Cyber Security Red Team Analyst, Senior

Summary:
The Cybersecurity Red Team Analyst - Senior will assist in developing and testing tools, tactics, and procedures to emulate adversarial threats actively in use targeting the financial services industry and performs the employment of these tools in the Huntington environment with minimal supervision. This capability provides Huntington with a means of testing security controls for effectiveness, discovering gaps in controls, and validating viability of threats for more effective prioritization of risks.

Duties & Responsibilities:

• Develop and test threat actor emulation tools, tactics, and procedures for the Red Team to employ on-demand for assessments of security controls for application, systems, and network.
• Partner with threat intelligence team to ensure Red Team capabilities and tactics accurately emulate the current threat landscape.
• Consult with cross-functional teams in project testing phases to ensure controls are in place to remediate threats.
• Consult with cross-functional teams for architectural design and review sessions to ensure controls are in place to remediate threats.
• Coordinate and monitor 3rd-party penetration testing engagement staff to ensure engagements meet all requirements with appropriate communications and timely and accurate reporting of results.
• Generate and publish Red Team metrics and reporting.
• Lead efforts to track remediation of findings to completion through coordination with cross-functional teams for various application and technology system owners.
• Other duties as assigned.

Basic Qualifications:

• 3 years Cyber Security experience
• 2 years Penetration testing/Red team experience
• Associates degree

Preferred Qualifications:

• Ability to communicate clearly and concisely
• Understanding of Threat Actors and their tactics, techniques, and procedures
• Strong experience with Security Assessment Toolsets
• Strong experience in automation and scripting of applications and systems
• Advanced knowledge of relational databases and structured query language
• Advanced knowledge of client/server relationships and multi-tier environments
• OSCP, GPEN, OSCE, GCIH, GXPN

#Hybrid

#LI-SG1

#LI-BM1

Exempt Status: (Yes = not eligible for overtime pay) (No = eligible for overtime pay)

Workplace Type:

Our Approach to Office Workplace Type

Certain positions outside our branch network may be eligible for a flexible work arrangement. We’re combining the best of both worlds:  in-office and work from home. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. Remote roles will also have the opportunity to come together in our offices for moments that matter. Specific work arrangements will be provided by the hiring team.

Huntington will not sponsor applicants for this position for immigration benefits, including but not limited to assisting with obtaining work permission for F-1 students, H-1B professionals, O-1 workers, TN workers, E-3 workers, among other immigration statuses. Applicants must be currently authorized to work in the United States on a full-time basis.

Huntington is an Equal Opportunity Employer.

Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.

Note to Agency Recruiters:  Huntington will not pay a fee for any placement resulting from the receipt of an unsolicited resume.  All unsolicited resumes sent to any Huntington colleagues, directly or indirectly, will be considered Huntington property. Recruiting agencies must have a valid, written and fully executed Master Service Agreement and Statement of Work for consideration.