Red Team Analyst Position Available In Madison, Alabama

Red Team Analyst Summit 7 Systems – 4.5 Huntsville, AL Job Details Full-time $80,000 – $90,000 a year 20 hours ago Benefits Dental insurance 401(k) matching Qualifications Cloud infrastructure Report writing Vulnerability assessment Computer Science PaaS Mid-level Microsoft Office 3 years Information security AWS Bachelor’s degree OSCP Scripting Organizational skills Nmap CompTIA Security+ IaaS Time management Information Technology Full Job Description Salary•: $80,000 – $90,000 Dependent upon qualifications Summit 7 is here to rise above the ordinary. The work we do here goes far beyond day-to-day projects – it further protects the US defense industrial base from cyber threats, fosters thought leadership and creates growth opportunities. Our support staff, sales team and technicians are all coming together to make a difference. We also recognize that you’re a person with life beyond work, that’s why we invest in meaningful health and welfare benefits such as: Excellent health/dental benefits from BCBS See into the future with our luxurious VSP vision benefits Prepare for the long-haul courtesy of our 401k with company matching Unlimited mobile phone plan 10 days’ vacation, 7 days sick time Bonuses and salary increase potential via our certifications plan We do cool work here, defying expectations by simply being who we are – each of us makes an impact. We are seeking a Red Team Analyst who will be responsible for conducting a variety of structured activities to locate and exploit vulnerabilities in on-premises and cloud hosted networks for both Summit 7 and its clients. The Red Team Analyst will operate under the direction of the SOC Manager and Red Team Lead.

Essential Functions:

Vulnerability Assessments:

Scanning systems for vulnerabilities. Ingesting vulnerability reports for analysis. Research on, and the discovery of, new vulnerabilities. Prioritize remediation efforts for discovered vulnerabilities.

Attack Surface Assessments:

Utilize various tools and techniques to identify potential areas of weaknesses in a target’s external environment. Assist with the creation and validation of additional attack surface assessment tools.

Red Team Engagements:

Conduct internal attack simulations to test threat detection and response. Assist with the planning and scheduled phishing campaigns. Assist with the validation and improvement recommendations of detection rules. Assist with the creation and validation of additional Red Team tools.

Penetration Testing:

Conduct scheduled start-to-finish manual and/or tool assisted penetration tests on targeted environments. Assist with the creation and validation of additional penetration testing tools.

Reporting:

Document all security findings discovered during various Red Team activities. Create professional reports on all security findings to include actionable remediation recommendations.

Collaboration:

Work with members of the SOC and NOC to support ongoing threat hunting, detection engineering, and vulnerability remediation efforts. Work with colleagues to improve skills needed for the advancement of overall Red Team goals. Assist other Red Team Analysts as needed.

Qualifications:

Education and Skills:

3+ years of Information Security experience in cloud-based environments (Infrastructure as a Service (IaaS) and Platform as a Service (PaaS) in both private and public (AWS, Azure) environments) and in one or more of the following verticals: Network Penetration Testing Application Penetration Testing Webapp Penetration Testing Cloud Penetration Testing Red Team Operations Application Security Assessments Network Exploitation Experience with technologies (i.e. Kali, Commando, Mythic, Caldera, Shodan, Qualys, Nmap) commonly used in Red Teaming exercises. Clear and concise report writing skills. Familiarity with various programming/scripting languages Familiarity with web programming infrastructure Strong attention to detail Strong time management and organizational skills

Certifications:

Security+ (Required) At least one of the following penetration testing, Red Team certifications (or equivalent):

OSCP HTB CPTS CRTP CARTP PNPT CRTP CRTO

Optional/Desired:

Bachelor’s degree in IT, Computer Science, Cybersecurity, or a related field. Azure Gov Cloud and Office 365 GCC/GCCH experience. Experience working in a “Purple Team” environment. Reverse engineering experience. Demonstrated rapid tool development and automation experience. Summit 7 Systems is an equal opportunity/ affirmative action employer and an alcohol and drug free workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion , sex, sexual orientation, gender identity, national origin, disability, or veteran status.