Associate Principal, Cyber Defense SALARY: $150K - $165K PLUS 15% BONUS Hybrid: 3 days on site, 2 days remote SELLING POINTS: cyber security analysis digital computer forensics incident response application security operating system windows Linux cryptographic controls network programming language incident response web applications Firewall and security orchestration automation response tools network sniffers packet tracing tools DSS NAI SnifferPro ethereal and tcp dump The Associate Principal, Cyber Defense will help plan actions and lead security professionals in the analysis and determination of threats to the enterprise, vulnerabilities in the environment, and how our company will best defend itself against these threats. Position will enhance the process around monitoring third-party security-related feeds, websites, forums, and mailing lists for information regarding cyber threats, vulnerabilities, and exploits. Primary Duties and Responsibilities: Incident Management and Security Analysis: Lead cyber security incident responders in response activities including investigation, coordination, review, and reporting. Oversee technical analysis of security events while coordinating incident response activities with internal and external teams. Qualifications : Incident Response playbook development managing incident analysis and remediation. Network sniffers and packet tracing tools (DSS, NAI SnifferPro, Ethereal and tcpdump). Standard technical writing tools including MS Word, Excel, Project and Visio Education and/or Experience: Minimum three years of information security experience, preferably in the financial services industry. Minimum two years hands-on security operations experience including interdisciplinary experience with four or more of the following: Cyber Threat Analysis, Digital Computer Forensics, Incident Response, Application Security, Operating Systems Security, Cryptographic Controls, Networking, Programming languages, Incident Response Minimum one year in a leadership role or team/project lead capacity. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies. Industry knowledge of leading-edge security technologies and methods
29/05/2023
Full time
Associate Principal, Cyber Defense SALARY: $150K - $165K PLUS 15% BONUS Hybrid: 3 days on site, 2 days remote SELLING POINTS: cyber security analysis digital computer forensics incident response application security operating system windows Linux cryptographic controls network programming language incident response web applications Firewall and security orchestration automation response tools network sniffers packet tracing tools DSS NAI SnifferPro ethereal and tcp dump The Associate Principal, Cyber Defense will help plan actions and lead security professionals in the analysis and determination of threats to the enterprise, vulnerabilities in the environment, and how our company will best defend itself against these threats. Position will enhance the process around monitoring third-party security-related feeds, websites, forums, and mailing lists for information regarding cyber threats, vulnerabilities, and exploits. Primary Duties and Responsibilities: Incident Management and Security Analysis: Lead cyber security incident responders in response activities including investigation, coordination, review, and reporting. Oversee technical analysis of security events while coordinating incident response activities with internal and external teams. Qualifications : Incident Response playbook development managing incident analysis and remediation. Network sniffers and packet tracing tools (DSS, NAI SnifferPro, Ethereal and tcpdump). Standard technical writing tools including MS Word, Excel, Project and Visio Education and/or Experience: Minimum three years of information security experience, preferably in the financial services industry. Minimum two years hands-on security operations experience including interdisciplinary experience with four or more of the following: Cyber Threat Analysis, Digital Computer Forensics, Incident Response, Application Security, Operating Systems Security, Cryptographic Controls, Networking, Programming languages, Incident Response Minimum one year in a leadership role or team/project lead capacity. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies. Industry knowledge of leading-edge security technologies and methods
Request Technology - Craig Johnson
Oakland, California
