Intermediate Red Team Operator jobs in United States
cer-icon
Apply on Employer Site
company-logo

Intelligent Waves ยท 16 hours ago

Intermediate Red Team Operator

positionUS-DC-Washington
timeFull-time
remoteHybrid
seniorityMid Level
date4+ years exp

Intelligent Waves is seeking a Mid-Level Red Team Operator to support a U.S. Courts contract. The role involves executing red team exercises on production IT systems, conducting spear-phishing campaigns, and performing post-exploitation activities to meet objectives.

Information Technology & Services
check
Comp. & BenefitsbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Conduct red team exercises against production IT systems, facilities, and personnel belonging to the AO and the Courts
Develop and conduct spear phishing campaigns to gain internal network access
Conduct exploitation of external facing assets to gain internal network access
Conduct post-exploitation actions towards exercise objectives
Conduct on-site physical penetration assessments at various federal courthouses and other Court locations to obtain access to internal networks
Use custom code and/or commercial-off-the-shelf (COTS) exploitation frameworks to bypass and penetrate network and system defenses
Comply with the unique rules of engagement (ROE) provided for each exercise, along with the standard operating procedures (SOP) for Red Team operations
Employ red team tradecraft while conducting exercises

Qualification

Red team operationsNetwork exploitationSpear phishingPenetration testingRed team toolsScripting languagesCybersecurity assessment reportsSocial engineeringWindows configurationLinux configurationMacOS configurationApplication security testingOWASP knowledgeSANS vulnerabilities knowledgeStatic Application Security TestingDynamic Application Security TestingTechnical writingTeam collaboration

Required

Minimum 4 years of direct, hands-on technical red team and/or government computer network exploitation/offensive operations experience
Minimum 4 years of hands-on experience with red team tools (Cobalt Strike, Kali, etc.) in a production environment
Minimum 4 years of experience with network technologies and protocols (OSI model, routing, troubleshooting)
Minimum 4 years of experience using and investigating 'living off the land' TTPs
Ability to secure, configure, deploy, and troubleshoot Windows, Linux, and MacOS systems
Minimum 4 years of experience scripting in Bash, C#, Ruby, Perl, Python, PHP, etc
Minimum 4 years of social engineering and physical penetration testing
Minimum 4 years of experience writing cybersecurity assessment reports
United States Citizen with ability to obtain and hold a Public Trust clearance
CRTO certification (or ability to obtain within 3 months of onboarding) is required

Preferred

Experience with Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST), including integrating results into developer workflows is preferred
Knowledge of OWASP Top 10 & SANS Top 25 vulnerabilities, with ability to exploit/remediate is preferred
Experience with application security testing for web, mobile, and API endpoints is preferred
OSCP and/or GPEN certifications are preferred, but not required

Benefits

Medical
Dental
Vision
Paid PTO
Life and disability insurance
Technical training
Tuition bonuses

Company

Intelligent Waves

twitter
company-logo
Intelligent Waves, a veteran-owned organization, delivers secure, innovative technology solutions for federal defense and intelligence missions.
dateFounded in 2006
location
Reston, VA, US
people-size51-200 employees
web-link
https://intelligentwaves.com

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Marqus Hutchinson
Chief Technology Officer
linkedin
leader-logo
Amy Wood
Chief Financial Officer
linkedin
Company data provided by crunchbase