1+ months

Adversary Emulation - Senior Cybersecurity Engineer

MITRE
Huntsville, AL
Do you have operational red team experience, perhaps even an OSCP, and solid software development skills? Do you want to be on the leading edge of improving cybersecurity through operational testing of products, services, and defensive capabilities? We are seeking creative and driven people that can apply their understanding of our adversaries, their operational experience and software development skills to help turn the tide in favor of the defender.
 
Were looking for experienced cybersecurity operations (blue-team) engineers and analysts to support our work automating cybersecurity operations, emulating adversary behavior, and improving the defensive postures of our sponsors. Youll evaluate tools and methodologies, assess adversary intent, develop cybersecurity analytics and other techniques to thwart or detect attacks, develop approaches to automate cybersecurity operations, and engage in research to improve the state of the practice. Some examples of work that weve open-sourced includes ATT&CKCalderaMultiscanner, and a number of STIX libraries.
 
As a cybersecurity engineer in MITREs Cyber Operations and Effects Tech Center, youll support internal research as well as the cybersecurity missions across a wide variety of organizations. We work across MITREs R&D centers in the federal civilian and national security space, but beyond that we work and collaborate with the public on open source software, with open standards organizations, and with industry.
 
Why choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. That's because MITRE people are committed to tackling our nation's toughest challengesand we're committed to the long-term well-being of our employees. MITRE is different from most technology companies. We are a not-for-profit corporation chartered to work for the public interest, with no commercial conflicts to influence what we do. The R&D centers we operate for the government create lasting impact in fields as diverse as cybersecurity, healthcare, aviation, defense, and enterprise transformation. We're making a difference every dayworking for a safer, healthier, and more secure nation and world. Our workplace reflects our values. We offer competitive benefits, exceptional professional development opportunities, and a culture of innovation that embraces diversity, inclusion, flexibility, collaboration, and career growth. If this sounds like the choice you want to make, then choose MITREand make a difference with us.
 
Key Functions:
  • Work closely with red-team experts to evaluate IT environments and identify security goals, vulnerabilities, objectives, and requirements.
  • Perform cybersecurity operations testing, and develop improvements to doing so, based on real adversary behavior described in adversary emulation plans.
  • Evaluate the efficacy of existing detection mechanisms, analytics, and mitigations.
  • Identify gaps in visibility, data, tools, and process.
  • Address gaps within defenses by improving systems and processes.
  • Develop approaches to automating cybersecurity operations, reducing cost and increasing efficiency.
  • Solve cyber problems through operations, data-driven analytics, and development.
  • Leverage research, frameworks, and best practices to improve the defensive posture of our sponsors.
Minimum Qualifications:
  • BS and 3 years related experience
  • Experience in one or more of: cyber operations, blue-team, incident response/hunt, cybersecurity research and development, or red-teaming
  • Knowledge of advanced cyber threats, adversary methodologies, and cyber threat intelligence
  • Previous success applying hands-on and prototype solutions to cyber problems
  • Strong written and verbal communication skills
  • Knowledge of open-source tools and best practices
  • Applicants selected for this position will be subject to a government security investigation and must meet eligibility requirements
  • Ability to obtain and maintain a security clearance
Preferred Qualifications:
  • Knowledge of advanced cyber threats, adversary methodologies, and cyber threat intelligence
  • Experience in red-teaming, penetration testing, exploitation
  • Experience in incident response (hunt), blue teaming, reverse engineering
  • Strong written and verbal communication skills
  • TS/SCI level security clearance
  • Knowledge of STIX, TAXII, ATT&CK

Categories

Posted: 2018-08-09 Expires: 2018-11-17

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Adversary Emulation - Senior Cybersecurity Engineer

MITRE
Huntsville, AL

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast