Senior Red Team Consultant at Bishop Fox – US Remote

Posted on by Vaseline

Bishop Fox is the leading authority on offensive security, offering solutions ranging from continuous penetration testing, red teaming, and attack surface management to product, cloud, and application security assessments. We’ve worked with more than a quarter of the Fortune 100, half of the Fortune 10, eight of the top 10 global technology companies, and all of the top global media companies. Our Cosmos platform was named Best Emerging Technology in the 2021 SC Media Awards, and our offerings are consistently rated “world class” in customer experience surveys. For more than 16 years, we’ve contributed and given back to the security community. In the past five years alone, we’ve published more than 16 open source tools and 50 security advisories. Learn more at bishopfox.com or follow us on Twitter.

We are looking for hacking professionals in the US with a focus on red teaming to join our team. Together we can create a safer world.

Responsibilities

You’re a natural red teamer; you see problems—and solutions—in everything. You instinctively know your way around source code. You’ve plundered apps and plundered networks (legally, of course). You have a passion for hacking that goes beyond a career—it’s a way of life for you. By this point, you’ve probably collected a few exposés, written a few blog posts, and given a few industry talks.

With Bishop Fox, you will perform red teaming engagements beginning with research and including profiling organizations, defining attack objectives, and creating attack tree graphs and other key planning efforts. You will then execute operations based on that planning to reach the attack objectives via various possible attack paths including network, web application, physical, social engineering, and others. You will help our clients understand their attack surface by communicating, responding to incidents, reporting on steps taken and issues discovered, and providing thoughtful, tailored, and actionable recommendations.

As a Senior Consultant, you’ll solve challenging technical problems and build creative solutions in a client-facing role. As a trusted advisor, you’ll provide expert insight to help our clients make tough business decisions, including how to prioritize critical findings. And as a Senior Penetration Tester, you’ll lead small teams on unique assignments, mentor colleagues, and significantly contribute to the advancement of our consulting practice.

Requirements

  • Over 5 years of experience in offensive security supporting a variety of assignments with clients from various industries
  • Knowledge of all common operating systems such as Windows, MacOS, Linux, ChromeOS, iOS and Android
  • Expertise in Windows Active Directory exploitation and lateral movement
  • Knowledge of ‘cloud’ platforms (AWS/Azure/GCP and O365/Google Workspace) and container technologies (Kubernetes/Docker)
  • Experience developing custom tools and payloads, as well as reverse engineering and evasion techniques
  • Knowledge of multiple programming languages ​​(preferably Python, Golang, JavaScript/TypeScript, C#, C/C++, PowerShell and/or Bash)
  • Knowledge of network and web protocols (e.g. TCP/IP, HTTP, HTTPS, etc.)
  • Demonstrated experience in social engineering, conducting reconnaissance, developing and delivering phishing/vishing pretexts, as well as understanding of email security technologies and other related countermeasures
  • Excellent written and oral communication skills

Nice to have:

  • Expertise in exploit development and/or assembly (x86/arm)
  • Experience with threat modeling, threat intelligence or incident response
  • Experience with DevOps and CI/CD technologies
  • Experience performing physical penetration testing including entry skills, RFID hacking and alarm bypassing
  • Blockchain Security Experience
  • OSCP/E, GWAPT, GPEN or GXPN certifications may be helpful but are not required

We embrace diversity and an inclusive culture. We value our employees and who they are, creating a strong and collective talent base to successfully serve our customers and the security community with unmatched expertise.

Bishop Fox is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected veteran status, or any other characteristic protected by applicable federal, state or local law. All new employees must pass a background check as a condition of employment.

Interested? Apply today!

Avatar for Vaseline
Vaseline https://newspowergreen.biz.id

You May Also Like

More From Author