Senior Operator (Red Team)

Employer
USAJobs
Location
Wallops Island, Virginia
Posted
Jul 04, 2022
Closes
Jul 05, 2022
Function
Administrative
Hours
Full Time
Duties

Depending on your career level as a DHS Cybersecurity Service Employee in the Technical Track, at the Staff or Principal Cybersecurity Specialist level, you will continually maintain and share your expertise in Vulnerability Assessment to:
  • Conduct complex or advanced technical red team assessments impacting key DHS, Federal, or critical infrastructure cybersecurity programs.
  • Identify and analyze tactics, techniques, and procedures (TTP) of cyber exploitation and attack to isolate applicable cyber defense policies and configurations and evaluate compliance with regulations and organizational directives.
  • Conduct or lead red team assessments on enterprise network or control system assets to evaluate the effectiveness of security controls and execute authorized services.
  • Prepare and brief assessment reports to technical and non-technical CISA leadership that document methodologies, findings, impacts, and recommends mitigation and remediating strategies/solutions.
  • Develop tests of locally developed tools and new techniques for gaining and maintaining access to target systems, while evaluating compliance with specifications and requirements in accordance with policy, benchmarks, and industry best practices.
  • Collaborate with internal and external cybersecurity professionals and experts in cybersecurity risk assessment/management, automated information sharing, threat analysis, vulnerability management, and network defense/network protection.
  • Provide key technical input to assist organizational leaders across federal government and critical infrastructures with decision-making related to a variety of critical organizational priorities and future planning.
  • Propose highly effective cybersecurity recommendations to organizations of varying maturity levels, from those that advance the state of practice in the field to those that are establishing initial cybersecurity capabilities.
  • Monitor national and international events providing highly effective cybersecurity recommendations to organizations of varying maturity levels, from those that advance the state of practice in the field to those that are establishing initial cybersecurity capabilities.
  • Work with multinational external government agency red team assessment teams to share and document best practices on assessing and identifying tactics, techniques and procedures (TTP) of cyber exploitation and attack.
  • Serve as a technical mentor to other DHS cybersecurity employees in related areas.

Depending on their career level, DHS Cybersecurity Service employees with a technical capability in Vulnerability Assessment will generally apply their expertise to:
  • Conduct assessments of threats and vulnerabilities on networks/systems software and hardware and develops and recommends appropriate mitigation countermeasures.
  • Develop and conduct tests of systems to evaluate compliance with specifications and requirements in accordance with policy, benchmarks, and industry best practices, by validating technical, functional, and performance characteristics of systems or their elements.
  • Coordinate and align with program offices and various stakeholders.


Requirements

Conditions of Employment

  • You must be a U.S. Citizen or national.
  • You must be 18 years of age.
  • Must be registered for the Selective Service (if you are a male).
  • Must be able to submit to a drug test and receive a negative result.
  • Must be able to comply with ethics and standards of conduct requirements, including completing any applicable financial disclosure.
  • May be required to serve a 3 year probationary period.
  • Must be able to obtain and maintain a SECRET security clearance.


Qualifications

This position is in the Technical Track across Staff Cybersecurity Specialist and Principal Cybersecurity Specialist career levels. These individuals generally:
  • Have between 8-12 years of cybersecurity work experience and are either-
  • Capable of serving as a resident cybersecurity expert who applies significant technical expertise to develop solutions for critical, non-routine challenges, or -
  • Capable of serving as a cybersecurity technical authority who performs work of unusual difficulty to develop complex solutions impacting key DHS or Federal cybersecurity programs
DHS Cybersecurity Service employees start at career levels and salaries matching their experience and expertise. To learn more about DHS Cybersecurity Service career tracks and levels, visit our application portal .

This position is focused on Vulnerability Assessment .

DHS Cybersecurity Service jobs are structured cybersecurity specializations - called technical capabilities. To learn more about technical capabilities, visit our application portal .

Desired Tools/Industry Experience: Knowledge and experience in various free or commercial implant frameworks such as: Cobalt Strike, Sliver, Metasploit, etc., custom command and control (C2), infrastructure as code, and various cloud infrastructure providers.

Desired Certification:
  • Certified Ethical Hacker (CEH)
  • GIAC Certified Incident Handler (GCIH)
  • GIAC Cyber Threat Intelligence (GCTI)
  • Offensive Security Certified Expert (OSCE)
  • Offensive Security Certified Professional (OSCP)
  • Offensive Security Exploitation Expert (OSEE)
  • Offensive Security Web Expert (OSWE)
  • GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
Desired Programming/Coding Languages:
  • C-Beacon Object Files (COFFs/BOFs)
  • C#
  • Terraform/Ansible


Education

Degrees are not required for jobs in the DHS Cybersecurity Service, but DHS is interested in your level of education and the topics you studied. As you submit initial application information, you will be asked questions about your education.

Additional information

Benefits: DHS Cybersecurity Service employees receive a range of federal employment benefits designed to support their professional and personal lives. To learn more about benefits, visit our application portal .

More information about the specific benefits available to you will be provided as you progress through the application process.

Background Investigation: To ensure the accomplishment of its mission, the Department of Homeland Security (DHS) requires each and every employee to be reliable and trustworthy. To meet those standards, all selected applicants must undergo and successfully complete a background investigation for a security clearance as a condition of placement in this position. This review includes financial issues such as delinquency in the payment of debts, child support and/or tax obligations, as well as certain criminal offenses and illegal use or possession of drugs.

Pursuant to Executive Order 12564 and DHS policy, DHS is committed to maintaining a drug-free workplace and, therefore, conducts random and other drug testing of its employees in order to ensure a safe and healthy work environment. Headquarters personnel in safety- or security-sensitive positions are subject to random drug testing and all applicants tentatively selected for employment at DHS Headquarters are subject to drug testing resulting in a negative test result.