Senior Advisor Red Team

TransUnion's Job Applicant Privacy Notice

Personal Information We Collect

Your Privacy Choices

What We'll Bring:

At TransUnion, we strive to build an environment where our associates are in the driver’s seat of their professional development, while having access to help along the way. We encourage everyone to pursue passions and take ownership of their careers. With the support of colleagues and mentors, our associates are given the tools needed to get where they want to go. Regardless of job titles, our associates have the opportunity to learn new things and be a leader every day.

Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.

What You'll Bring:

• 5+ years of active experience in conducting penetration tests and actively working as a red teamer.

• Proficiency in ability to compromise a modern organization, escalate privileges, move laterally through complex networks, and achieve adversary goals.

• Strong experience and expertise in phishing techniques, social engineering tactics, and other initial access methods.

• Extensive experience in writing comprehensive and well-structured reports detailing findings, risks, and actionable recommendations.

• Proven track record in performing red team operations and purple team operations.

• Strong analytical and problem-solving skills with the ability to think creatively to simulate real-world threat scenarios.

• Excellent communication skills, with the ability to effectively convey technical information to both technical and non-technical stakeholders.

• Industry certifications such as OSCP, OSCE, GPEN, GWAPT, CISSP, or equivalent would be an advantage.

• Basic development experience (python/bash/git/etc) to create custom solutions for bleeding edge problems.

• This is a fully remote position but may require occasional in-person attendance at work-related events at the discretion of management.

Impact You'll Make:

We are seeking an experienced and highly skilled Red Teamer to join our Information Security Department. The Red Teamer will primarily be responsible for conducting in-depth Threat Emulation exercises such as Red Team Operations, Purple Team Operations, and Penetration Tests to assess the security of our systems, networks, and applications. The successful candidate will possess a strong background in network exploitation, email phishing, lateral movement, local privilege escalation, report writing, web application exploitation, C2 infrastructure, payloads, cloud testing, and have a proven track record in the field.

• Conduct comprehensive threat emulation exercises, actively simulating cyber-attacks to uncover vulnerabilities in systems, networks, and applications.

• Collaborate with cross-functional teams to perform purple team exercises that challenge the organization’s overall security posture.

• Perform lateral movement within target environments to assess the effectiveness of internal network segmentation and access controls.

• Demonstrate expertise in local privilege escalation techniques.

• Emulate threat actors by replicating their techniques, tactics, and procedures (TTPs) to identify vulnerabilities and gaps in our defensive measures.

• Develop and utilize custom scripts, tools, and frameworks to enhance red team operations and mimic real-world attacks.

• Conduct reconnaissance activities to gather intelligence on potential targets and identify attack vectors.

• Test the security of cloud-based environments and identify weaknesses in configurations, access controls, and data protection mechanisms.

• Document and communicate findings, risks, and recommendations in clear and concise reports to stakeholders, including technical and non-technical audiences.

• Stay updated on the latest attack techniques, threat landscape, and cybersecurity trends to continuously enhance the red team’s capabilities.

• Provide guidance and support to internal teams on remediation strategies and security best practices based on red team findings.

#LI-KJ1

Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the Los Angeles County Fair Chance Ordinance for Employers, the San Francisco Fair Chance Ordinance, Fair Chance Initiative for Hiring Ordinance, and the California Fair Chance Act.

Adherence to Company policies, sound judgment and trustworthiness, working safely, communicating respectfully, and safeguarding business operations, confidential and proprietary information, and the Company’s reputation are also essential expectations of this position.

This is a remote position which may require occasional in-person attendance at work-related events at the discretion of management.

Benefits:

TransUnion provides flexible benefits including flexible time off for exempt associates, paid time off for non-exempt associates, up to 12 paid holidays per year, health benefits (including medical, dental, and vision plan options and health spending accounts), mental health support, disability benefits, up to 12 weeks of paid parental leave, adoption assistance, fertility planning coverage, legal benefits, long-term care insurance, commuter benefits, tuition reimbursement, charity gift matching, employee stock purchase plan, 401(k) retirement savings with employer match, and access to TransUnion’s Employee Resource Groups. Spousal, domestic partner, and other eligible dependent coverage is available on select health and welfare plans.

We are committed to being a place where diversity is not only present, it is embraced. As an equal opportunity employer, all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, veteran status, genetic information, marital status, citizenship status, sexual orientation, gender identity or any other characteristic protected by law.

Pay Scale Information :

The U.S. base salary range for this position is $142,500.00 - $237,500 annually. *The salary range for this position reflects a reasonable estimate of the range of compensation for this job. At TransUnion, actual compensation is based on careful consideration of additional factors such as (but not limited to) an individual’s education, training, work experience, job-related skill set, location, and industry knowledge, as well as the scope and responsibilities of the position and market considerations.

Regular, fulltime non-sales positions may be eligible to participate in TransUnion’s annual bonus plan. Certain positions may be also eligible for long-term incentives and other payments based on applicable company guidance and plan documents.

 

TransUnion's Internal Job Title:

Sr Advisor, Cybersecurity