Job Opportunity: Offensive Security Specialist
We are seeking a highly skilled Offensive Security Specialist to join our team, focusing on Red Team activities.
The Security Group is responsible for protecting systems and data from information security threats. Our teams work together and with other groups to deliver preventive and detective controls and processes that reduce security risk.
The Red Team focuses on emulating adversaries and testing our ability to detect and respond to them. We're constantly identifying new and innovative attack techniques, reviewing the latest industry trends, and mapping out credible attack scenarios to run against our systems.
* Plan, design, and execute sophisticated threat scenarios to identify vulnerabilities and response gaps in our product, platform, and infrastructure.
* Research viable attack paths and demonstrate how the risks may apply to us through stealth operations and collaborative purple team engagements.
* Collaborate closely with security incident responders to continuously uplift our threat detection and response capabilities.
* Engage with cross-functional teams to communicate risks, provide recommendations, and develop effective risk mitigation strategies for enhancing security posture.
* Provide technical guidance, mentoring, and support to engineers conducting security assessments and vulnerability analysis.
You'll be working with a talented team to help us stay ahead of potential threats. If you have experience as an offensive security engineer and performing team engagements from reconnaissance through to actioning on objectives, we'd like to hear from you.
Requirements
* Demonstrated experience as an offensive security engineer and performing team engagements from reconnaissance through to actioning on objectives.
* Ability to effectively communicate operational findings, risk ratings, and recommendations to technical and non-technical stakeholders.
* Practical experience with offensive security tools and techniques, and how they can be applied within a complex business environment.
* Continuous development of knowledge around current and emerging security threats, and how those threats could impact us.