Senior Red Team Engineer - Automatic Data Processing Alpharetta, GA, USA Bookmark Share Print 1230 0 6

Listing Description

Senior Red Team Engineer

Available Locations:

• Alpharetta GA

• Augusta GA

• Any ADP Location

The Red Team is dedicated to performing 'objective-based' assessments replicating known threat actors, with known tactics, techniques and procedures. The goal will be to assess and analyze ADP's security posture, as well as its ability to respond to hacker-simulated attacks, with the main objective to help the Critical Incident Response Center (CIRC) improve defensive response and posture. This position requires an established expert responsible for scoping engagements, presenting results and methodologies, and working with stakeholders across various business units to remediate findings. This position requires a professional who works well with others, and performs in challenging situations, is pragmatic, and is motivated by long-term results. Additionally, the Red Team will be responsible for identifying and testing new tools, techniques and methods used for red-teaming activities. Finally, the Red Team will be responsible for communicating testing methodologies and findings to various business units at varying technical levels.JOB DUTIES

• Conduct ADP’s Red Team exercises, Red/Blue teaming programs, and provide input into cyber security related tabletop exercises.

• Responsible for documenting and timelining all actions and findings for the CIRC, and summarizing the exercise for senior leadership, including areas of success and areas of opportunities.

• Creates any supporting tools, templates or process documents to support the mission.

• The Red Team works closely with other organizations within ADP in order to develop the strong partnerships required to meet cybersecurity technology goals.

• Stays up-to-date on the latest adversary tactics, techniques and tooling

Knowledge

• Deep understanding of penetration testing and red teaming frameworks and concepts

• Passion for protecting networks, systems and data from cyber attacks

• Strong understanding of cybersecurity concepts and related technology solutions

• Experience leading an enterprise wide cybersecurity internal assessment, including a knowledge of control strategies for a global organization

• Strong consultative skills required to work directly with other technology teams with appropriate influence

• Building strong networks within the firm to spot and capitalize on opportunities to get involved in projects that others are leading across a number of different business units and sectors

• Manage and deliver large projects by developing the project team, assessing engagement risks throughout, driving conclusions, and reviewing / challenging the output produced by the team

• Helping to grow and develop our team through hands on training and coaching

• Programming experience in on or more languages such as Python, Ruby, Powershell, BASH, Java

• Advanced knowledge of operating and database security (Windows, UNIX/Linux, SQL, Oracle, etc)

Skills

• Able to communicate to anyone, from the most technical operator to the least technical business partner

• Must be proficient with the common penetration testing tools (Metasploit, Burp Suite, Cobalt Strike, etc)

• Ability to interpret and document business and technical requirements

• Good interpersonal, verbal and written communication skills, Detail oriented with good time and analytical skills, Ability to exercise prudent judgment and offer knowledgeable advice, Ability to work both independently and in a team environment, Ability to manage multiple projects and tasks, Ability to manage production sensitive situations

• Demonstrated level of integrity when dealing with confidential and sensitive information

• Demonstrated knowledge of tactics used by malicious insiders, techniques and procedures associated with state sponsored threat actors

• Able to examine an organization from the standpoint of a threat actor and articulate risk in clear, precise terms

• Ability to effectively code in a scripting language (Python, Powershell, etc)

• Demonstrated knowledge of internal penetration testing tactics, techniques, and procedures

• Experience performing application security source code reviews

• Experience developing custom exploits

• Experience in the security aspects of multiple platforms, operating systems, software, and network protocols

• Hands-on experience with commercial and open-source network and application security testing tools

Education

• Bachelor’s Degree in Computer Science, Computer Engineering, Information Technology, Information Security, Information Assurance, Information Management or equivalent experience required

Experience

• 3-5 years of experience in red teaming, penetration testing, vulnerability management, or ethical hacking required

Req 185481