A successful Red Team consultant at Mandiant should possess a deep understanding of both information security and computer science. They should understand basic concepts including computer networking, web and native application functionality, operating system functionality, cloud services, corporate network environments and operations, and be able to learn advanced concepts such as endpoint protection evasion, covert operations and tailored exploit development.
This role is highly technical and challenging with opportunities to work in some of the most exciting areas of security consulting on projects that have a meaningful impact across industries.
A representative job leverages Mandiant’s threat intelligence, and Red Team experience. This may involve delivering a Threat Intel-led Red Team for a FTSE 100 bank, preparing command and control infrastructure, developing social engineering campaigns and the associated collateral, executing phishing campaigns and attempting to compromise internet-facing systems, conducting privilege escalation and lateral movement within customer networks, hunting for objectives with little-to-no information provided by the customer and exfiltrating data from the network all while avoiding detection from the customer security operations teams. If you can exploit at scale while remaining stealthy, identify and exploit misconfigurations in corporate infrastructure, quickly and effectively parse data, present relevant data in a digestible manner, think well outside the box, or are astute enough to quickly learn these skills, then you re the type of consultant we re looking for.
At Mandiant, you ll be faced with complex problem-solving opportunities and hands-on technical opportunities on a daily basis. We help our clients protect their most sensitive and valuable data through comprehensive and real-world scenario emulation, based off of the most up-to-date threat intelligence.
You are expected to quickly assimilate new information as you will face new client environments on a weekly or monthly basis. You will be expected to understand all the threat vectors to each environment and properly assess them. You will get to work with some of the best red teamers and operators in the industry, allowing you to develop new skills as you progress. Are you up to the challenge?
Responsibilities:
• Perform red and purple team assessments (with and without industry regulator oversight), assumed breach assessments (red team engagements with a pre-deployed implant), ransomware readiness reviews (assessing susceptibly to modern ransomware threats), threat analysis and social-engineering assessments.
• You may also, infrequently, be asked to conduct external/internal/wireless network assessments, web and mobile application testing, source code reviews, network security architecture reviews.
• Interface with clients to address concerns, issues or escalations; track and drive to closure any issues that impact the service and its value to clients
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences
• Oversee and manage implementation improvements to Mandiant s business processes, methodologies, tools and client communication methods
• Provide expert experience building information security programs to include hands-on implementation and/or assessment of security control, including for government clients
• Use formal project management skills in planning, tracking, and reporting on project progress
• Manage relationships with local sales leadership, including identifying opportunities, driving new business through established contacts and using technical acumen to assist the local delivery team
https://www.naukrigulf.com/tester-jobs-in-riyadh-saudi-arabia-in-mandiant-2-to-3-years-n-cd-10050787-jid-130122500726
نسخة للطباعة 
ابلغ عن اعلان مخالف