Red Team Lead Operator - Federal Reserve Bank of Richmond Richmond, VA, USA Bookmark Share Print 816 0 0

Listing Description

The Richmond Fed is the proud home of the Federal Reserve’s National IT organization—a nationwide team delivering technology solutions and support across the Federal Reserve System. Many National IT employees are located in Richmond, while others are based across the U.S. at other Federal locations.

When you join our team, you’ll become part of a culture that welcomes differences, cares about our communities, and empowers each other to lead from where we are to make things better. Bring your passion and we’ll provide challenging and purposeful careers in a variety of fields, opportunities to grow and a wide range of benefits and perks that support your health and wealth. It’s all part of what makes #MyRichmondFed a great place to work!

About the Opportunity

National Incident Response Team (NIRT), a national service provider for the Federal Reserve System (FRS), delivers effective and efficient national intrusion detection, incident response, security intelligence, threat assessment, and vulnerability assessment services for the FRS. NIRT’s mission is to play a leading role in the FRS’ efforts to protect its information systems against unauthorized use.

NIRT’s Adversary Emulation team has an immediate opening for a Lead Operator to join their team as a key participant on a variety of engagements and projects that will target and evaluate the cyber security posture of people, processes, and technology within the FRS.

As a Lead Operator, you will report to the Sr. Manager and work on a team of security professionals focused on enabling business line initiatives by performing security assessments against people, processes, and technologies by using automated tools and expertise of hands-on tools that simulate attacker tactics, techniques and procedures (TTPs). You will also perform assessments for new and existing services, infrastructure, and applications to identify weaknesses before an attacker does.

You will use a variety of tools and techniques including penetration testing, red teaming, purple teaming, and social engineering and have the opportunity to combine your technical expertise with your imagination to discover innovative methods for ensuring that the FRS remains one step ahead of its adversaries around the world.

What You Will Do:

• Grow exploitation and post-exploitation strategy and technical capabilities across the organization
• Drive continuous process improvement, transformative activities and long-term cybersecurity solutions
• Lead through collaboration and motivating actions of others across wide audiences ranging from expert cybersecurity practitioners to executive business leaders
• Lead cross team enterprise initiatives to improve security posture and bridge recognized gaps
• Build and implement cybersecurity solutions across team members, business partners and organizational leaders to benefit the FRS via strategic guidance, technical support and offensive security expertise
• Oversee project development and integration surrounding security or technology capabilities to enable success of security initiatives
• Research industry trends and business partner missions to identify and prioritize key risk areas balancing business risk and cyber threats
• Perform cybersecurity advisor and red team operator duties as assigned

Qualifications: 

• 7+ years' experience in offensive cybersecurity roles, such as malware development, red teaming, penetration testing, purple team exercises in cloud and on-prem environments
• Bachelor's Degree or equivalent experience
• Mastery of all phases of adversary emulation operations including reconnaissance, social engineering, exploitation, post-exploitation, covert techniques, lateral movement, and data exfiltration
• Experience in Team Lead capacity is a big plus with excellent interpersonal, collaborative, and consultative skills
• Excellent attention to detail, oral and written communications skills tailored to audiences ranging from technical subject matter expert partners to senior executive stakeholders
• Advanced experience managing client relationships, including determining needs, managing expectations, and demonstrating commitment to delivering quality results
• Strong experience with scripting/programming of Python, PowerShell, or C# with the ability to create and customize tools
• The following certification(s) are highly preferred: OSCP, OSCE, GPEN, GXPN, GREM, GWAPT

Discover the Reason Why So Many People Love It Here!

When you join Federal Reserve’s National IT organization, not only will you find a challenging and purposeful career, you’ll also have access to a wide range of benefits and perks that support your health and wealth, including:

• Great medical benefits
• Pension and 401(k) with employer match
• Paid time off
• Tuition reimbursement
• Employee resource networks
• Paid volunteer leave

• Flexible work options

• Onsite amenities that make working here fun

Other Requirements and Considerations:

• A requirement of this position is that the employee must be fully vaccinated against COVID-19; individuals who are unable to be vaccinated due to a medical condition or sincerely held religious belief may request an accommodation from the Bank.
• Candidates should review the Bank’s Employee Code of Conduct to ensure compliance with conflict of interest rules and personal investment restrictions.
• Selected candidate is subject to special background check procedures.
• The selected candidate will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Eligibility for this specific position requires U.S. Citizenship.
• Salary range for Richmond, VA is $109,900 - $153,500. Salary adjustments may be made for different markets.
• Salary offered will be based on the job responsibilities and the individual’s knowledge, skills, and experience as defined in the job qualifications.