Job Description

Salary*: $80,000 - $90,000

*Dependent upon qualifications

Summit 7 is here to rise above the ordinary. The work we do here goes far beyond day-to-day projects - it further protects the US defense industrial base from cyber threats, fosters thought leadership and creates growth opportunities. Our support staff, sales team and technicians are all coming together to make a difference. We also recognize that you're a person with life beyond work, that's why we invest in meaningful health and welfare benefits such as:

• Excellent health/dental benefits from BCBS
• See into the future with our luxurious VSP vision benefits
• Prepare for the long-haul courtesy of our 401k with company matching
• Unlimited mobile phone plan
• 10 days' vacation, 7 days sick time
• Bonuses and salary increase potential via our certifications plan

We do cool work here, defying expectations by simply being who we are - each of us makes an impact.

We are seeking a Red Team Analyst who will be responsible for conducting a variety of structured activities to locate and exploit vulnerabilities in on-premises and cloud hosted networks for both Summit 7 and its clients. The Red Team Analyst will operate under the direction of the SOC Manager and Red Team Lead.

Essential Functions:

Vulnerability Assessments:

• • Scanning systems for vulnerabilities.
  • Ingesting vulnerability reports for analysis.
  • Research on, and the discovery of, new vulnerabilities.
  • Prioritize remediation efforts for discovered vulnerabilities.

Attack Surface Assessments:

• • Utilize various tools and techniques to identify potential areas of weaknesses in a target's external environment.
  • Assist with the creation and validation of additional attack surface assessment tools.

Red Team Engagements:

• • Conduct internal attack simulations to test threat detection and response.
  • Assist with the planning and scheduled phishing campaigns.
  • Assist with the validation and improvement recommendations of detection rules.
  • Assist with the creation and validation of additional Red Team tools.

Penetration Testing:

• • Conduct scheduled start-to-finish manual and/or tool assisted penetration tests on targeted environments.
  • Assist with the creation and validation of additional penetration testing tools.

Reporting:

• • Document all security findings discovered during various Red Team activities.
  • Create professional reports on all security findings to include actionable remediation recommendations.

Collaboration:

• • Work with members of the SOC and NOC to support ongoing threat hunting, detection engineering, and vulnerability remediation efforts.
  • Work with colleagues to improve skills needed for the advancement of overall Red Team goals.
  • Assist other Red Team Analysts as needed.

Qualifications:

Education and Skills:

• • 3+ years of Information Security experience in cloud-based environments (Infrastructure as a Service (IaaS) and Platform as a Service (PaaS) in both private and public (AWS, Azure) environments) and in one or more of the following verticals:
    • Network Penetration Testing
    • Application Penetration Testing
    • Webapp Penetration Testing
    • Cloud Penetration Testing
    • Red Team Operations
    • Application Security Assessments
    • Network Exploitation
  • Experience with technologies (i.e. Kali, Commando, Mythic, Caldera, Shodan, Qualys, Nmap) commonly used in Red Teaming exercises.
  • Clear and concise report writing skills.
  • Familiarity with various programming/scripting languages
  • Familiarity with web programming infrastructure
  • Strong attention to detail
  • Strong time management and organizational skills

Certifications:

• Security+ (Required)
• At least one of the following penetration testing, Red Team certifications (or equivalent):
  • OSCP
  • HTB CPTS
  • CRTP
  • CARTP
  • PNPT
  • CRTP
  • CRTO

Optional/Desired:

• Bachelor's degree in IT, Computer Science, Cybersecurity, or a related field.
• Azure Gov Cloud and Office 365 GCC/GCCH experience.
• Experience working in a "Purple Team" environment.
• Reverse engineering experience.
• Demonstrated rapid tool development and automation experience.

Summit 7 Systems is an equal opportunity/ affirmative action employer and an alcohol and drug free workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion , sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Summit 7 Systems requires background investigations. Any offer of employment is   contingent upon the results of a reference/background check. We are a drug and alcohol-free workplace and require pre-employment drug sc reening.

Job Tags

Similar Jobs