Red Team Security Engineer

SECURITY CLEARANCE REQUIREMENT: TS, WITH SCI ELIGIBILITY

This position requires onsite work. However, due to COVID-19, remote work on a rotational schedule is temporarily available.

***POSITION REQUIRES US CITIZENSHIP***

Position Description:

The Red Team Security Engineer will be responsible for:

• Scoping prospective engagements and managing team metrics
• Establishing quarterly goals team growth, conducting performance reviews and 1:1 meetings
• Scheduling resources for projects, managing multiple projects from kickoff to completion, and delivering executive out-briefs.

The Red Team Security Engineer is vital to the project lifecycle and must be able to deliver successful projects.  This role will also need to quickly assimilate new information within new client environments on a weekly or monthly basis. In addition, this role is expected to understand all the threat vectors to each environment and properly assess them.

Qualifications:

Required:

• Bachelor’s degree in a technical field or equivalent experience
• 3-5 years of experience leading or managing technical teams
• Assist with scoping prospective engagements, participating in engagements from kickoff through completion, and mentoring less experienced staff
• Polished presentation skills, to include capabilities at technical, executive, and board levels
• Identify, market, and develop new and pull-through business opportunities
• Articulate FireEye & Mandiant’s combined capabilities in marketing discussions, proposal efforts, and capability briefings
• Supervise staff, provide feedback and coaching, and grow their technical and consulting skills
• Improve Mandiant’s business processes and red team methodologies.
• 5 years experience in at least three (3) of the following:

1. Network penetration testing and manipulation of network infrastructure
2. Mobile and/or web application assessments
3. Email, phone, or physical social-engineering assessments
4. Shell scripting or automation of simple tasks using Perl, Python, or Ruby
5. Developing, extending, or modifying exploits, shellcode or exploit tools
6. Developing applications in C#, ASP, .NET, ObjectiveC, Go, or Java (J2EE)
7. Reverse engineering malware, data obfuscators, or ciphers
8. Source code review for control flow and security flaws

• Strong knowledge of tools used for wireless, web application, and network security testing
• Thorough understanding of network protocols, data on the wire, and covert channels
• Mastery of Unix/Linux/Mac/Windows operating systems, including bash and Powershell
• Must be eligible to work in the US without sponsorship
• Excellent verbal and written communication skills Qualifications
• Ability to obtain a Gov’t Clearance • Ability to manage multiple projects and manage tight deadline
• Prior training and public speaking engagement experience
• Ability to travel up to 20%
• Ability to successfully interface with clients (internal and external)
• Ability to prepare and review customized contracts for security consulting services
• Ability to document and explain technical details in a concise, understandable manner
• Ability to manage and balance own time among multiple tasks, and lead junior staff when required

Employee Benefits:

• Competitive salary for well qualified applicants
• 401(k) plan
• Annual performance bonus
• Certification and advanced degree attainment bonuses
• Student Loan / Tuition reimbursement
• Health Care Insurance (medical, dental, vision)
• Up to four weeks of paid vacation
• 10 Federal Holidays, and 3 Floating Holidays
• Unlimited sick leave
• Team bonding events