SENIOR STAFF OFFENSIVE SECURITY ENGINEER
Descripción de la oferta de empleo
As a Senior Staff Offensive Security Engineer, you will lead and mentor a team of security engineers, driving offensive security efforts, including penetration testing, vulnerability assessments, and red teaming exercises.
Your expertise will be crucial in identifying and mitigating security threats, particularly in cloud environments.
Key Accountabilities Penetration Testing and Vulnerability Assessments.
Lead comprehensive penetration tests on networks, web applications, and other systems.
Identify security vulnerabilities and provide detailed recommendations for remediation.
Utilize both manual and automated tools to uncover security weaknesses.
Cloud Security Testing.
Perform security assessments of cloud services (e.
., AWS, Azure, Google Cloud Platform).
Identify and exploit vulnerabilities specific to cloud environments.
Collaborate with cloud architects and engineers to implement best security practices.
Red Teaming Exercises.
Plan and execute sophisticated red teaming exercises to simulate real-world attacks.
Develop and deploy advanced adversarial tactics, techniques, and procedures (TTPs).
Collaborate with blue teams to improve detection and response capabilities.
Security Research and Exploitation.
Stay updated with the latest security threats, vulnerabilities, and exploits, especially those related to cloud services.
Research new attack vectors and develop proof-of-concept exploits.
Share knowledge through detailed reports, presentations, and training sessions.
Security Tool Development.
Develop and maintain custom security tools and scripts to support offensive security operations.
Automate repetitive tasks to enhance efficiency and effectiveness.
Incident Response Support.
Assist in the investigation and response to security incidents.
Provide expertise on attacker methodologies and potential countermeasures, particularly in cloud environments.
Collaboration and Communication.
Work closely with cross-functional teams to integrate security practices into the development lifecycle.
Communicate findings and recommendations to stakeholders in a clear and concise manner.
Networking/Key Relationships Information Security Team.
Collaborate closely with the security team to share insights, coordinate efforts, and enhance overall security posture.
IT and Cloud Infrastructure Teams.
Work with IT and cloud engineers to ensure secure deployment and maintenance of systems.
Development Teams.
Partner with developers to integrate security practices into the software development lifecycle (SDLC).
Incident Response Team.
Provide support and expertise during security incidents and post-incident analysis.
Senior Management.
Communicate security risks, findings, and recommendations to leadership to inform strategic decisions.
Minimum Knowledge & Experience Required Education.
Bachelor's degree in computer science, Information Security, or a related field.
A master's degree or relevant certifications (e.
., OSCP, OSCE, CISSP, CCSK, AWS Certified Security Specialty) is preferred.
Experience.
Minimum of 6 years of experience in offensive security, penetration testing, or red teaming.
Proven track record of successfully identifying and exploiting security vulnerabilities, with significant experience in cloud security.
Technical Skills.
Deep understanding of networking protocols, operating systems, cloud infrastructure, and common application vulnerabilities.
Proficiency with penetration testing tools such as Metasploit, Burp Suite, Nmap, Wireshark, as well as cloud-specific security tools like ScoutSuite, Prowler, and CloudSploit.
Strong programming/scripting skills in languages such as Python, Bash, PowerShell, or Ruby.
Cloud Security Expertise.
In-depth knowledge of cloud security frameworks, methodologies, and best practices.
Experience with cloud security tools and services from major cloud providers (AWS, Azure).
Ability to identify and exploit cloud-specific vulnerabilities and misconfigurations.
Soft Skills.
Excellent problem-solving abilities and analytical skills.
Strong written and verbal communication skills.
Ability to work independently as well as part of a team.
Skills & Capabilities Technical Proficiency.
Expert knowledge in penetration testing and offensive security methodologies.
Advanced understanding of cloud security principles and the ability to implement them effectively.
Strong capability in developing and using security tools and scripts.
Analytical Thinking.
Ability to think like an attacker to identify and exploit security vulnerabilities.
Excellent analytical skills to assess complex systems and identify potential weaknesses.
Communication Skills.
