Offensive Security Product Engineer

Company: Ultimate Knowledge Corporation
Location: Orlando
Posted on: March 18, 2023

Job Description:

UKI-LRN's focus is on innovative content solutions developed by Information Security industry experts for security practitioners. We seek to create a direct path to the Knowledge, Skills, and Abilities of an Offensive Security Subject Matter Expert (SME) for beginner through intermediate security analysts and technicians. The SME will research and develop technical offensive security content for individual and team exercises. They will build, deploy, and tune security tooling in multi-network enterprise environments in support of individual and team exercises, CTFs, etc. They will also implement networks and tools in virtualized and containerized environments for content developed by UKI-LRN. The Offensive Security SME will collaborate with our Defensive SMEs to build and enrich information security content. Our ideal SME already builds virtual test-beds to experiment with offensive security tools and methodologies leveraging emerging TTPs, and they're enthusiastic about sharing their hard work.
Potential candidates will, on occasion, work with our federal customers (unclassified) requiring a current background check, including but not limited to:--- A Federal Bureau of Investigation (FBI) fingerprint check--- A National Agency Check with Written Inquiries (NACI) check
Hands-On Experience
--- Extensive coding skills in one or more languages such as: C#, C++, Ruby, Python, Java, .NET and others.--- Demonstrated skills in penetration testing Web Applications, SEIMs, IDS/IPS, firewalls (including NGFW, WAFs, etc.), X/EDR deployment, OSs and Software, VPNs, Data Encryption, etc.--- Designing and developing scripts, frameworks, tools, and the methods for complex scenarios, presenting malicious behavior and detection avoidance.--- CTF competitions, CVE research, and/or Bug Bounty results with demonstrated recognition.--- Planning and executing red-team exercises that replicate threat actor TTPs.--- Penetration testing across Cloud provided services (AWS, GCP, and Azure).--- Collaborating with defensive security professionals and teams to build technical solutions for complex environments.--- Federal Agency or DoD operational experience is a strong plus for this position.
DomainsHands on experience with at least five (5) of the following areas:
--- Red Teaming--- Penetration Testing--- Deception technologies--- Cloud Security--- Network Engineering/Network Security--- Digital Forensics and Reverse Engineering--- Detection Engineering
Knowledge
--- APT TTPs and a strong understanding of methods to identify and exploit vulnerabilities.--- Strong understanding of the Mitre ATT&CK Framework.--- Strong working knowledge of security frameworks e.g. OWASP, SANS, MITRE ATT&CK Framework, Firewalls, IDS/IPS, Web Proxies and DLP.--- Host and Network-based attack methodologies and detection avoidance used by known and emerging threats.--- Expert level knowledge and hands on ability planning and testing malicious TTPs against more than one major brand SIEM, IDS/IPS, X/EDR, Firewall.--- Expert level knowledge of Information Security Frameworks (and Control Frameworks) including CIS, NIST, ISO, MITRE ATT&CK & OWASP, CVSS.
TechnologyAt least five (5) years operating experience with:
--- Linux operating systems, Windows operating systems, Source Code Analysis, Mobile Application Security, Microsoft technologies like Active Directory and others.--- Kali Linux in development and production environments.--- Network infrastructure (physical and virtual) including multiple major brands of firewalls, switches and routers.--- Enterprise domain (Microsoft Windows Server/AD deployments) penetration testing, red teaming, and/or purple teaming.--- Cloud and on-prem data centers.--- Virtualized Domain Controller (DC) deployment and configuration.--- Security Information and Event Management (SIEM) (Elastic Security, Splunk, etc.).--- Security Orchestration, Automation and Response (SOAR) (Cortex XSOAR, Splunk SOAR, etc.).--- Containerized applications and infrastructure (Kubernetes, Docker, etc.).
Certifications
--- OSCP, OSEP preferred.
Required
--- Agree to a pre-employment background check including but not limited to criminal history and education verification.--- Willingness to research, develop, and hone technical InfoSec tradecraft in ones-self and in others.--- Have mentored individuals and groups, fostering skills and abilities development in an impactful way.

Keywords: Ultimate Knowledge Corporation, Orlando , Offensive Security Product Engineer, Engineering , Orlando, Florida