*We are unable to sponsor for this Remote permanent role* *Position is bonus eligible* Prestigious Enterprise Company is currently seeking a Lead Cyber Security Penetration & Vulnerability Tester. Candidate will provide domain expertise in Penetration testing of Infrastructure and Networks, Web Applications, Cloud and Social engineering! In this role, the candidate will provide improved vulnerability analysis and contextual feedback to stakeholders to support the resolution of discovered vulnerabilities and facilitate risk awareness. Responsibilities: Penetration Testing and Red Team assessments Perform internal and external penetration testing of network infrastructure and applications Red team assessments including physical, social engineering, and network exploitation Perform well controlled vulnerability exploitation/penetration testing on applications, network protocols, and databases Perform network reconnaissance, OSINT, social engineering, and physical security reviews Demonstrate advanced understanding of business processes, internal control risk management, IT controls and related standards Effectively communicate findings and strategy to stakeholders, including technical staff and executive leadership Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement Purple Team and Adversary simulations Participate in regular Purple team exercises and perform adversary simulations to test defense controls Assist with scoping prospective engagements, leading engagements from kickoff through remediation Work closely with Blue team to test efficacy of existing alerts and help create new detection. Create findings reports and communicate to stakeholders Contribute to enhancing the team's toolkit Write custom scripts to automate tasks related to finding new vulnerabilities Maintain runbooks to continually improve penetration testing methodologies and threat modelling. The Red team is responsible for testing the overall strength of our organization's defenses (the technology, the processes, and the people) by simulating the objectives and actions of an attacker! This role provides domain expertise in Penetration testing of Infrastructure and Networks, Web Applications, Cloud and Social engineering, as well as Red Team and Purple Team internal engagements. Additionally, you will provide improved vulnerability analysis and contextual feedback to partners to support the resolution of discovered vulnerabilities and facilitate risk awareness. Qualifications : 8-10 years of experience in Penetration testing, Red Team and Purple Team Bachelor of Science in Engineering, Computer Science, Information Technology, or equivalent work experience Advanced knowledge in common penetration testing tools (Metasploit, Burp Suite, Cobalt Strike, Empire, KALI Linux etc.) Must have a demonstrable understanding of voice and data networks, major operating systems, Active Directory, cloud technologies Must demonstrate knowledge of MITRE's ATT&CK framework, execute and chain TTP's Must be able to critically examine an organization and system through the perspective of a threat actor and articulate risk in clear, precise terms. Ability to optimally code in a Scripting language (Python, Bash, PowerShell, Perl, etc.) OSCP 7+ to 10 years experience Seniority Level - Other Management Experience Required - No Minimum Education - Bachelor's Degree Willingness to Travel - Never
26/05/2023
Full time
*We are unable to sponsor for this Remote permanent role* *Position is bonus eligible* Prestigious Enterprise Company is currently seeking a Lead Cyber Security Penetration & Vulnerability Tester. Candidate will provide domain expertise in Penetration testing of Infrastructure and Networks, Web Applications, Cloud and Social engineering! In this role, the candidate will provide improved vulnerability analysis and contextual feedback to stakeholders to support the resolution of discovered vulnerabilities and facilitate risk awareness. Responsibilities: Penetration Testing and Red Team assessments Perform internal and external penetration testing of network infrastructure and applications Red team assessments including physical, social engineering, and network exploitation Perform well controlled vulnerability exploitation/penetration testing on applications, network protocols, and databases Perform network reconnaissance, OSINT, social engineering, and physical security reviews Demonstrate advanced understanding of business processes, internal control risk management, IT controls and related standards Effectively communicate findings and strategy to stakeholders, including technical staff and executive leadership Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement Purple Team and Adversary simulations Participate in regular Purple team exercises and perform adversary simulations to test defense controls Assist with scoping prospective engagements, leading engagements from kickoff through remediation Work closely with Blue team to test efficacy of existing alerts and help create new detection. Create findings reports and communicate to stakeholders Contribute to enhancing the team's toolkit Write custom scripts to automate tasks related to finding new vulnerabilities Maintain runbooks to continually improve penetration testing methodologies and threat modelling. The Red team is responsible for testing the overall strength of our organization's defenses (the technology, the processes, and the people) by simulating the objectives and actions of an attacker! This role provides domain expertise in Penetration testing of Infrastructure and Networks, Web Applications, Cloud and Social engineering, as well as Red Team and Purple Team internal engagements. Additionally, you will provide improved vulnerability analysis and contextual feedback to partners to support the resolution of discovered vulnerabilities and facilitate risk awareness. Qualifications : 8-10 