Cyber Threat Purple Teamer/Pen-tester

Job Posting Title

Cyber Threat Purple Teamer/Pen-tester

Agency

090 OFFICE OF MANAGEMENT AND ENTERPRISE SERV

Supervisory Organization

IS-SEC

Job Posting End Date (Continuous if Blank)

April 11, 2025

Note: Applications will be accepted until 11:59 PM on the day prior to the posting end date above.

Estimated Appointment End Date (Continuous if Blank)

Full/Part-Time

Full time

Job Type

Regular

Compensation

Job Description

As a Cyber Threat Purple Teamer/Pen-tester with OMES you will enjoy:

• Generous leave including 15 days of vacation, 15 days of sick leave and 11 paid holidays annually.
• A comprehensive Benefit Package with a generous benefit allowance to offset the cost of insurance premiums for employees and their eligible dependents.

Job Details

• Full-time 40-hour work weeks.
• Support the CyberCommand team.
• Commensurate on education and experience.

Responsibilities

• Conduct offensive security assessments including penetration tests on systems, applications, and network infrastructure to identify vulnerabilities and potential attack vectors
• Defensive Analysis: Utilize both automated and manual techniques to simulate real-world attacks and test defensive measures, security controls and monitoring capabilities
• Proactively identify vulnerabilities and threat actors targeting State information systems and assets to identify vulnerabilities, proactively and iteratively hunt for threats, and provide actionable intelligence to enhance the organization's security posture
• Collaborate with cross-functional teams to assess and mitigate risks, respond to security incidents, and develop strategies to defend against emerging threats
• Document and present detailed reports on findings, including recommended remediation strategies and security best practices
• Proactively search for signs of advanced persistent threats (APTs) and perform active reconnaissance to identify potential risks and vulnerabilities
• Identify and track threat actor Tactics, Techniques, and Procedures (TTPs)
• Use a variety of tools, techniques, and threat intelligence sources to analyze logs, network traffic, and system behavior to identify potential indicators of compromise (IOCs)
• Conduct incident response to investigate and respond to identified threats, by containing, eradicating, and assisting in recovery efforts, to minimize the impact and prevent further attacks
• Collaborate with the Cyber Operations and Cyber Defense teams to identify and close security gaps, improve incident response processes, and enhance overall Cyber Command capabilities
• Assist in the development and execution of tabletop exercises and simulations to test the organization's incident response readiness and identify areas for improvement
• Monitor and analyze threat intelligence sources to identify emerging threats, attack trends, and indicators of compromise relevant to the State of Oklahoma
• Stay up to date with the latest security threats, attack techniques and vulnerabilities, and use this knowledge to enhance purple team operation and defense strategies
• Develop incident response playbooks and procedures specific to penetration testing, red teaming, and threat hunting scenarios
• Conduct Digital Forensics investigations and Malware Analysis to identify malicious activity and derive Indicators of Compromise (IOCs)
• Conduct technical training sessions for Security & IT teams to enhance their understanding of penetration testing, threat hunting, and red teaming methodologies
• Coach and mentor junior team members to enhance and mature capabilities and team processes
• Contribute to reporting on the team's operational metrics and KPIs

Physical Demands and Work Environment

• This position works in a comfortable office setting with a computer for a large percentage of the workday. The noise level in the work environment is usually mild. Occasional travel may be required. Due to the nature of security, threat response, and investigative work, this position will be expected to be responsive outside normal office hours and will require some nights/weekends.

Minimum Qualifications

Requirements include a bachelor’s degree from an accredited college/university or four years of information security experience; or an equivalent combination of education and experience, substituting 12 semester hours in computer science or management information systems course work for each year of the required experience.

Preference will be given to candidates who possess

• Web development experience.

• OSCP certification

About OMES

The Office of Management and Enterprise Services provides excellent service, expert guidance and continuous improvement in support of our partners’ goals. We are a highly qualified workforce committed to serve those who serve Oklahomans and make government run in the most efficient, innovative manner possible.

OMES is an Equal Opportunity Employer. Reasonable accommodation to individuals with disabilities may be provided upon request.

Equal Opportunity Employment

The State of Oklahoma is an equal opportunity employer and does not discriminate on the basis of genetic information, race, religion, color, sex, age, national origin, or disability.

Current active State of Oklahoma employees must apply for open positions internally through the Workday Jobs Hub.