Request Technology - Craig Johnson
San Francisco, California
*We are unable to sponsor for this Remote permanent role* *Position is bonus eligible* Prestigious Enterprise Company is currently seeking a Senior RBAC Engineer, preferably with strong SailPoint experience. This individual will be a technical leader in RBAC solutions and should also be able to effectively collaborate, acting as a liaison with business and technology partners. This role requires extensive background and experience in Identity Management and Role-based Access Control. Responsibilities: Analyze the users, including their workflows and the resources they need. Conduct audits of the roles on an ongoing basis to keep them up to date and align them with current requirements. Create a basic role that includes the access every user needs. Determine which roles have a common set of access requirements. Ensure RBAC is integrated across all systems across the organization. Establish a process for handling role changes, including setting up and decommissioning users. Identify the resources that require access control. Qualifications: 8+ years of IT experience with 5+ years developing and implementing enterprise RBAC solutions Excellent written and verbal communication Collaborative approach to problem solving Work well under pressure to produce results Sensitivity to business processes and drivers Demonstrated history of influencing change within teams and across the organization Bachelor's and/or Master's degree in Computer Science, Computer Engineering, Information Systems, etc. (or demonstrated professional experience)
28/03/2024
Full time
*We are unable to sponsor for this Remote permanent role* *Position is bonus eligible* Prestigious Enterprise Company is currently seeking a Senior RBAC Engineer, preferably with strong SailPoint experience. This individual will be a technical leader in RBAC solutions and should also be able to effectively collaborate, acting as a liaison with business and technology partners. This role requires extensive background and experience in Identity Management and Role-based Access Control. Responsibilities: Analyze the users, including their workflows and the resources they need. Conduct audits of the roles on an ongoing basis to keep them up to date and align them with current requirements. Create a basic role that includes the access every user needs. Determine which roles have a common set of access requirements. Ensure RBAC is integrated across all systems across the organization. Establish a process for handling role changes, including setting up and decommissioning users. Identify the resources that require access control. Qualifications: 8+ years of IT experience with 5+ years developing and implementing enterprise RBAC solutions Excellent written and verbal communication Collaborative approach to problem solving Work well under pressure to produce results Sensitivity to business processes and drivers Demonstrated history of influencing change within teams and across the organization Bachelor's and/or Master's degree in Computer Science, Computer Engineering, Information Systems, etc. (or demonstrated professional experience)
Request Technology - Craig Johnson
San Francisco, California
*We are unable to sponsor for this 6+ Month Contract role* Prestigious Fortune 500 Company is currently seeking a Security Red Team Operator. Candidate will take a structured approach to Red Team operations (ie, testing in lab environments, creating and operating according to runbooks and SOPs, writing detailed after-action reports, participating in daily operation syncs). This is currently a two-person team. As such, the candidate will need to be a highly motivated, self-sufficient, and capable of collaborating on a small team where consensus is a must for operations to be successful. This role will also be involved in our Tabletop Exercise planning and execution, and therefore, will need excellent written and oral communication skills when dealing with all levels of the organization, from executives to individual contributors. The Red team is responsible for testing the overall strength of our organizations defenses (the technology, the processes, and the people) by simulating the objectives and actions of an attacker. Responsibilities: Perform internal and external penetration testing of network infrastructure and applications Perform Red team assessments including physical, social engineering, and network exploitation Perform well controlled vulnerability exploitation/penetration testing on applications, network protocols, and databases Perform network reconnaissance, OSINT, social engineering, and physical security reviews Participate in regular exercises and perform adversary simulations to test defense controls Assist with scoping prospective engagements, leading engagements from kickoff through remediation Work closely with Blue team to test efficacy of existing alerts and help create new detection. Create findings reports and communicate to stakeholders Contribute to enhancing the teams toolkit Write custom scripts to automate tasks related to finding new vulnerabilities Maintain runbooks to continually improve penetration testing methodologies and threat modelling. Qualifications : 5+ years of experience in Penetration testing, Red Team and Purple Team Bachelor of Science in Engineering, Computer Science, Information Technology, or equivalent work experience Advanced knowledge in common penetration testing tools (Metasploit, Burp Suite, Cobalt Strike, Empire, KALI Linux etc.) Must have a demonstrable understanding of voice and data networks, major operating systems, Active Directory, cloud technologies Must demonstrate knowledge of MITREs ATT&CK framework, execute and chain TTPs Must be able to critically examine an organization and system through the perspective of a threat actor and articulate risk in clear, precise terms. Ability to optimally code in a Scripting language (Python, Bash, PowerShell, Perl, etc.) OSCP
13/03/2024
Project-based
