hireejobs
Register for Job
Hyderabad Jobs
Banglore Jobs
Chennai Jobs
Delhi Jobs
Ahmedabad Jobs
Mumbai Jobs
Pune Jobs
Vijayawada Jobs
Gurgaon Jobs
Noida Jobs
Oil & Gas Jobs
Banking Jobs
Construction Jobs
Top Management Jobs
IT - Software Jobs
Medical Healthcare Jobs
Purchase / Logistics Jobs
Sales
Ajax Jobs
Designing Jobs
ASP .NET Jobs
Java Jobs
MySQL Jobs
Sap hr Jobs
Software Testing Jobs
Html Jobs
IT Jobs
Logistics Jobs
Customer Service Jobs
Airport Jobs
Banking Jobs
Driver Jobs
Part Time Jobs
Civil Engineering Jobs
Accountant Jobs
Safety Officer Jobs
Nursing Jobs
Civil Engineering Jobs
Hospitality Jobs
Part Time Jobs
Security Jobs
Finance Jobs
Marketing Jobs
Shipping Jobs
Real Estate Jobs
Telecom Jobs

Vulnerability Assessments Red Team (Vice President)

3.00 to 7.00 Years   Hyderabad   28 May, 2020
Citibank India
Job LocationHyderabad
EducationNot Mentioned
SalaryNot Disclosed
IndustryBanking / Financial Services
Functional AreaSBU Head / CEO / Director
EmploymentTypeFull-time

Job Description

The Red Team performs global intelligence-led exercises against people, process, and technology to improve Citi s security posture. The Red Team challenges the organization to improve the effectiveness of Cyber Security by conducting exercises using the same Tactics, Techniques and Procedures (TTPs) as real adversaries. To be successful in this role, candidates are expected to act as subject matter experts in offensive security with a proven track record in exploitation, escalation of privileges, and lateral movement.Day-to-Day Responsibilities:

  • Lead, plan, and execute all Social Engineering simulations.
  • Conduct global Red Team adversary simulations
  • Analyze cyber intelligence and design attack models for use against the organization
  • Testing of the overall security of critical infrastructure components and applications to ensure they comply with internal policies, security architecture best practices, and industry standards
  • Supporting Purple Team operations
  • Reporting information security vulnerabilities to businesses and vendors
  • Act as thought leaders for addressing new security challenges such as IoT, cloud, robotics, and artificial intelligence.
  • Conduct vulnerability assessments and penetration tests (application and/or infrastructure) and articulate security issues to technical and non-technical audience
  • Identify, research, and validate known and unknown exploits on cyber infrastructure
  • Work closely with the Blue Team to identify gaps, address findings, and improve breach response
  • Act as advisors for the Blue Team during major events and hunt activities
Qualifications:Pre-requisites for this position are at least a Bachelors Degree with 3 - 7 years of experience on most of the following:
  • Conducting adversary emulations and penetration testing (application and/or infrastructure) and articulating security issues to technical and non-technical audience
  • Support cyber-operations using MITRE s ATT&CK Framework
  • Identifying, researching, validating, and exploiting various different known and unknown security vulnerabilities on server and client side
  • Conducting Purple Team Testing
  • Creating metrics to establish value to senior management
  • Define cyber KPIs
  • Vulnerability Assessment tools, e.g. Nessus, Qualys, etc
  • Exploitation frameworks, e.g. Metasploit, CANVAS, Core Impact
  • Post-Exploitation Frameworks: Cobalt Strike, SILENTTRINITY, Covenant, Faction, Merlin, APfell, Red Team Toolkit, Voodoo
  • Social Engineering campaigns, e.g. email phishing, phone calls, SET
  • Deep understanding of OSI model
  • Security devices, e.g. Firewalls, VPN, AAA systems
  • OS Security, e.g. Unix, Linux, Windows, Cisco, etc
  • Understanding of common protocols, e.g. LDAP, SMTP, DNS, Routing Protocols
  • Web development and programming languages i.e. Python, Perl, Ruby, Java, and/or .Net
  • Reporting information security vulnerabilities to businesses
Industry-accredited security certifications will be required (the candidate must have or be willing to obtain all of the following certifications GIAC GXPN, GPEN, GCIH, CISSP, and OSCP. Knowledge of tools and processes used to expose known and undocumented vulnerabilities in various different systems.-------------------------------------------------Grade :All Job Level - All Job FunctionsAll Job Level - All Job Functions - US------------------------------------------------------,

Keyskills :
project managementautomation cost controldelivery ltdsubject matter experts red teammajor events

APPLY NOW

Vulnerability Assessments Red Team (Vice President) Related Jobs

© 2019 Hireejobs All Rights Reserved