years of experience in Penetration testing, Red Team and Purple Team Bachelor of Science in Engineering, Computer Science, Information Technology, or equivalent work experience Advanced knowledge in common penetration testing tools (Metasploit, Burp Suite, Cobalt Strike, Empire, KALI Linux etc.) Must have a demonstrable understanding of voice and data networks, major operating systems, Active Directory, cloud technologies Must demonstrate knowledge of MITRE's ATT&CK framework, execute and chain TTP's Must be able to critically examine an organization and system through the perspective of a threat actor and articulate risk in clear, precise terms. Ability to optimally code in a Scripting language (Python, Bash, PowerShell, Perl, etc.) OSCP 7+ to 10 years experience Seniority Level - Other Management Experience Required - No Minimum Education - Bachelor's Degree Willingness to Travel - Never
*We are unable to sponsor as this is a permanent Full time role* A prestigious company is on the search for an Information Security Engineer. This engineer will get their hands on everything related to cybersecurity which includes, network defense, TCP/IP Networking, Active Directory, Firewalls, vulnerabilities, compliance, etc. Responsibilities: This position works on highly complex projects and maintains knowledge across multiple domains (networking, server, end points, mobile, cloud, etc.). The Information Security Engineer has a thorough understanding of network defense technologies, TCP/IP Networking, Active Directory, DHCP, DNS, network security monitoring tools, secure engineering principles and technical security testing. This is a hands-on role which will be involved in patching, maintaining Firewalls, scanning for vulnerabilities, keeping current on the latest security threats and trends, and reviewing technical architecture for security compliance. Qualifications: Bachelor's Degree in Business, Computer Science or related field. 3-5 years of enterprise IT security engineering experience. CISSP preferred. Must possess expert understanding of Information Technology, Information Security, and Risk Management. Knowledge of security and control frameworks, such as ISO 17799, COBIT, and NIST CyberSecurity Framework. Systems Security Certified Practitioner (SSCP), CompTIA Security+, or GIAC Security Essentials Certification (GSEC) certification required or must be obtained within 2 years of hire. Experience with ProofPoint, Cisco AMP, SpecOps and other industry standard security tools. Experience with Palo Alto Firewalls Advanced knowledge of Network Security Advanced knowledge of Endpoint Security Advanced knowledge of Server hardening, patching, and base-lining Advanced knowledge of Mobile device security Advanced knowledge of Data Loss Prevention Advanced knowledge of IDS/IPS Advanced knowledge of Log analysis Skilled Critical Thinking Cisco ISE or NAC experience desired Keeps current on emerging threats and mitigation strategies. Scripting (Python, Perl, Powershell) knowledge preferred.
26/05/2023
Full time
*We are unable to sponsor as this is a permanent Full time role* A prestigious company is on the search for an Information Security Engineer. This engineer will get their hands on everything related to cybersecurity which includes, network defense, TCP/IP Networking, Active Directory, Firewalls, vulnerabilities, compliance, etc. Responsibilities: This position works on highly complex projects and maintains knowledge across multiple domains (networking, server, end points, mobile, cloud, etc.). The Information Security Engineer has a thorough understanding of network defense technologies, TCP/IP Networking, Active Directory, DHCP, DNS, network security monitoring tools, secure engineering principles and technical security testing. This is a hands-on role which will be involved in patching, maintaining Firewalls, scanning for vulnerabilities, keeping current on the latest security threats and trends, and reviewing technical architecture for security compliance. Qualifications: Bachelor's Degree in Business, Computer Science or related field. 3-5 years of enterprise IT security engineering experience. CISSP preferred. Must possess expert understanding of Information Technology, Information Security, and Risk Management. Knowledge of security and control frameworks, such as ISO 17799, COBIT, and NIST CyberSecurity Framework. Systems Security Certified Practitioner (SSCP), CompTIA Security+, or GIAC Security Essentials Certification (GSEC) certification required or must be obtained within 2 years of hire. Experience with ProofPoint, Cisco AMP, SpecOps and other industry standard security tools. Experience with Palo Alto Firewalls Advanced knowledge of Network Security Advanced knowledge of Endpoint Security Advanced knowledge of Server hardening, patching, and base-lining Advanced knowledge of Mobile device security Advanced knowledge of Data Loss Prevention Advanced knowledge of IDS/IPS Advanced knowledge of Log analysis Skilled Critical Thinking Cisco ISE or NAC experience desired Keeps current on emerging threats and mitigation strategies. Scripting (Python, Perl, Powershell) knowledge preferred.
