Red Team Analyst Position Available In [Unknown county], Alabama

Back to all jobs
Red Team Analyst
Remote Anywhere, Remote, AL 35806, US
80,000-90,000 per year
Salary
Full Time Salary•: $80,000 – $90,000 •Dependent upon qualifications Summit 7 is here to rise above the ordinary. The work we do here goes far beyond day-to-day projects – it further protects the US defense industrial base from cyber threats, fosters thought leadership and creates growth opportunities. Our support staff, sales team and technicians are all coming together to make a difference. We also recognize that you’re a person with life beyond work, that’s why we invest in meaningful health and welfare benefits such as: Excellent health/dental benefits from BCBS
See into the future with our luxurious VSP vision benefits
Prepare for the long-haul courtesy of our 401k with company matching
Unlimited mobile phone plan
10 days’ vacation, 7 days sick time
Bonuses and salary increase potential via our certifications plan We do cool work here, defying expectations by simply being who we are – each of us makes an impact. We are seeking a Red Team Analyst who will be responsible for conducting a variety of structured activities to locate and exploit vulnerabilities in on-premises and cloud hosted networks for both Summit 7 and its clients. The Red Team Analyst will operate under the direction of the SOC Manager and Red Team Lead.

Essential Functions:

Vulnerability Assessments:

Scanning systems for vulnerabilities.
Ingesting vulnerability reports for analysis.
Research on, and the discovery of, new vulnerabilities.
Prioritize remediation efforts for discovered vulnerabilities.

Attack Surface Assessments:

Utilize various tools and techniques to identify potential areas of weaknesses in a target’s external environment.
Assist with the creation and validation of additional attack surface assessment tools.

Red Team Engagements:

Conduct internal attack simulations to test threat detection and response.
Assist with the planning and scheduled phishing campaigns.
Assist with the validation and improvement recommendations of detection rules.
Assist with the creation and validation of additional Red Team tools.

Penetration Testing:

Conduct scheduled start-to-finish manual and/or tool assisted penetration tests on targeted environments.
Assist with the creation and validation of additional penetration testing tools.

Reporting:

Document all security findings discovered during various Red Team activities.
Create professional reports on all security findings to include actionable remediation recommendations.

Collaboration:

Work with members of the SOC and NOC to support ongoing threat hunting, detection engineering, and vulnerability remediation efforts.
Work with colleagues to improve skills needed for the advancement of overall Red Team goals.
Assist other Red Team Analysts as needed.

Qualifications:

Education and Skills:

3+ years of Information Security experience in cloud-based environments (Infrastructure as a Service (IaaS) and Platform as a Service (PaaS) in both private and public (AWS, Azure) environments) and in one or more of the following verticals:
Network Penetration Testing
Application Penetration Testing
Webapp Penetration Testing
Cloud Penetration Testing
Red Team Operations
Application Security Assessments
Network Exploitation
Experience with technologies (i.e. Kali, Commando, Mythic, Caldera, Shodan, Qualys, Nmap) commonly used in Red Teaming exercises.
Clear and concise report writing skills.
Familiarity with various programming/scripting languages
Familiarity with web programming infrastructure
Strong attention to detail
Strong time management and organizational skills

Certifications:

Security+ (Required)
At least one of the following penetration testing, Red Team certifications (or equivalent):
OSCP
HTB CPTS
CRTP
CARTP
PNPT
CRTP

CRTO Optional/Desired:

Bachelor’s degree in IT, Computer Science, Cybersecurity, or a related field.
Azure Gov Cloud and Office 365 GCC/GCCH experience.
Experience working in a “Purple Team” environment.
Reverse engineering experience.
Demonstrated rapid tool development and automation experience. Summit 7 Systems is an equal opportunity/ affirmative action employer and an alcohol and drug free workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. Summit 7 Systems requires background investigations. Any offer of employment is contingent upon the results of a reference/background check. We are a drug and alcohol-free workplace and require pre-employment drug screening.