Strong written and verbal communication skills to articulate security issues and recommendations to diverse audiences.
Ability to create clear and concise documentation and reports.
Problem-Solving.
Strong problem-solving skills to develop innovative solutions to complex security challenges.
Ability to respond effectively to security incidents and provide expert guidance.
Collaboration.
Ability to work collaboratively with cross-functional teams, including IT, development, and cloud infrastructure teams.
Strong interpersonal skills to build effective working relationships.
Continuous Learning.
Commitment to continuous learning and staying updated with the latest security threats, tools, and best practices.
Participation in professional development activities and security conferences.
Travel Requirements Less than 10% of the time.
Individual Contributor Core Competencies Managing Work.
Effectively managing one's time and resources to ensure that work is completed efficiently.
Emotional Intelligence Essentials.
Establishing and sustaining trusting relationships by accurately perceiving and interpreting own and others' emotions and behavior.
Building Partnerships.
Developing and leveraging relationships within and across work groups to achieve results.
Decision Making.
Identifying and understanding problems and opportunities by gathering, analyzing, and interpreting information.
Continuous Improvement.
Originating action to improve existing conditions and processes.
Apply through LinkedIn
Detalles de la oferta
- Sin especificar
- 29/11/2024
- 27/02/2025
Estamos buscando un asistente de atención médica senior para coordinar la prestación de atención médica... asistente de atención médica senior - coordinador de turnos - car home / asistencia domiciliaria - turnos de día y de noche - centro de atención continua y domiciliaria - cornwall reino unido reach......
Estamos buscando un asistente de atención médica senior para coordinar la prestación de atención médica... asistente de atención médica senior - coordinador de turnos - asistencia domiciliaria / asistencia domiciliaria - turnos de día y noche - centro de atención continua y domiciliaria - cornwall reino......
Diseñador/a gráfico senior ui/ux, con experiencia demostrable para integrarse de forma inmediata en nuestro gran equipo de desarrolladores, realizando tareas de diseño ui/ux/ixd, animaciones y branding para proyectos digitales tecnológicos innovadores... arquitectura de la información (ia)......
Técnicos senior de radiología - reino unido - unidad de salud móvil de imágenes reach hr es una empresa especializada en la contratación de profesionales sanitarios... licencia de conducir vigente oferta:contrato permanentesalario mensual bruto entre £ 2166 y £ 266736 horas de trabajo a la semanaextra......
Diseñador/a gráfico senior ui/ux, con experiencia demostrable para integrarse de forma inmediata en nuestro gran equipo de desarrolladores, realizando tareas de diseño ui/ux/ixd, animaciones y branding para proyectos digitales tecnológicos innovadores... arquitectura de la información (ia)......
Seleccionamos comercial senior para el departamento de captación del segmento pymerequisitos del puesto experiencia mínima demostrable como comercial en el sector de las telecomunicaciones 1 año... sueldo fijo más altas comisiones por consecución de objetivos... contrato laboral de 40h......
Liu jo está buscando para su store en paseo de gracia, barcelona un (a) senior sales assistant... sus principales cometidos serán los siguientes: · transmitir al cliente pasión y conocimiento del producto; · desarrollar e impulsar las ventas; · recibir y acompañar a nuestra clientela de alta gama; ·......
Cttc promotes itself as a provider of a stimulating and favourable work environment for researchers... • tenure track: career progression with possibility of stabilization trough a permanent structural contract• prospect start date: july/august 2024• continuous training, access to lab facilities, state......
Confidencial cuenta con una posición como qa engineer para garantizar la calidad del software mediante pruebas exhaustivas para identificar y corregir errores antes de su lanzamiento al mercado... habilidades: automatización de pruebas conocimiento de sql conocimiento de herramientas de pruebas (selenium......
Jornada completa, turnos rotatorios... requisitos del puesto grado en enfermeria y colegiado... ingles medio vehiculo *****@*****/p>... han de estar posesión grado enfermeria, homologación... deben estar en posesión de la titulación reglamentada, homolgación tramitada y colegido... descripción del empleodiplomada/o......
