Listing Description
Role Value Proposition:
The Red Team Operator will be part of MetLife’s Threat Research Team and will be focused on simulating threat actor group activity and testing MetLife’s suite of security tools. This job will be primarily focused on evaluating the security posture of people, processes, and technology within MetLife.
Key Responsibilities:
- Keep up to date with current and emerging exploits, TTPs, and offensive tooling
- Familiar with and safely able to use various attacker tools, techniques, and procedures
- Provide offensive security domain expertise in purple team exercises
- Evaluates and leverages automated tools that perform security assessments
- Performs controlled vulnerability penetration testing using manual and automated techniques
- Mature Red Team capabilities through development of scripts, effective techniques and process automation.
- Develop comprehensive metrics, reports, and presentations on Red Team activities and findings for technical and executive stakeholders. Document Red Team processes, tactics, techniques, and procedures.
Essential Business Experience and Technical Skills:
Required:
- Bachelor’s degree in computer science, information systems or related field, or equivalent work experience. Minimum of 2+ years of Red Team experience
- Strong understanding of Windows operating systems (Windows, Unix/Linux, MacOS etc.)and command line tools, network protocols, TCP/IP fundamentals, and security infrastructure.
- Knowledge of networking protocols: TCP/IP, HTTP/HTTPs, FTP, IRC etc.
- Scripting (PowerShell, Bash, Python) and development experience for analysis and automating repeatable processes
- Experience with various testing tools such as Metasploit, Nmap, Nessus, Burp Suite, Cobalt Strike, Covenant, Empire,Wireshark, TCPdump etc.
- Network penetration testing and manipulation of network infrastructure
- Ability to think “outside the box” during simulated exercises
- Strong communication skills, both written and verbal
- Ability to collaborate with different teams
Preferred:
- Strong experience analyzing raw log files (i.e. firewall, IDS, PCAP, system logs)and performing data correlation.
- Thorough understanding of network protocols, data on the wire, and covert channels
- The ability to think and act as various threat actors during a simulation
- Experience working with virtualization solutions
Listing Details
- Salary: $100000 - $150000
- Citizenship: Not Provided
- Incentives: Bonus
- Education: High School Diploma
- Travel: No Travel
- Telework: Full Telecommute