH, GWAPT, or GXPN.
  • Proven previous job stability, including maintaining long-term work relationships with former employers
  • Must be able to clear the company’s pre-employment screening
  • SPECIAL SKILLSREQUIREMENTS :

  • Proficient inexploitation and post exploitation frameworks such as Cobalt Strike, MetasploitFramework, Empire
  • Proficient in one or moreof the following programming languages (C, C++, C#, Go)
  • Proficient in one ormore of the following scripting languages (Python, PowerShell, Bash, Ruby)
  • Advanced knowledge ofWindows Operating System architecture and internals
  • Inscribirse
    Añadir a los favoritos
    Eliminar de mis favoritos
    Inscribirse
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", doy mi consentimiento para que neuvoo procese mis datos de conformidad con lo establecido en su Política de privacidad . Puedo darme de baja o retirar mi autorización en cualquier momento.
    Continuar
    Formulario de postulación