Request Technology - Craig Johnson
East Chicago, Indiana
*We are unable to sponsor for this permanent Full time role* Prestigious Enterprise Company is currently seeking an Information Security Engineer. Candidate is responsible for maintaining and implementing the cybersecurity infrastructure and program. This position will work very closely and collaborate with other technical teams to respond to threats as well as on a daily basis to maintain the security posture of the environment. Responsibilities: This position works on highly complex projects and maintains knowledge across multiple domains (networking, server, end points, mobile, cloud, etc.). The Information Security Engineer has a thorough understanding of network defense technologies, TCP/IP Networking, Active Directory, DHCP, DNS, network security monitoring tools, secure engineering principles and technical security testing. This is a hands-on role which will be involved in patching, maintaining Firewalls, scanning for vulnerabilities, keeping current on the latest security threats and trends, and reviewing technical architecture for security compliance. This individual will be regarded as an expert in all things cybersecurity related. Qualifications: Bachelor's Degree in Business, Computer Science or related field. 3-5 years of enterprise IT security engineering experience. CISSP preferred. Must possess expert understanding of Information Technology, Information Security, and Risk Management. Knowledge of security and control frameworks, such as ISO 17799, COBIT, and NIST CyberSecurity Framework. Systems Security Certified Practitioner (SSCP), CompTIA Security+, or GIAC Security Essentials Certification (GSEC) certification required or must be obtained within 2 years of hire. Experience with ProofPoint, Cisco AMP, SpecOps and other industry standard security tools. Experience with Palo Alto Firewalls Advanced knowledge of Network Security Advanced knowledge of Endpoint Security Advanced knowledge of Server hardening, patching, and base-lining Advanced knowledge of Mobile device security Advanced knowledge of Data Loss Prevention Advanced knowledge of IDS/IPS Advanced knowledge of Log analysis Skilled Critical Thinking Cisco ISE or NAC experience desired Keeps current on emerging threats and mitigation strategies. Scripting (Python, Perl, Powershell) knowledge preferred.
26/05/2023
Full time
*We are unable to sponsor for this permanent Full time role* Prestigious Enterprise Company is currently seeking an Information Security Engineer. Candidate is responsible for maintaining and implementing the cybersecurity infrastructure and program. This position will work very closely and collaborate with other technical teams to respond to threats as well as on a daily basis to maintain the security posture of the environment. Responsibilities: This position works on highly complex projects and maintains knowledge across multiple domains (networking, server, end points, mobile, cloud, etc.). The Information Security Engineer has a thorough understanding of network defense technologies, TCP/IP Networking, Active Directory, DHCP, DNS, network security monitoring tools, secure engineering principles and technical security testing. This is a hands-on role which will be involved in patching, maintaining Firewalls, scanning for vulnerabilities, keeping current on the latest security threats and trends, and reviewing technical architecture for security compliance. This individual will be regarded as an expert in all things cybersecurity related. Qualifications: Bachelor's Degree in Business, Computer Science or related field. 3-5 years of enterprise IT security engineering experience. CISSP preferred. Must possess expert understanding of Information Technology, Information Security, and Risk Management. Knowledge of security and control frameworks, such as ISO 17799, COBIT, and NIST CyberSecurity Framework. Systems Security Certified Practitioner (SSCP), CompTIA Security+, or GIAC Security Essentials Certification (GSEC) certification required or must be obtained within 2 years of hire. Experience with ProofPoint, Cisco AMP, SpecOps and other industry standard security tools. Experience with Palo Alto Firewalls Advanced knowledge of Network Security Advanced knowledge of Endpoint Security Advanced knowledge of Server hardening, patching, and base-lining Advanced knowledge of Mobile device security Advanced knowledge of Data Loss Prevention Advanced knowledge of IDS/IPS Advanced knowledge of Log analysis Skilled Critical Thinking Cisco ISE or NAC experience desired Keeps current on emerging threats and mitigation strategies. Scripting (Python, Perl, Powershell) knowledge preferred.
