Apply on Employer Site

Oak Grove Technologies · 5 months ago

Red Team Software Developer

Fort Belvoir, VA

Full-time

Onsite

Mid, Senior Level

5+ years exp

Oak Grove Technologies, LLC is a fast-growing federal contractor focused on providing services to the military, government, and law enforcement. They are seeking a highly skilled Red Team Software Developer to engage in offensive capability development, malware analysis, and penetration testing to enhance national security efforts.

Information TechnologyTelecommunications

No H1B

Security Clearance Required

Responsibilities

Offensive capability development

Program with C/C++/C# and Beacon Object Files (BOF)s

Operate in a Scrum/Agile environment, contributing to design, development, testing, and planning as part of an agile team

Conduct malware development and analysis, software vulnerability research, and reverse engineering

Develop exploits, shellcode, and techniques to bypass mitigations

Perform dynamic analysis, code reviews, troubleshooting, and debugging

Design and develop penetration testing and red team operations capabilities to validate the security of critical national systems

Leverage C2 tools such as Cobalt Strike to deliver integrated capabilities that maximize red team mission effectiveness

Rapidly prototype and implement new scripts, tools, and capabilities to support active red team operations in real time

Collaborate closely with operations teams to ensure mission-aligned, long-term capability development that directly enables mission success

Qualification

C/C++/C# programmingMalware developmentRed team operationsExploit developmentScrum/Agile environmentWindows kernel modulesCobalt StrikeContinuous Integration/DeliveryLinux proficiencyBeacon Object Files (BOFs)Cyber incident responseSoft skills

Required

U.S. Citizenship and an active Top Secret clearance with SCI eligibility are required. (Highly qualified candidates with a Secret Clearance may also be considered.)

Bachelor's degree in Computer Science, Information Sciences, or a related discipline; equivalent experience will be considered in lieu of a degree

5+ years of combined education and experience in software development, systems engineering, or cyber operations

1+ years of experience with C/C++/C# software development, including expertise in red team and offensive cyber operations capability development for Windows environments

Strong proficiency with Linux

Proficiency in C and C# programming and development of Beacon Object Files (BOFs)

1+ years' experience in offensive capability development for Windows

1+ years' experience working in a Scrum/Agile environment

Must pass the Developer Aptitude Test (JDAT) prior to onboarding

Willingness and ability to travel 15% (CONUS/OCONUS)

Preferred

Host-based and network-based forensics, cyber incident response, cyber-criminal investigations, intrusion detection/analysis, and designing countermeasures and mitigations for programming language weaknesses and vulnerabilities

Advanced cyber red teaming, network penetration testing, security operations center analysis, defensive and offensive cyber operations

Malware development and analysis, including binary disassembly, binary decomplication, dynamic analysis, and network/communication protocol analysis

Software vulnerability research and exploit development, including exploits, shellcode, and bypass techniques for mitigations such as NX (nonexecutable stack), ASLR, and advanced exploit protections

Development and use of Command and Control (C2) frameworks/capabilities, especially Cobalt Strike

Development of Windows kernel modules and strong familiarity with Windows Active Directory

Tool development leveraging the Windows API/Win32 modules

Expertise in AV/EDR evasion techniques

Continuous Integration and Continuous Delivery/Deployment (CI/CD) Experience

Desired skills/certifications: Offensive Security Experienced Penetration Tester (OSEP), Advanced Windows Exploitation/ Offensive Security Exploitation Expert (OSEE), GIAC Exploit Researcher and Advanced Penetration Tester (GXPN), GIAC Reverse Engineering Malware (GREM)