*We are unable to sponsor for this 6+ Month Contract role* Prestigious Fortune 500 Company is currently seeking a Security Red Team Operator. Candidate will take a structured approach to Red Team operations (ie, testing in lab environments, creating and operating according to runbooks and SOPs, writing detailed after-action reports, participating in daily operation syncs). This is currently a two-person team. As such, the candidate will need to be a highly motivated, self-sufficient, and capable of collaborating on a small team where consensus is a must for operations to be successful. This role will also be involved in our Tabletop Exercise planning and execution, and therefore, will need excellent written and oral communication skills when dealing with all levels of the organization, from executives to individual contributors. The Red team is responsible for testing the overall strength of our organizations defenses (the technology, the processes, and the people) by simulating the objectives and actions of an attacker. Responsibilities: Perform internal and external penetration testing of network infrastructure and applications Perform Red team assessments including physical, social engineering, and network exploitation Perform well controlled vulnerability exploitation/penetration testing on applications, network protocols, and databases Perform network reconnaissance, OSINT, social engineering, and physical security reviews Participate in regular exercises and perform adversary simulations to test defense controls Assist with scoping prospective engagements, leading engagements from kickoff through remediation Work closely with Blue team to test efficacy of existing alerts and help create new detection. Create findings reports and communicate to stakeholders Contribute to enhancing the teams toolkit Write custom scripts to automate tasks related to finding new vulnerabilities Maintain runbooks to continually improve penetration testing methodologies and threat modelling. Qualifications : 5+ years of experience in Penetration testing, Red Team and Purple Team Bachelor of Science in Engineering, Computer Science, Information Technology, or equivalent work experience Advanced knowledge in common penetration testing tools (Metasploit, Burp Suite, Cobalt Strike, Empire, KALI Linux etc.) Must have a demonstrable understanding of voice and data networks, major operating systems, Active Directory, cloud technologies Must demonstrate knowledge of MITREs ATT&CK framework, execute and chain TTPs Must be able to critically examine an organization and system through the perspective of a threat actor and articulate risk in clear, precise terms. Ability to optimally code in a Scripting language (Python, Bash, PowerShell, Perl, etc.) OSCP
Request Technology - Craig Johnson
San Francisco, California
*This is a remote 6+ month contract role, there is no sponsorship* Prestigious Enterprise Company is currently seeking a Windows Systems PowerShell Documentation Analyst who can present information technology clearly to a variety of internal and external audiences. You will help the information technology department refine and articulate ideas and translate them into easy-to-understand written pieces. Responsibilities: Collaborating with IT communications to create and deliver messages to internal groups (eg, IT, legal, compliance, internal audit) Collaborating with Information Technology leadership Meeting with, consulting, and gaining knowledge of internal client representative or groups to assess and recommend communications that support business needs. Qualifications: Windows, AD, VM technology experience PowerShell Scripting experience Ability to comprehend complex company documents, procedures and policies and distill these into easy-to-understand language that supports corporate strategy Ability to work cooperatively in a team environment Ability to speak effectively before external and internal groups Proficient in current industry standard PC applications and systems Other related skills and/or abilities may be required
11/03/2024
Project-based
*This is a remote 6+ month contract role, there is no sponsorship* Prestigious Enterprise Company is currently seeking a Windows Systems PowerShell Documentation Analyst who can present information technology clearly to a variety of internal and external audiences. You will help the information technology department refine and articulate ideas and translate them into easy-to-understand written pieces. Responsibilities: Collaborating with IT communications to create and deliver messages to internal groups (eg, IT, legal, compliance, internal audit) Collaborating with Information Technology leadership Meeting with, consulting, and gaining knowledge of internal client representative or groups to assess and recommend communications that support business needs. Qualifications: Windows, AD, VM technology experience PowerShell Scripting experience Ability to comprehend complex company documents, procedures and policies and distill these into easy-to-understand language that supports corporate strategy Ability to work cooperatively in a team environment Ability to speak effectively before external and internal groups Proficient in current industry standard PC applications and systems Other related skills and/or abilities may be required
Request Technology - Craig Johnson
San Francisco, California
*We are unable to sponsor for this Remote contract role* Prestigious Enterprise Company is currently seeking a Senior SailPoint Development Engineer. Candidate will support the Identity and Access Management service, which seeks to create a delightful access experience that optimizes usability, accountability, and cyber risk exposure. This role requires a seasoned SailPoint IIQ developer with heavy experience integrating web services to mature the IAM application roadmap. Qualifications: Experience with various Identity and Access management concepts and technologies. Experience must include SailPoint IIQ. CyberArk a plus. Competency with one or more Scripting or programming languages such as Python, Java, PowerShell, Bash, C#, C/C++, etc. Proven history integrating web services Knowledge of professional software engineering practices and best practices for the full software development life cycle, including coding standards, code reviews, source control management, build processes, testing and operations; Agile or Scaled Agile Framework (SAFe) a plus. Hands on experience with a major cloud platform, such as AWS or Azure.