Associate Principal, Cyber Defense Associate Principal, Cyber Defense SALARY: $150K - $165K PLUS 15% BONUS Hybrid: 3 days on site, 2 days remote SELLING POINTS: cyber security analysis digital computer forensics incident response application security operating system windows Linux cryptographic controls network programming language incident response web applications Firewall and security orchestration automation response tools network sniffers packet tracing tools DSS NAI SnifferPro ethereal and tcp dump The Associate Principal, Cyber Defense will help plan actions and lead security professionals in the analysis and determination of threats to the enterprise, vulnerabilities in the environment, and how our company will best defend itself against these threats. Position will enhance the process around monitoring third-party security-related feeds, websites, forums, and mailing lists for information regarding cyber threats, vulnerabilities, and exploits. Primary Duties and Responsibilities: Incident Management and Security Analysis: Lead cyber security incident responders in response activities including investigation, coordination, review, and reporting. Oversee technical analysis of security events while coordinating incident response activities with internal and external teams. Qualifications : Incident Response playbook development managing incident analysis and remediation. Network sniffers and packet tracing tools (DSS, NAI SnifferPro, Ethereal and tcpdump). Standard technical writing tools including MS Word, Excel, Project and Visio Education and/or Experience: Minimum three years of information security experience, preferably in the financial services industry. Minimum two years hands-on security operations experience including interdisciplinary experience with four or more of the following: Cyber Threat Analysis, Digital Computer Forensics, Incident Response, Application Security, Operating Systems Security, Cryptographic Controls, Networking, Programming languages, Incident Response Minimum one year in a leadership role or team/project lead capacity. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies. Industry knowledge of leading-edge security technologies and methods
25/05/2023
Full time
Associate Principal, Cyber Defense Associate Principal, Cyber Defense SALARY: $150K - $165K PLUS 15% BONUS Hybrid: 3 days on site, 2 days remote SELLING POINTS: cyber security analysis digital computer forensics incident response application security operating system windows Linux cryptographic controls network programming language incident response web applications Firewall and security orchestration automation response tools network sniffers packet tracing tools DSS NAI SnifferPro ethereal and tcp dump The Associate Principal, Cyber Defense will help plan actions and lead security professionals in the analysis and determination of threats to the enterprise, vulnerabilities in the environment, and how our company will best defend itself against these threats. Position will enhance the process around monitoring third-party security-related feeds, websites, forums, and mailing lists for information regarding cyber threats, vulnerabilities, and exploits. Primary Duties and Responsibilities: Incident Management and Security Analysis: Lead cyber security incident responders in response activities including investigation, coordination, review, and reporting. Oversee technical analysis of security events while coordinating incident response activities with internal and external teams. Qualifications : Incident Response playbook development managing incident analysis and remediation. Network sniffers and packet tracing tools (DSS, NAI SnifferPro, Ethereal and tcpdump). Standard technical writing tools including MS Word, Excel, Project and Visio Education and/or Experience: Minimum three years of information security experience, preferably in the financial services industry. Minimum two years hands-on security operations experience including interdisciplinary experience with four or more of the following: Cyber Threat Analysis, Digital Computer Forensics, Incident Response, Application Security, Operating Systems Security, Cryptographic Controls, Networking, Programming languages, Incident Response Minimum one year in a leadership role or team/project lead capacity. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies. Industry knowledge of leading-edge security technologies and methods
