Jobs
>
Virginia

    Security Engineer - Virginia, United States - Cyber Crime

    Cyber Crime
    Cyber Crime Virginia, United States

    2 weeks ago

    Default job background
    Description
    College Board


    College Board is a non-profit organization that clears a path for all students to own their future through the AP Program, SAT Suite, BigFuture, and more.

    View company page

    Technology Division, Cyber Security Operations Team
    100% Remote (working EST)

    About the Team:


    The Cyber Security Operations team is critical to the strategic foundation of our products, most notably the secure delivery of our new Digital SAT and AP programs.

    We are a highly motivated group of cyber security experts who take a proactive approach to ensuring a strong security posture.

    We partner across the organization to mature our Threat Management and Incident Response

    procedures and are constantly seeking and experimenting with new technologies.

    We are currently using a variety of cutting-edge tools that provide comprehensive cyber security operations for the College Board's critical infrastructure in support of the College Board's mission to connect students to college success and opportunity.

    College Board is committed to creating an inclusive environment where all team members feel valued, respected, and supported in their work.

    We welcome individuals from diverse backgrounds and experiences to join our team and contribute to our ongoing success.
    About the Role

    The College Board is seeking a Red Team Operator who will play a critical role in strengthening our cybersecurity infrastructure.

    This individual will validate the effectiveness of our security controls and detection logic through offensive security operations and collaborative purple teaming exercises.

    Leveraging their deep understanding of threat actors, they will simulate potential cyber threats across our systems while documenting their findings and methodologies.

    This will provide invaluable insights into vulnerabilities and serve as a roadmap for improving our security measures.

    The operator will also need to communicate these results effectively to various stakeholders within the organization, ensuring leadership is aware of the potential threats and can take appropriate action to mitigate them.

    This work is crucial to protecting the College Board from potential cyber-attacks and ensuring the safety of our data.

    In this role, you will:

    Conduct Offensive Cyber Security Operations:
    Execute covert operations to assess the organization's security posture and readiness against cyber threats.

    Perform Penetration Testing:

    Conduct comprehensive assessments of the Digital Exam Player, web applications, and other systems using both manual and automated testing techniques.


    Engage in Purple Teaming:
    Facilitate collaborative exercises with internal Incident Response and Threat Hunt teams to enhance the organization's defensive capabilities.
    Execute Multi-stage

    Attack Simulation:
    Coordinate with Red Team members to simulate attacks, including initial access, privilege escalation, lateral movement, and data exfiltration.

    Create Threat Mimicry:
    Mimic adversary tactics, techniques, and procedures (TTPs) to assess defensive capabilities and identify weaknesses.

    Conduct Security Control Evaluation:
    Evaluate the detection and response capabilities of security controls, such as SIEM , EDR, and network monitoring solutions.

    Investigate C2 Techniques:
    Research and integrate new C2 techniques and tools to evade detection and enhance operational capabilities. Monitor and analyze C2 traffic for anomalies and indicators of compromise (IOCs).

    Provide Technical Guidance:
    Provide technical expertise and guidance to the VTM team on building custom scanning signatures and techniques. Also, guide threat hunters on adversary behaviors, attack techniques, and IOCs.

    Contribute to Culture Building:
    Foster a culture of collaboration and continuous learning within all Cyber Operations teams.
    Stay abreast of emerging threats and vulnerabilities affecting web applications or endpoints and incorporate them into assessment methodologies.

    About you, you have:
    A bachelor's in computer science or equivalent work experience
    7 years in IT, with 3 years in offensive security
    Experience in Red/Purple team exercises and penetration testing
    Proficiency in C2 frameworks (e.g., Cobalt Strike) and Python
    Certifications like CEH, OSCP, GWAPT, Sec+, or GIAC preferred
    Familiarity with open-source/commercial offensive security tools, assembly languages (e.g., x86), and cloud -based attacker infrastructure deployment
    Strong understanding of web application CWEs, OWASP Top 10, Threat Intelligence, and Threat Profiling
    Experience with IDS/IPS, SIEM, network defense tools, DLP technologies, network security architecture, and enterprise anti-virus/malware solutions
    Ability to maintain discretion and integrity at all times

    Our Benefits & Compensation:


    College Board offers a strong compensation and benefits package that attracts top talent looking to make a difference in education.

    Our robust benefits package includes health, dental, and vision insurance, tuition assistance, paid time off, paid parental leave, retirement benefits with a generous matching program, and more.

    We reward performance through annual bonuses and provide opportunities for salary

    growth over time through base compensation increases, merit raises and promotions. We believe in compensating staff members fairly in relation to each other, their qualifications, and their impact.
    The salary range for a new employee in this position is$120,000 to $143,000.
    The salary offer of an individual candidate within this range is specific to their location and qualifications. Each salary offer is determined carefully using internal and external benchmarking and adjusting for the candidate's location. You will have an opportunity to discuss salary in more detail after you begin the application process. As a self-sustaining non-profit organization with global impact, College Board offers a job that matters, a team that cares, and a place to learn, innovate and thrive

    About Us:
    We are motivated to positively impact the educational and career trajectories of millions of students a year.
    We prioritize building a diverse and inclusive team where every employee can thrive, and every voice is heard.

    We value learning and growth; we offer formal and informal ways to lead through your superpowers, sharpen your strengths, and meet your development goals.

    Our high-performing engineers work with the latest technologies, so you will be constantly learning and sharpening your skills, enabling you to be industry-forward instead of left behind technologically.


    Regions:
    Remote/Anywhere

    Africa

    North America

    Explore more InfoSec / Cybersecurity career opportunities


    Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.

    #J-18808-Ljbffr
  • SAIC

    Security Engineer

    2 weeks ago

    SAIC Virginia, United States

    SAIC is looking for a Communication Systems Security Engineerto support a very dynamic and innovative space program in Chantilly, VA. In this position, you will gain experience with acquiring and deploying the next generation of space assets including first of a kind satellite co ...

  • Salesforce Inc

    Security Engineer

    2 weeks ago

    Salesforce Inc Virginia, United States

    Join our Talent Community and be the first to know about open roles, career tips, events happening near you, and much more. · At Salesforce, we strive to create an accessible and inclusive experience for all candidates. · If you need a reasonable accommodation during the applica ...

  • APK Solutions, Inc.

    Cyber Security Engineer with Security Clearance

    2 weeks ago

    APK Solutions, Inc. Virginia, United States

    Come Join Our Team APK Solutions is a government contractor providing professional and technical services to the intelligence community. We are currently looking for a Cyber Security Engineer to join our winning team. The individual hired for this position will provide support fo ...

  • Astor & Sanders

    Cloud Security Engineer

    2 weeks ago

    Astor & Sanders Virginia, United States

    · Cloud Security Engineer · Systems Integration and Development, Inc. (SID) is an award-winning IT solutions provider located in Rockville, MD and is seeking a · Cloud Security Engineer. · This is a full-time and · remote · position. · Summary: · The Cloud Security engine ...

  • Paragontech

    Security Engineer II

    2 weeks ago

    Paragontech Virginia, United States

    The Security Engineer II provides technical support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation. Responsible for designing and implementing solutions for protecting the confidentiality, integrity and ...

  • OSC Edge

    Cyber Security Engineer A&A

    7 hours ago

    OSC Edge Virginia, United States

    Current job opportunities are posted here as they become available. · Subscribe to our RSS feeds to receive instant updates as new positions become available. · The Cyber Security Engineer will be responsible for tasks related to Assessment & Authorization (A&A) to ensure assigne ...

  • Strategic Data Systems

    Systems Security Engineer

    2 weeks ago

    Strategic Data Systems Virginia, United States

    Title: SYSTEMS SECURITY ENGINEER (RDTE) · Location: NSWC Dahlgren, VA · Pay: 100k-120k · On-site work schedule · SDS seeks a talented Security Systems Engineer to enhance our team within the Research, Development, Test, and Evaluation Program at the Naval Surface Warfare Center, ...

  • Stride Consulting LLC

    Cloud Security Engineer

    2 weeks ago

    Stride Consulting LLC Virginia, United States

    Why is Strider the best place to work? · Working at Strider offers a truly unique proposition for security professionals. · Security is embedded in our culture · Leadership and employees grasp the corporate threat profile and our value proposition which means we spend our time ...

  • Theqssgroup

    Cyber Security Engineer

    2 weeks ago

    Theqssgroup Virginia, United States

    Quantum Science Solutions is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment, including introducing new cyber capabilities to address emerging threats. QS ...

  • Astor & Sanders

    Cloud Security Engineer

    1 week ago

    Astor & Sanders Virginia, United States

    Cloud Security Engineer · Systems Integration and Development, Inc. (SID) is an award-winning IT solutions provider located in Rockville, MD and is seeking a · Cloud Security Engineer. · This is a full-time and · remote · position. · Summary: · The Cloud Security engineer ...

  • TestPros

    Cyber Security Engineer

    2 weeks ago

    TestPros Virginia, United States

    Cyber Security Engineer - Vulnerability Management · Remote (with some travel to Norfolk VA Area), VA - Full Time · Company Overview · TestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide ...

  • Cornerstone Defense

    Cyber Security Engineer

    2 weeks ago

    Cornerstone Defense Virginia, United States

    Title: Cyber Security Engineer · Location: Reston, VA · *Clearance: · *Active TS/SCI w/ Polygraph needed to apply * · Company Overview: · Cornerstone Defense is the Employer of Choice within the Intelligence, Defense, and Space communities of the U.S. Government. Realizing e ...

  • IPsoft

    Information Security Engineer

    2 weeks ago

    IPsoft Virginia, United States

    Information Security Engineer page is loaded · Information Security Engineer · Apply · locations · Bangalore Office - BLR2 · time type · Full time · posted on · Posted 30+ Days Ago · job requisition id · R · Collaboration between humans and machines is the ultimate opp ...

  • RTL Networks

    Systems Security Engineer

    2 weeks ago

    RTL Networks Virginia, United States

    Position Title: · Systems Security Engineer · Status: · Full-time / On-site · Clearance: · Top-Secret · Required Certification(s): · IAT II (Security+) · About Us: · RTL Networks, Inc. is a rapidly growing company primarily focused on providing information technology (IT) su ...

  • Leidos

    Cyber Security Engineer

    1 week ago

    Leidos Virginia, United States

    You will need to login · before you can apply for a job. · We are seeking a Cyber Security Engineer (SME). This role is responsible for protecting the customer's information systems and networks from potential cyber–attacks. The Cyber Security Engineer must display an excellent ...

  • NODAL EXCHANGE

    Application Security Engineer

    1 week ago

    NODAL EXCHANGE Virginia, United States

    Application Security Engineer · Department: · Technology · Employment Type: · Full Time · Location: · Tysons Corner · Reporting To: · Converged Security · Description · Nodal Exchange, the largest power futures exchange in North America, is a derivatives exchange providing ...

  • Capgemini Government Solutions LLC

    Cyber Security Engineer

    2 weeks ago

    Capgemini Government Solutions LLC Virginia, United States

    Capgemini Government Solutions (CGS) is seeking a highly motivated Cyber Security Engineer to manage HBSS and ACAS systems. This role requires a cybersecurity engineer to provide onsite support for our customer's host–based security system (HBSS) and their assured compliance asse ...

  • SHR Consulting Group

    Security Engineer SME

    2 weeks ago

    SHR Consulting Group Virginia, United States

    SHR Consulting Group LLC, headquartered in Alexandria, VA. Our IT Professionals help organizations by providing intelligent solutions that solve today's problems and prepare them for tomorrow's challenges. We focus not only on the tactical aspects of providing solutions in today' ...

  • ASG

    Cyber Security Engineer

    2 weeks ago

    ASG Virginia, United States

    Abacus Solutions Group: · We're built on our shared core values We are difference-makers, passionate about serving, we work hard with integrity and do the right thing. Difference makers means that we look at every opportunity as a chance to make a difference. Passionate about se ...

  • Booz Allen Hamilton

    Cyber Security Engineer

    2 weeks ago

    Booz Allen Hamilton Virginia, United States

    Conduct testing and analysis to identify vulnerabilities and potential threat vectors in systems and networks, develop exploits, and engineer attack methodologies. Apply advanced consulting skills, extensive technical expertise, and full industry knowledge. Develop innovative sol ...