Manager - Information Security (Red&Blue) - Remote Work

Responsibilities

• Conduct internal penetration testing and red team exercises which includes, penetration testing, Red/Blue teaming programs, Cybersecurity Tabletop exercises; summarizing the exercise for senior leadership, including areas of success and areas of opportunities.
• Integrates the team’s identification and remediation of any findings, which are produced by the associated programs, with the other departments, as well as information technology partners.
• Works closely with other groups within the organization in order to develop the strong partnerships required to meet cybersecurity technology goals integrating the a designs for secure application, network, and product development supporting business intelligence.

Qualifications

• Deep understanding of penetration testing and red teaming frameworks and concepts
• Passion for protecting networks, systems, and data from cyber attacks
• Strong understanding of cybersecurity concepts and related technology solutions
• Strong consultative skills to work directly with other technology teams with appropriate influence
• Building strong networks within the firm to spot and capitalize on opportunities to get involved in projects that others are leading across a number of different business units and sectors
• Helping to grow and develop our team through hands-on training and coaching
• Advanced knowledge of operating and database security (PostgreSQL, MySQL, etc)

Preferred Personal Skills

• Must be able to effectively communicate to anyone in the organization, from the most technical operator to the least technical business partner
• Ability to interpret and document business and technical requirements
• Good interpersonal, verbal, and written communication skills
• Detail-oriented with a good time and analytical skills
• Ability to exercise prudent judgment and offer knowledgeable advice
• Ability to work both independently and in a team environment
• Ability to manage multiple projects and tasks
• Ability to manage production sensitive situations
• Demonstrated level of integrity when dealing with confidential and sensitive information
• Demonstrated knowledge of tactics used by malicious insiders, techniques, and procedures associated with state-sponsored threat actors

Preferred Technical Skills

• Proven technical expertise in managing a continuous data protection platform for a large enterprise
• Must be proficient with the common penetration testing tools (Metasploit, Burp Suite, Cobalt Strike, etc)
• Must be able to examine an organization from the standpoint of a threat actor and articulate risk in clear, precise terms
• Ability to effectively code in a scripting language (Python, Golang, etc)
• Demonstrated knowledge of internal penetration testing tactics, techniques, and procedures
• Experience performing application security source code reviews
• Hands-on experience in the security aspects of multiple platforms, operating systems, software, and network protocols
• Hands-on experience with commercial and open-source network and application security testing tools

Experiences

• At least 5 years of experience in penetration testing, vulnerability management, or ethical hacking required.
• At least 1-2 years of experience in managerial position.

Additional Qualifications

• Certification of cybersecurity and ethical related (e. g OSCP, OSCE, CISSP, etc) upon hire preferred. 

Why Work With Us?

• 4 days of work, and a day for personal growth #Bye5
• We are 100% remote, #WorkFromAnywhere you want
• Social impact: change the lives of millions


Join our movement and be part of something great!