Language Fluency: English (Required)

Work Shift:

Please review the following job description:

ESSENTIAL DUTIES AND RESPONSIBILITIES

Following is a summary of the essential functions for this job. Other duties may be performed both major and minor which are not mentioned below. Specific activities may change from time to time.

• Design and Execute BAS Scenarios: Plan and conduct realistic cyberattack simulations that mirror real-world threat actor TTPs across enterprise environments.

• Analyze Simulation Results: Assess BAS outcomes to identify security control gaps vulnerabilities and opportunities for improved detection and response.

• Provide Actionable Recommendations: Develop and communicate prioritized recommendations to strengthen security policies procedures and technical controls.

• Integrate BAS with Security Infrastructure: Connect BAS platforms with SIEM SOAR EDR and other security tools to optimize detection engineering and response workflows.

• Collaborate Across Teams: Work with red blue and purple teams as well as incident response and threat intelligence groups to adjust alerts rules and detection logic.

• Threat Hunting and Intelligence: Leverage threat intelligence to inform BAS scenarios and proactively address emerging threats.

• Vulnerability Management Support: Contribute to the identification prioritization and remediation of vulnerabilities based on simulation and testing results.

• Project Leadership: Lead small-to-large scale security validation initiatives with manageable risks and play significant roles in larger complex security projects.

• Documentation and Reporting: Maintain detailed documentation of BAS methodologies procedures and findings; communicate technical results clearly to both technical and non-technical stakeholders

Required Qualifications:

The requirements listed below are representative of the knowledge skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Bachelors degree and five years of experience in systems engineering or administration or an equivalent combination of education and work experience

• In-depth knowledge in applied enterprise information security technologies including but not limited to firewalls intrusion detection/prevention systems network operating systems identity management database activity monitoring encryption content filtering and Mainframe security

• Previous experience in planning and managing IT projects

Preferred Qualifications:

• Experience with Breach and Attack (BAS) or Continuous Security Validation (CSV) tools as a senior engineer

• Bachelors degree and twelve years of experience or an equivalent combination of education and work experience

• Banking or financial services experience

• Mastery at designing and executing Attack Scenarios: Plan and conduct realistic cyberattack simulations that mimic real-world threat actor tactics techniques and procedures (TTPs).

• Analyze Simulation Results: Evaluate the outcomes of BAS identifying weaknesses in security controls vulnerabilities and gaps in detection and response capabilities.

• Provide Actionable Recommendations: Develop and present recommendations to improve security policies procedures and technologies based on simulation findings.

• Integrate BAS with Security Infrastructure: Integrate BAS platforms with existing security tools like SIEM and EDR to enhance detection and response capabilities.

• Document and Communicate: Maintain documentation of BAS methodologies procedures and results and communicate findings to technical and non-technical stakeholders.

• Collaborate with Security Teams: Work with security analysts and engineers to adjust alerts rules and controls based on simulation results.

• Advanced Threat Hunting and Intelligence: Utilize threat intelligence to inform attack scenarios and identify emerging threats.

• Vulnerability Management: Identify prioritize and recommend remediation of high-risk vulnerabilities.

• Red Teaming and Blue Teaming: May also participate in red purple and blue team exercises to further evaluate security posture.

• Strong understanding of cybersecurity concepts including attack vectors TTPs and security controls.

• Hands-on experience with architecting maturing and automation - CI/CD pipeline end to end lifecycle

• Experience with penetration testing vulnerability management and security tools.

• Proficiency in scripting and automation languages (e.g. Python PowerShell).

• Knowledge of common threat intelligence sources and frameworks.

• Excellent analytical problem-solving and communication skills.

• Ability to work independently and as part of a team.

• Mastery proficiency with cybersecurity frameworks and standards (e.g. NIST MITRE ATT&CK and D3FEND).

• Experience with GRC engineering

• Experience with commercial BAS tools: AttackIQ SafeBreach Cymulate etc.

• Experience with detection engineering and SOAR

OTHER JOB REQUIREMENTS / WORKING CONDITIONS

Sitting (if checked indicate frequency)

Constantly (More than 50% of the time)

Visual / Audio / Speaking

Able to access and interpret client information received from the computer and able to hear and speak with individuals in person and on the phone.

Manual Dexterity / Keyboarding

Able to work standard office equipment including PC keyboard and mouse copy/fax machines and printers.

Availability

Able to work all hours scheduled including overtime as directed by manager/supervisor and required by business need.

Travel

Minimal and up to 10%