Senior Red Team Operator

Remote
Intelligent Waves Washington, DC
Full Time Senior Level 6+ years

Posted 2 weeks ago

Interested in this position?

Upload your resume and we'll match you with this and other relevant opportunities.

Upload Your Resume

About This Role

Lead mission-critical Red Team cybersecurity exercises for federal court systems to fortify IT infrastructure, physical facilities, and personnel, ensuring national security.

Responsibilities

  • Lead mission-critical Red Team cybersecurity exercises to fortify production IT infrastructure, physical facilities, and personnel within federal court systems.
  • Develop and conduct spear phishing campaigns to gain internal network access.
  • Conduct exploitation of external-facing assets to gain internal network access.
  • Conduct post-exploitation actions toward exercise objectives.
  • Conduct on-site physical penetration assessments at various federal courthouses and other Court locations to obtain internal network access.
  • Use custom code and/or commercial-off-the-shelf (COTS) exploitation frameworks to bypass and penetrate network and system defenses.
  • Comply with unique rules of engagement (ROE) for each exercise, along with standard operating procedures (SOP) for Red Team operations.
  • Employ Red Team tradecraft while conducting exercises.

Requirements

  • 6+ years direct, hands-on technical Red Team and/or government computer network exploitation/attack operations experience
  • 2+ years technical Red Team leadership experience
  • 3+ years hands-on experience modifying and customizing Red Teaming software frameworks (Cobalt Strike, Kali, etc.)
  • 2+ years independently conducting every phase of a Red Team exercise without supervision
  • 2+ years developing payloads that bypass A/V and EDR solutions
  • 2+ years mentoring junior and mid-level operators on Red Team tradecraft and advanced knowledge
  • 2+ years delivering technical Red Team reports and briefings
  • Red Team web applications experience
  • CRTO certification within 90 days of start date
  • Experience with Static Application Security Testing (SAST) / Dynamic Application Security Testing (DAST) and integrating results into developer workflows
  • Knowledge of OWASP Top 10 & SANS Top 25 vulnerabilities, with ability to exploit/remediate
  • Application security testing for web, mobile, and API endpoints

Qualifications

  • Minimum 6 years direct, hands-on technical red team and/or government computer network exploitation/attack operations experience, with 2 years of technical red team leadership.

Skills

OWASP Top 10 * SANS Top 25 * Kali * Cobalt Strike * Static Application Security Testing (SAST) * Dynamic Application Security Testing (DAST) *

* Required skills

Benefits

Dental Insurance
Medical Insurance
401k with vesting from Day 1
Vision Insurance
Paid PTO
Technical training
Life Insurance
Disability Insurance
Tuition bonuses

Certifications

CRTO (Required)

About Intelligent Waves

Intelligent Waves delivers innovative technology solutions to enable a more secure nation, providing mission-focused multi-domain operational expertise and innovation to the Government in cybersecurity, data science, enterprise network & systems engineering, software development, and cognitive human...

Technology
View all jobs at Intelligent Waves →

Related Searches

Remote Jobs Software Engineering Jobs

Similar Jobs

Task Order Team Lead

Active
Intelligent Waves · San Antonio, TX
Cybersecurity Ticketing systems Project Management Methodologies SIPRNet +4 more
2 weeks ago