04/03/2024
Project-based
*We are unable to sponsor for this Remote contract role* Prestigious Enterprise Company is currently seeking a Senior SailPoint Development Engineer. Candidate will support the Identity and Access Management service, which seeks to create a delightful access experience that optimizes usability, accountability, and cyber risk exposure. This role requires a seasoned SailPoint IIQ developer with heavy experience integrating web services to mature the IAM application roadmap. Qualifications: Experience with various Identity and Access management concepts and technologies. Experience must include SailPoint IIQ. CyberArk a plus. Competency with one or more Scripting or programming languages such as Python, Java, PowerShell, Bash, C#, C/C++, etc. Proven history integrating web services Knowledge of professional software engineering practices and best practices for the full software development life cycle, including coding standards, code reviews, source control management, build processes, testing and operations; Agile or Scaled Agile Framework (SAFe) a plus. Hands on experience with a major cloud platform, such as AWS or Azure.
Request Technology - Craig Johnson
San Francisco, California
*We are unable to sponsor for this Remote contract role* Prestigious Enterprise Company is currently seeking a Senior CyberArk Engineer. Candidate will be responsible for the implementation and management of CyberArk and other Privileged Management solutions. Candidate will have familiarity working with most CyberArk products, including but not limited to: Privileged Access Manager, Vendor Privileged Access Manager, Cloud Entitlements Manager, Endpoint Privilege Manager, Privileged Session Manager, Privileged Threat Analytics, and Privileged Cloud. Responsibilities: Identifies and leads privileged access management improvements and projects to improve our overall security posture Manages the end-to-end CyberArk environment/application from maintenance to administration Manages all privileged credentials across a hybrid environment Works collaboratively across the business to define and create CyberArk policies, platforms, safes Responsible for utilizing KPI's and metrics to report out on CyberArk system health Actively protects the integrity and confidentiality of our information assets while enabling business functionality in all systems and environments by supporting applicable security solutions Supports departmental and corporate goals by meeting key performance indicators and defined metrics Supports and follows Change Management processes and procedures Serves as a technical escalation resource to less experienced team members Participates in and supports Compliance processes, providing leadership and support to Analysts. Recommends and implements new functionality to enhance compliance processes while ensuring compliance controls are followed and effective. Responsible for 24x7x365 on-call escalation rotational support Qualifications: Deep understanding of CyberArk and its components Prior utilization of representational state transfer application programming interface (REST API) Experience with PAM related architecture and best practices Strong understanding of Cloud Service Providers and relevant experience with integration and configuration of PAM platforms into the cloud Operational experience helping manage CyberArk and Hashi Vault infrastructure Knowledge or usage of Terraform/Hashicorp Configuration language (HCL) Strong understanding of modern deployment technologies including CICD, Terraform, Ansible, and Docker Proficiency in cryptography. Experience with Windows, Unix, Cisco, platforms, and controls. 3-5+ Years' direct experience with CyberArk or Hashi at an Engineering level 5+ Years' experience in PAM management and platforms PAM related certifications (CyberArk Defender OR Sentry/Hashi Administrator)
04/03/2024
Project-based
*We are unable to sponsor for this Remote contract role* Prestigious Enterprise Company is currently seeking a Senior CyberArk Engineer. Candidate will be responsible for the implementation and management of CyberArk and other Privileged Management solutions. Candidate will have familiarity working with most CyberArk products, including but not limited to: Privileged Access Manager, Vendor Privileged Access Manager, Cloud Entitlements Manager, Endpoint Privilege Manager, Privileged Session Manager, Privileged Threat Analytics, and Privileged Cloud. Responsibilities: Identifies and leads privileged access management improvements and projects to improve our overall security posture Manages the end-to-end CyberArk environment/application from maintenance to administration Manages all privileged credentials across a hybrid environment Works collaboratively across the business to define and create CyberArk policies, platforms, safes Responsible for utilizing KPI's and metrics to report out on CyberArk system health Actively protects the integrity and confidentiality of our information assets while enabling business functionality in all systems and environments by supporting applicable security solutions Supports departmental and corporate goals by meeting key performance indicators and defined metrics Supports and follows Change Management processes and procedures Serves as a technical escalation resource to less experienced team members Participates in and supports Compliance processes, providing leadership and support to Analysts. Recommends and implements new functionality to enhance compliance processes while ensuring compliance controls are followed and effective. Responsible for 24x7x365 on-call escalation rotational support Qualifications: Deep understanding of CyberArk and its components Prior utilization of representational state transfer application programming interface (REST API) Experience with PAM related architecture and best practices Strong understanding of Cloud Service Providers and relevant experience with integration and configuration of PAM platforms into the cloud Operational experience helping manage CyberArk and Hashi Vault infrastructure Knowledge or usage of Terraform/Hashicorp Configuration language (HCL) Strong understanding of modern deployment technologies including CICD, Terraform, Ansible, and Docker Proficiency in cryptography. Experience with Windows, Unix, Cisco, platforms, and controls. 3-5+ Years' direct experience with CyberArk or Hashi at an Engineering level 5+ Years' experience in PAM management and platforms PAM related certifications (CyberArk Defender OR Sentry/Hashi Administrator)