Red Team Security Consultant - Basingstoke, United Kingdom - WithSecure

WithSecure

Verified Company

Basingstoke, United Kingdom

3 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

WithSecure delivers research-led cyber security to defend organizations, society and people from real-world attacks and build resilience into their approach.

Our people are a mix of technical and creative experts - diverse, talented, and passionate people - working tirelessly to help us advance the industry with new ways of thinking.

They lead their own development, in and out of the office. They call the shots when it comes to building a place to call home in our organization.

We are actively growing our Red Team, and as such we are looking for experienced as well as up and coming red team operators to join this growing team.

As much as we'd expect you to be extremely competent technically, we expect high quality reports, the building of good relationships with your clients as well as exceptional stakeholder management.

As part of your role, you'll be working alongside a passionate and dedicated team. You'll also have the freedom to explore your own personal research projects on bleeding edge technologies.

At WithSecure, we are research driven, meaning that we push the industry forward through our blogs, talks, research papers and competing at PWN2OWN.

Key Responsibilities

Your role will include the execution of complex red team engagements
You will be expected to contribute to our Attack Path Mapping & Purple Teaming services where your offensive skills will help drive the continued development of these services
Provide sales support and contribute to RFPs where appropriate
Presentation of red team debriefs to clients at a range of seniority levels
Play a mentorship role to up and coming offensive security professionals within WithSecure

What are we looking for?
We are looking for someone with a strong interest in red teaming with the associated technical skills. If you tick the following boxes, we are looking for you

Passionate about information security, defensive security in particular
Innovative mindset and the ability to challenge existing approaches to information security
Excellent at communicating to both technical and seniormanagement audiences
Advanced understanding of tools, techniques, and procedures that modern attackers use to compromise organisations, ideally from direct experience.
Technical knowledge in one or more of the following specialisms:
Computer programming and scripting
Networking
Software engineering
Popular corporate operating systems (Windows, Unix).
Ability to deliver handson consultancy for WithSecure clients, including technical activities, report writing and presentation.
Ability to develop custom scripts or alter publicly available tooling to support adversary simulation activities
Ability to maintain target utilisation on client chargeable projects
Ability to present to senior stakeholder audiences
Ability to produce research to a publishable standard
Demonstrate strong consulting skills. This includes excellent written and verbal communication skills with the ability to communicate to both technical and seniormanagement audiences
Produce scopes, bid content and presales support to help win work.
Pursues and maintain CREST CCSAM, CCSAS, CCT Infrastructure or equivalent certification
Strong offensive technical skillset
The ability to effectively translate complex technical concepts into layman's terms for a range of different audiences

What will you get from us
We will invest in your development, by offering you a variety of training and tools in the areas you are particularly interested in:

1 to 1 coaching and tutorship sessions led by seasoned and well-respected industry-leading offensive security professionals.
Access to our stateoftheart bespoke training platform.
Conference attendance, training from providers such as Crest, Offsec, GIAC and SANS.
You will receive classroombased learning sessions and be given the opportunity to attend external training courses and security conferences.

Purpose - Why we exist

We are here to build and sustain trust in a digital society

We are here to build and sustain trust in a digital society — trust that is threatened by uncertainty, fear and worry caused by cyber attacks and crime.

Vision - Where we are heading

No one should experience a serious loss because of a cyber attack

We envision a future where no one should experience a serious loss or be put out of business because of cyber attack or crime.

At least no one who puts their trust in us.

Mission - What we do

Accelerate transition to outcome-based security

Our mission is to research, innovate and build technologies, human expertise and delivery-business models that will accelerate our customers' and partners' transition to outcome-based security.

Diversity & Inclusion:

WithSecure is an equal opportunity employer and believe that employing a diverse workforce is central to our success. We are committed to ensuring all qualified applicants will rece