Job Purpose:
The Red Team Operator / Threat Hunt Analyst will work to research and emulate cyber offensive threats. The Red Team Operator will act as a supporting team member to the global Red Team focusing on delivering red and Pentests, purple team assessments, assumed breach assessments (red team engagements with a pre-deployed implant), ransomware readiness reviews (assessing susceptibility to modern ransomware threats), threat analysis and social-engineering assessments. The position requires a thorough understanding of technology, tools, tactics, techniques, and procedures used by adversaries (cybercriminals/cyber espionage) to conduct intrusions into a target organization. This includes in depth hands-on knowledge of intrusion attack phases with a special focus on lateral movement, privilege escalation, and exfiltration techniques. Working familiarity with programming/scripting, open-source red team tools and C2 frameworks is essential. Experience in Initial Access techniques including web application exploits, malware implant engineering, and spear phishing is also desired. Attack modeling, planning, close technical collaboration, and excellent communication skills are a plus.
Qualifying Experience and Attributes:
Preferred Experience and Attributes:
What's In It For You?
Don't meet every single requirement? Apply anyway.
At TD SYNNEX, we're proud to be recognized as a great place to work and a leader in the promotion and practice of diversity, equity and inclusion. If you're excited about working for our company and believe you're a good fit for this role, we encourage you to apply. You may be exactly the person we're looking for!
The Red Team Operator / Threat Hunt Analyst will work to research and emulate cyber offensive threats. The Red Team Operator will act as a supporting team member to the global Red Team focusing on delivering red and Pentests, purple team assessments, assumed breach assessments (red team engagements with a pre-deployed implant), ransomware readiness reviews (assessing susceptibility to modern ransomware threats), threat analysis and social-engineering assessments. The position requires a thorough understanding of technology, tools, tactics, techniques, and procedures used by adversaries (cybercriminals/cyber espionage) to conduct intrusions into a target organization. This includes in depth hands-on knowledge of intrusion attack phases with a special focus on lateral movement, privilege escalation, and exfiltration techniques. Working familiarity with programming/scripting, open-source red team tools and C2 frameworks is essential. Experience in Initial Access techniques including web application exploits, malware implant engineering, and spear phishing is also desired. Attack modeling, planning, close technical collaboration, and excellent communication skills are a plus.
$ads={1}
Responsibilities:- Work with the team to propose, plan, and execute Red Team operations as well as pentests based on realistic threats to the organization.
- Work within the team to perform continuous OSINT on the organization's assets.
- Continuously gather threat intelligence; monitor new ATPs and state-of-the-art offensive TTPs.
- Coordinate and work closely with other parts of the IT (Information Technology) / Cyber Security organization to improve the security posture globally.
- Be a security advocate for other teams, help individuals and get involved in projects as needed.
- Adhere to all corporate policies, rules, and responsibilities.
- Consult with other internal teams regarding security requirements, concerns, and project issues.
- Investigate, coordinate, bring to resolution, and report on security issues as they are escalated or identified.
- Ability to synthesize data from multiple sources and present concise, relevant information to both technical and non-technical audiences.
- Daily administrative tasks, reporting, coordination across teams, issue escalation.
Qualifying Experience and Attributes:
- 2+ years' experience in Security or security related fields.
- experience with Red Team/Pentest tools and frameworks (Metasploit, Cobalt Strike, BruteRatel, NightHawk, Core Impact, Covenant, Splinter, Bloodhound, and others).
- Good experience in scripting languages such as Python, bash, and PowerShell.
- Sound programming skills in C#, C or C++.
- Have one or more of the following certifications OSCP, OSWE, OSEP, CRTP, CRTO, CRTO II, OSCE.
- Knowledge of LOLBins family abuse, privilege escalation, MITRE ATT&CK framework, threat hunt methodologies.
- Working knowledge of OSINT (open-source intelligence) collection/ reconnaissance techniques for target selection.
- Strong attention to detail with analytical and problem-solving skills.
- Awareness of cybersecurity trends, issues, and hacking techniques.
- Ability to work after hours if needed.
Preferred Experience and Attributes:
- Bachelor's degree, or higher, in Cybersecurity, Computer Engineering or Computer Science.
- Willingness to work in a real multicultural environment.
- High intermediate level of English (B2 or higher).
- Self-motivated to get tasks completed on time.
- Ability to work within a highly collaborative team environment.
- Excellent written and verbal communication skills.
- Excellent ability to document networks and applications.
- Excellent time management and capability to prioritize tasks.
What's In It For You?
- Elective Benefits: Our programs are tailored to your country to best accommodate your lifestyle.
- Grow Your Career: Accelerate your path to success (and keep up with the future) with formal programs on leadership and professional development, and many more on-demand courses.
- Elevate Your Personal Well-Being: Boost your financial, physical, and mental well-being through seminars, events, and our global Life Empowerment Assistance Program.
- Diversity, Equity & Inclusion: It's not just a phrase to us; valuing every voice is how we succeed. Join us in celebrating our global diversity through inclusive education, meaningful peer-to-peer conversations, and equitable growth and development opportunities.
- Make the Most of our Global Organization: Network with other new co-workers within your first 30 days through our onboarding program.
- Connect with Your Community: Participate in internal, peer-led inclusive communities and activities, including business resource groups, local volunteering events, and more environmental and social initiatives.
Don't meet every single requirement? Apply anyway.
At TD SYNNEX, we're proud to be recognized as a great place to work and a leader in the promotion and practice of diversity, equity and inclusion. If you're excited about working for our company and believe you're a good fit for this role, we encourage you to apply. You may be exactly the person we're looking for!
$ads={2}
