Red Team Security Engineer - North Charleston, United States - Millennium

Description

Overview

Millennium is a strategic management, cybersecurity and systems engineering firm – driven by results and focused on people as we help our customers achieve mission success. With a proven track record of performance with the Army, Navy, OSD, DHS and other agencies, Millennium is a uniquely qualified and committed partner to the Federal Government. It is through our work that the U.S. military and government are able to identify, manage and defeat threats.

What We Believe

We believe that diversity is a fact, inclusion is a choice. At Millennium Corporation, we are inclusive. We celebrate multiple approaches and different points of view. We strongly believe that diversity drives innovation, and we are building a culture where differences are valued. We are always growing our programs and we offer tools to help our employees grow and manage their careers.

Millennium is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. Millennium promotes affirmative action for women, minorities, disabled persons, LGBTQ+ and veterans.

Responsibilities

Millennium Corporation is hiring a Red Team Security Engineer I in Charleston, SC. This is a hybrid position.

The Red Team Security Engineer will conduct multiple penetration tests of global customer networks, rapid development of domain or problem-specific tools that leverage identified vulnerabilities, research on the latest exploitation techniques and threat vectors, and design and configuration of representative test environments. Candidate must support various training events, conferences, exercises, and demonstrations to ensure continued compliance with team member certification requirements, to enhance technical capabilities, and to support authorized missions and test events.

Specific Requirements/Job Description:

• Experience with at least one of the following scripting languages (PowerShell, Bash, Python, Ruby, )
• Experience performing web application Pen Testing security assessments
• Experience with TCP/IP protocols as it relates to network security
• Experience with offensive tool sets including: Kali Linux, Metasploit, CobaltStrike, Intercepting Proxies, etc.
• Experience in using network protocol analyzers and sniffers, as well as ability to decipher packet captures
• Excellent independent (self-motivational, organizational, personal project management) skills
• Proven ability to work effectively with management, staff, vendors, and external consultants
• Ability to think outside the box and emulate adversarial approaches
• Capable of conducting penetration tests on applications, systems and networks utilizing proven/formal processes and industry standards
• Capable of managing penetration test engagements from cradle to grave
• In depth understanding of emerging threats, vulnerabilities, and exploits
• Understanding of what Red Team C2 infrastructure is and how it works regarding covert remote operations.

Qualifications

• Security clearance strongly preferred, but not required.
• Education: Bachelor's Degree in a related field and two years of experience OR eight years of experience to substitute degree.
• SPECIALIZED experience in Red Teaming, Computer Network Attack (CNA), Computer Network Exploitation (CNE), Computer Network Defense (CND), and/or penetration testing.
• 10+ years of hands-on experience with Cyber Security Service Providers, Security Operation Centers, Red Teams or DoD Operational Testing.
• Ability to independently and rapidly develop tools and scripts from concept to production in a high-stress, short deadline, under-resourced environment using multiple programming languages.
• CISSP or CASP CE+ certification required, if not held, willing to begin obtaining within 6 months.

Desired

• OSCP Certification

Business Development

Assist with Business Development activities as required to support Millennium's strategic business objectives, which may include but not limited to participation in technical interviews, creation of technical documentation, general proposal writing support and proposal color reviews.

Physical Requirements

• Must be comfortable with prolonged periods of sitting at a desk and working on a computer.
• Must be able to lift up to 10-15 pounds at a time.

Travel Requirements

Less than 10% travel required.