Red Team Operator - Senior Level
United States, RW, US
Zurich Insurance
SpearTip a company of Zurich’s Red Team emulates real-world attacks by conducting targeted operations that emulate the tools, tactics, and procedures (TTPs) of threat actors. Lead research with the goal of developing new TTPs improving attack efficacy and assist with defensive efforts. Partner with other teams to develop tooling and instrumentation to improve our detection and response capabilities. The Red Team as in this roll will coach and mentor team members to enhance their capabilities.
Tasks:
- Conduct and/or support authorized adversarial emulations on enterprise network assets.
- Create reports and recommendations from findings, include issues uncovered and levels of risk.
- Collaborate with other internal and external partner organizations on target access and operational issues.
- Create comprehensive exploitation strategies that identify exploitable technical or operational vulnerabilities.
- Support in Penetration Tests as help develop the red team offering
Required Skills:
- Bachelors degree and 5 or more years experience in the Information Technology area
OR - Zurich Cybersecurity Technician Apprentice, including Cyber Security Certification and 6 or more years experience in the Information Technology area
OR - High School Diploma or Equivalent and 7 or more years experience in the Information Technology area
AND - MS Office experience
AND - Knowledge of Cyber Security Operations
Preferred Skills:
- 2-3 Years planning or leading and 3-5 years conducting Red Team operations
- Expertise with commodity and advanced threat actor TTPs.
- Capacity to relate findings of offensive engagements to both executive and technical audiences.
- Ability to develop policy, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational cyber activities.
- Knowledge of evasion strategies and techniques. (A/V, WAF, NGAV, EDR, etc.)
- Develops, creates, maintains, and writes/codes new (or modifies existing) computer applications, software, or specialized utility programs.
- Experience with red teaming and covert computer exploitation
- Experience with malware development.
- Experience in Exploit Development and reverse engineering.
- Experience building, deploying, and managing offensive security operational infrastructure
- Knowledge of Unix/Linux and Windows operating systems structures and internals (e.g., process management, directory structure, installed applications).
- Experience with leveraging open source penetration testing tools including Metasploit or the Kali Linux tool set.
- Experience working in a Purple Team environment testing and building detections.
- Experience with common command and control and post-exploitation frameworks (Cobalt Strike, Mythic, Covenant, Metasploit etc.)
- Conducted Open source intelligence gathering and social engineering
Compensation for roles at Zurich varies depending on a wide array of factors including but not limited to the specific office location, role, skill set, and level of experience. As required by local law, Zurich provides in good faith a reasonable range of compensation for roles. For additional information about our Total Rewards, Click here. Other rewards may include short term incentive bonuses and merit increases. Candidates with salary expectations outside of the range are encouraged to apply, and will be considered based on experience, skill, and education. The salary provided is a nationwide market range and has not been adjusted for the applicable geographic differential associated with the location where the position may be filled. The starting salary range for this position is $96,300.00 - $157,700.00.
As an insurance company, Zurich is subject to 18 U.S. Code § 1033.
As a condition of employment at Zurich, employees must adhere to any COVID-related health and safety protocols in place at that time (https://www.zurichna.com/careers/faq).
A future with Zurich. What can go right when you apply at Zurich?
Now is the time to move forward and make a difference. At Zurich, we want you to share your unique perspectives, experiences and ideas so we can grow and drive sustainable change together. As part of a leading global organization, Zurich North America has over 150 years of experience managing risk and supporting resilience. Today, Zurich North America is a leading provider of commercial property-casualty insurance solutions and a wide range of risk management products and services for businesses and individuals. We serve more than 25 industries, from agriculture to technology, and we insure 90% of the Fortune 500®. Our growth strategy is not limited to our business. As an employer, we strive to provide ongoing career development opportunities, and we foster an environment where voices are diverse, behaviors are inclusive, actions drive equity, and our people feel a sense of belonging. Be a part of the next evolution of the insurance industry. Join us in building a brighter future for our colleagues, our customers and the communities we serve. Zurich maintains a comprehensive employee benefits package for employees as well as eligible dependents and competitive compensation. Please click here to learn more.
As a global company, Zurich recognizes the diversity of our workforce as an asset. We recruit talented people from a variety of backgrounds with unique perspectives that are truly welcome here. Taken together, diversity and inclusion bring us closer to our common goal: exceeding our customers’ expectations. Zurich does not discriminate on the basis of age, race, ethnicity, color, religion, sex, sexual orientation, gender expression, national origin, disability, protected veteran status or any other legally protected status. EOE disability/vet
Zurich does not accept unsolicited resumes from search firms or employment agencies. Any unsolicited resume will become the property of Zurich American Insurance. If you are a preferred vendor, please use our Recruiting Agency Portal for resume submission.
Location(s): AM - Remote Work (US)
Remote Working: Yes
Schedule: Full Time
Employment Sponsorship Offered: No
Linkedin Recruiter Tag: #LI-KJ1 #LI-REMOTE
Tags: Cobalt Strike Compliance EDR Exploit Kali Linux Malware Metasploit Offensive security Open Source Pentesting Red team Reverse engineering Risk management Strategy TTPs UNIX Vulnerabilities Windows
Perks/benefits: Career development Competitive pay Equity / stock options Health care Insurance Startup environment Team events
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.