Senior Red Team Cybersecurity Specialist (Lead)
Remote - Virginia
Applications have closed
Company
Federal Reserve Bank of RichmondWhen you join the Federal Reserve—the nation's central bank—you’ll play a key role, collaborating with leading tech professionals to strengthen and protect our economic, financial and payments systems. We invest in contemporary and emerging technology each year to support the Federal Reserve and our economy, and we’re building a dynamic and diverse team for our future.Bring your passion and expertise, and we’ll provide the opportunities that will challenge you and propel your growth—along with a wide range of benefits and perks that support your health, wealth, and life. In addition to competitive compensation, we offer a comprehensive benefits package that includes tuition assistance, generous paid time off, top-notch health care benefits, child and family care leave, professional development opportunities, a 401(k) match, pension, and more. All brought together in a flexible work environment where you can truly find balance.
About the Opportunity
The National Incident Response Team (NIRT), a national service provider for the Federal Reserve System (FRS), delivers national offensive security services, intrusion detection, incident response and security intelligence for the FRS. NIRT’s mission is to play a role in the FRS’ efforts to protect its information systems against unauthorized use. NIRT’s Adversary Emulation team has an immediate opening for a Senior Lead or Principal Lead Red Team Cybersecurity Specialist (based on experience) to join their red team on a variety of engagements and projects that will target and evaluate the cyber security posture of people, processes, and technology within the FRS.
As a Senior Specialist, you will report to the Sr. Manager and work on a team of security professionals performing assessments against people, processes, and technologies by using your experience and industry tools to emulate attacker tactics, techniques and procedures (TTPs). You will also use a variety of red teaming and social engineering techniques combined with your technical expertise and your imagination to discover methods for ensuring the FRS remains one step ahead of its adversaries around the world.
This opportunity can provide the flexibility to work remotely as long as you are within a 2 hour commute radius of a Federal Reserve Bank location.
Some of What You Will Do
Use your security expertise to covertly exploit vulnerabilities, misconfigurations and weaknesses in the system to improve security posture
Lead covert offensive security assessment activities across all stages of the cyber kill chain.
Drive and reflect a learning and practice culture, including developing junior talent and knowledge-sharing across the organization.
Improve operational efficiency by evaluating and building workflow processes, automation and tooling
Envision, propose, and implement cross-team initiatives for cybersecurity improvements for recognized gaps
Qualifications:
5 - 10 years of relevant security experience
Subject matter expert of adversary emulation operations including attack planning, threat-modeling, reconnaissance, social engineering, covert exploitation & post-exploitation techniques and attack infrastructure
Subject matter expert of covert techniques supporting on-the-wire red team operations including initial access, lateral movement, malware/payload development, advanced c2 infrastructure, advanced AD attacks and cloud and on-prem environment exploitation
Scripting/programming expertise in languages such as Python, PowerShell, Go, or C# with the ability to create and customize tools
Experience leading a team and managing client relationships, including determining needs, managing expectations, and tailoring communication to various audiences
Discover the Reason Why So Many People Love It Here!
When you join Federal Reserve’s National IT organization, not only will you find a challenging and purposeful career, you’ll also have access to a wide range of benefits and perks that support your health and wealth, including:
· Great medical benefits
· Pension and 401(k) with employer match
· Paid time off
· Tuition reimbursement
· Employee resource networks
· Paid volunteer leave
· Flexible work options
· Onsite amenities that make working here fun!
Other Requirements and Considerations:
Candidates should review the Bank’s Employee Code of Conduct to ensure compliance with conflict of interest rules and personal investment restrictions. · If you need assistance or an accommodation due to a disability, please notify rich.recruitment@rich.frb.org.
Employees who work at and/or visit another Federal Reserve entity or outside business as part of their job duties are required to comply with any onsite safety and health protocols of those organizations (including, but not limited to, requirements to vaccinate or test, mask, social distance, etc.).
Sponsorship is not available for this role. The selected candidate will be subject to a government security investigation and must meet eligibility requirements for access to classified information. The ability to obtain and maintain a National Security Clearance (Secret or Top Secret) is required for this role. US Citizenship is required to be eligible for a National Security Clearance.
The national hiring range for the Senior Lead Red Team Cybersecurity Specialist is $123,600-169,950 annually. The national hiring range for the Principal Lead Red Team Cybersecurity Specialist is $139,000 -$191,050. For candidates in certain markets (Boston, MA; Chicago, IL; Los Angeles, CA; New York City Metro Area, Philadelphia, PA; San Francisco, CA; Seattle, WA), the listed hiring and salary ranges will be adjusted based on your geographic location.
Salary offered will be based on the job responsibilities and the individual’s knowledge, skills, and experience as defined in the job qualifications/experience.
Applications are reviewed on a rolling basis. Interested candidates are strongly encouraged to apply by March 29, 2023.
#FRB123
Full Time / Part Time
Full timeRegular / Temporary
RegularJob Exempt (Yes / No)
YesJob Category
Information TechnologyWork Shift
First (United States of America)The Federal Reserve Banks believe that diversity and inclusion among our employees is critical to our success as an organization, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences.
Tags: Automation C Clearance Cloud Compliance Cyber Kill Chain Exploit Incident response Intrusion detection Malware Offensive security PowerShell Privacy Python Red team Scripting Security assessment Security Clearance Top Secret TTPs Vulnerabilities
Perks/benefits: 401(k) matching Career development Competitive pay Flex hours Flex vacation Health care Medical leave Team events
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs