Red Team Operator
Wilmington, DE, United States
JPMorgan Chase & Co.
DESCRIPTION:
Duties: Drive and participate in hands-on ethical hacking engagements focused on simulating real-world attacker tactics, techniques and procedures. Facilitate peer tasks during operations. Develop customs tools, exploits, Tactics, Techniques, and Procedures including custom malware and exploit scripts. Conduct knowledge sharing with and provide mentorship and feedback to internal and external teams. Serve as a Subject Matter Expert in Active Directory Security. Analyze vulnerabilities, threats, and architectural design to produce reports. Document observations and findings from operations in a clear and concise fashion in formal reports. Perform debriefs or visual presentations in a clear and articulate manner.
QUALIFICATIONS:
Minimum education and experience required: Bachelor's Degree in Computer Engineering, Computer Information Systems, Computer Security, or related field of study plus 5 years of experience in the job offered or as Red Team Operator, Application/Software Developer, Penetration Tester, Vulnerability Researcher, Security Consultant or related occupation. The employer will alternatively accept a Master’s Degree in Computer Engineering, Computer Information Systems, Computer Security, or related field of study plus 3 years of experience in the job offered or as Red Team Operator, Application/Software Developer, Penetration Tester, Vulnerability Researcher, Security Consultant or related occupation.
Skills Required: Requires experience in the following: conducting network exploitation operations, including Red Team operations; computer networking; modern threats and vulnerabilities; Red Team attack methodologies; Red Team tools including Cobalt Strike and Metasploit; networking in all OSI layers and protocols; databases including MySQL and Neo4j; System administration in Windows, Linux, Unix, and Mac operating systems; computer forensics; operating system and software vulnerability research and exploitation; offensive security tools for reconnaissance, scanning, and exploitation including Nmap, BurpSuite, Bloodhound, PowerSploit, Empire, and GhostPack; log output from networking devices, operating systems, and infrastructure services; cloud administration and exploitation in AWS and Azure; developing in-house scripts using scripting languages in PowerShell and Python; compiled languages including C++, C#, JavaScript, and PHP; security tools or technology including Firewalls, Intrusion Detection Systems, Web Proxies, and Data Loss Prevention; articulating and visually presenting complex penetration testing and Red Team results to internal teams and senior leaders; Active Directory Security; competing-in and running information security capture- the-flag competitions; administering and building complex, virtualized, and anonymized computer networking infrastructures utilized in adversary emulation simulations; building hands-on Active Directory Attacks for testing; conducting live training sessions; presenting at major security conferences on subject of Active Directory Attacks. Must possess the following certification: Offensive Security Certified Professional (OSCP).
Job Location: 880 Powder Mill Road, Wilmington, Delaware 19803. Telecommuting permitted up to 60% of the week.
We offer a competitive total rewards package including base salary determined based on the role, experience, skill set, and location. For those in eligible roles, we offer discretionary incentive compensation which may be awarded in recognition of firm performance and individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
JPMorgan Chase is an Equal Opportunity Employer, including Disability/Veterans
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory AWS Azure Banking Burp Suite C Cloud Cobalt Strike Ethical hacking Exploit Exploits Firewalls Forensics Intrusion detection JavaScript Linux Malware Metasploit MySQL Neo4j Nmap Offensive security OSCP Pentesting PHP PowerShell Python Red team Scripting UNIX Vulnerabilities Windows
Perks/benefits: Career development Competitive pay Conferences Health care Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open DoD-related jobs