isecjobs.com

Senior Red Team Operator

Washington, DC, United States

Full Time Senior-level / Expert Clearance required USD 124K - 231K *
Millennium Corporation logo

Millennium Corporation

View all jobs at Millennium Corporation

Apply now Apply later

Overview

For two decades, Millennium Corporation has been operating on the leading edge of cybersecurity. Our elite team of more than 400 experts has an unparalleled record of performance supporting Red Team Operations, Defensive Cyber Operations, Software Engineering, and Technical Engineering. With the largest contingent of contracted Red Team operators in the DoD, we provide an unmatched level of threat intelligence and battle-tested experience for customers in both the DoD and federal civilian markets.

What We Believe

We believe that diversity is a fact, inclusion is a choice.  At Millennium Corporation, we are inclusive. We celebrate multiple approaches and different points of view. We strongly believe that diversity drives innovation, and we are building a culture where differences are valued. We are always growing our programs and we offer tools to help our employees grow and manage their careers.

 

Millennium is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. Millennium promotes affirmative action for women, minorities, disabled persons, LGBTQ+ and veterans.

Responsibilities

Millennium Corporation is hiring a Senior Red Team Operator to work in a hybrid capacity from the Washington DC area. The candidate must have a public trust clearance.

 

  • Conduct red team exercises against production IT systems, facilities, and personnel belonging to the AO and the Courts.
  • Develop and conduct spear phishing campaigns to gain internal network access.
  • Conduct exploitation of external facing assets to gain internal network access.
  • Conduct post-exploitation actions towards exercise objectives.
  • Conduct on-site physical penetration assessments at various federal courthouses and other Court locations in order to obtain access to the internal network.
  • Use custom code and/or commercial-off-the-shelf (COTS) exploitation frameworks to bypass and penetrate network and system defenses.
  • Comply with the unique rules of engagement (ROE) that will be provided for each exercise along with the standard operating procedures (SOP) for overall Red Team operations.
  • Employ red team tradecraft while conducting exercises.

Qualifications

  • Minimum 6 years direct, hands-on technical red team and/or government computer network exploitation/attack operations experience (which is to say direct red team operations work and not just that which is in support of red team operations).
  • Minimum 2 years technical red team and/or government computer network exploitation/attack operations leadership experience (note this is distinct experience from the above and cannot overlap).
  • Minimum of 3 years of hands-on experience with using modifying and customizing penetration testing and red teaming software frameworks (Cobalt Strike, Kali, etc.) to meet operational requirements.
  • Minimum of 2 years of independently conducting every phase of a red team exercise on their own without guidance or supervision.
  • Minimum of 2 year of hands-on experience developing payloads that bypass A/V and EDR solutions for use in various phases of a red team exercise.
  • Minimum of 2 years mentoring junior and mid-level operators on red team tradecraft and Advanced Knowledge Requirements (that they possess).
  • Minimum of 2 years of experience in professionally delivering technical red team reports and briefings.
  • CRTO certification required.
  • OSCP, OSCE, OSEE, GXPN, and/or GPEN are preferred, but not required.

 

Additional Qualifications:

  • Ability to independently conduct every phase of a red team exercise on their own without guidance or supervision.
  • Hands-on experience developing payloads that bypass A/V and EDR solutions for use in various phases of a red team exercise.
  • Ability to mentor junior and mid-level operators on red team tradecraft and Advanced Knowledge Requirements (that they possess).
  • Experience in professionally delivering technical and executive-level red team reports and briefings.

Business Development

Assist with Business Development activities as required to support Millennium's strategic business objectives, which may include but not limited to participation in technical interviews, creation of technical documentation, general proposal writing support and proposal color reviews.

Physical Requirements

  • Must be comfortable with prolonged periods of sitting at a desk and working on a computer.
  • Must be able to lift up to 10-15 pounds at a time.

Travel Requirements

<30%

Apply now Apply later
  • Share this job via
  • 𝕏
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  0  0  0
Category: PenTesting Jobs

Tags: Clearance Cobalt Strike DCO DoD EDR GPEN GXPN Kali OSCE OSCP OSEE Pentesting Red team Threat intelligence

Perks/benefits: Team events

Region: North America
Country: United States

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information Security Specialist jobsPenetration Tester jobsSenior Cyber Security Engineer jobsSenior Cybersecurity Engineer jobsInformation Security Officer jobsInformation Systems Security Officer jobsPrincipal Security Engineer jobsSenior Network Security Engineer jobsInformation System Security Officer jobsCloud Security Architect jobsChief Information Security Officer jobsSenior Penetration Tester jobsStaff Security Engineer jobsSecurity Specialist jobsSecurity Consultant jobsCyber Security Specialist jobsIT Security Engineer jobsSenior Information Security Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Product Security Engineer jobsCybersecurity Consultant jobsSenior Information Security Engineer jobsInformation System Security Officer (ISSO) jobsThreat Intelligence Analyst jobs
SaaS jobsSDLC jobsMalware jobsEncryption jobsRMF jobsForensics jobsSQL jobsGDPR jobsIPS jobsSplunk jobsIDS jobsTop Secret jobsEDR jobsFinance jobsDoDD 8570 jobsTerraform jobsBash jobsITIL jobsOWASP jobsCRISC jobsUNIX jobsGIAC jobsDocker jobsCompTIA jobsIntrusion detection jobs
TCP/IP jobsBanking jobsSANS jobsThreat detection jobsData Analytics jobsActive Directory jobsPolygraph jobsCCSP jobsOSCP jobsClearance Required jobsCyber defense jobsVPN jobsIT infrastructure jobsJavaScript jobsSOC 2 jobsAnsible jobsSOX jobsDNS jobsSOAR jobsJira jobsGCIH jobsSecurity strategy jobsOracle jobsNIST 800-53 jobsCryptography jobs