Security Engineer - Red Team (Offensive Security) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Resource Management Concepts, Inc. ยท 2 weeks ago

Security Engineer - Red Team (Offensive Security)

positionQuantico Base, VA
timeFull-time
remoteHybrid
senioritySenior Level
money$150K/yr - $165K/yr
date5+ years exp

Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. They are seeking a highly skilled Cyber Security Engineer - Red Team (Offensive Security) to join their Cyber Defense Team, focusing on advanced cyber operations that contribute directly to national security.

Consulting
check
Growth OpportunitiesbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Plan and execute no-notice and cooperative Red Team operations across enterprise, application, and cloud environments
Identify and exploit network, host, and application-level vulnerabilities
Develop and refine proof-of-concept exploits and techniques to test defensive measures
Produce detailed technical findings and recommendations for remediation
Collaborate with defensive and engineering teams to improve detection and response
Continuously evolve team tactics, techniques, and procedures (TTPs), documentation, and training materials to reflect emerging adversary behaviors
Participate in after-action reviews and contribute to policy and playbook updates
Prepare, update, document, and present course materials that cover TTPs
Provide support required to maintain the customer's Cybersecurity Service Provider (CSSP) accreditation per the standards, including documentation and technical writing support as needed
Considerable travel and telework

Qualification

Cybersecurity experienceDoD 8570 certificationsWindowsLinux systemsNetworking fundamentalsCloud platformsMalware analysisSoft skills

Required

TS/SCI eligibility
5 years of relevant cybersecurity experience (e.g., Red Team, penetration testing, vulnerability research, security engineering, incident response, detection engineering, etc.)
Possess and maintain a DoD 8570 IAT Level III certification: SecurityX (CASP+), CISSP, CCNP Security, CISA, GCED, GCIH, CCSP
Possess and maintain a DoD 8570 CSSP Auditor certification: CySA+, CEH, CISA, GSNA, CFR, PenTest
Possess and maintain one of the following certifications to meet DoD 8140 certification requirements: CySA+, SecurityX (CASP+), CISM, CISA, CISSO, CISSP, CPTE, CFR, FITSP-A, GPEN, GCSA, GSEC, GSNA
Understanding of Windows and Linux systems, networking fundamentals, and enterprise services (e.g., Active Directory)

Preferred

Experience with any of the following: AV/EDR evasion and detection-bypass techniques
Custom tooling, payload or, command-and-control (C2) development
Software development in C, C++, or a similar language
Malware analysis and reverse engineering
Cloud platforms and services (AWS, Azure, GCP)
Physical security assessments or red-team intrusion exercises
Industrial control systems (ICS) and Internet of Things (IoT) environments
Offensive-security certifications such as OSCP, OSEP, OSCE, CRTO, CRTL, GXPN

Benefits

Tuition assistance
Competitive paid vacation package with 11 paid federal holidays
High-quality, low-deductible healthcare plans
Pet insurance
Competitive 401K package

Company

Resource Management Concepts, Inc.

twittertwittertwitter
company-logo
RMC is a dedicated small business provider of exceptional management and technology solutions.
dateFounded in 1990
location
Lexington Park, Maryland, USA
people-size501-1000 employees
web-link
http://rmcweb.com

Funding

Current Stage
Late Stage

Recent News

Memphis Business Journal
Best Places to Work: Small category 3rd place: Strategic Resource Management
2023-10-05
Company data provided by crunchbase