Job type full-time
Not provided by employer
Full job description
Growth requires a strong foundation, and at buchanan & edwards, our people are our strength.
They are the foundation for building the next generation of innovative it solutions, revolutionizing the industry, and solving the nation’s most critical challenges.
Let buchanan & edwards help you unleash your potential and reach your goals.
Buchanan & edwards is seeking a mid-level exploitation analyst to act as a red team member on a newly created cybersecurity team responsible for both red and blue operations in support of our department of labor (dol) job corps data center (jcdc) client’s mission.
This team will be comprised of self-starters and over achievers always taking the initiative to find new vulnerabilitiesThis critical role will perform authorized exploitation techniques, emulating real-world attackers, to identify the most vulnerable areas and most dangerous attack paths that may exist or surface within the job corps network and applicationsThis role will work collaboratively with the team’s cyber defense analyst(s) in order to advise on defenses (based on real threat activity and/or critical vulnerability), and to test those defenses once constructedThis role’s live threat modelling will help inform jcdc management on how to direct resources and funds to the areas that most need protecting.
A challenging and dynamic work environment isn’t all that be has to offerWhen you join be, you become an integral part of our teamNot just an employee number, but a valued opinion with a voice that carries and drives change and innovationYou’ll have access to some of the most well-respected it industry leaders in virtually every field and learn new tools and techniques while expanding your knowledge and skillsetWe’re dedicated to helping you develop your career, and our culture applauds outside-the-box thinking and initiativeOur employee-focused leadership team knows that your success is our success and empowers employees with the necessary tools to excelJoin us as we continue to move the future forward, together.
Clearance: none responsibilities:
Conduct authorized penetration testing on enterprise network assets.
Perform penetration testing as required for new or updated applications.
Apply and obey applicable statutes, laws, regulations and policies.
Perform analysis for target infrastructure exploitation activities.
Collaborate with other internal partners on target access and operational issues.
Communicate new developments, breakthroughs, challenges and lessons learned to leadership, and internal and external customers.
Conduct analysis of physical and logical digital technologies (e.g., wireless, scada, telecom) to identify potential avenues of access.
Conduct independent in-depth target and technical analysis including target-specific information (e.g., cultural, organizational, political) that results in access.
Create comprehensive exploitation strategies that identify exploitable technical or operational vulnerabilities.
Examine intercept-related metadata and content with an understanding of targeting significance.
Collaborate with software developers and security engineers, conveying target and technical knowledge in tool requirements submissions, to enhance tool development.
Maintain awareness of advancements in hardware and software technologies (e.g., attend training or conferences, reading) and their potential implications.
Previous experience on a red team
Strong system administration and architecture background
Experience with multiple operating systems, endpoint detection and response, security information and event management tools, log management, intrusion detection, network security
Ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
Ability to collaborate effectively with others.
Ability to develop or recommend analytic approaches or solutions to problems and situations for which information is incomplete or for which no precedent exists.
Ability to evaluate, analyze, and synthesize large quantities of data (which may be fragmented and contradictory) into high quality, fused targeting/intelligence products.
Ability to identify/describe target vulnerability.
Bs in cybersecurity or related field, experience can be substituted education
4 years of cybersecurity related experience, two (2) of which should be in a red team role
Iam level 1 or higher certification desired, but not required
Buchanan & edwards, inc(be) is an information technology and professional services consulting firm located in arlington, vaBe is a diversified high-technology services company, providing government, commercial and nonprofit agencies technology solutions and organizational management services to ensure mission successServing the federal sector since 1998, we base our solutions on an in-depth understanding of our clients, their mission and the unique challenges they faceBe is the winner of the 2015 microsoft u.sFederal solution partner of the year award, a 2015 and 2016 washington post top workplace and has been an inc500/5000 awardee for six consecutive yearsBuchanan & edwards, incIs dedicated to fostering, cultivating and preserving a culture of diversity and inclusionWe are committed to crafting a workplace that endorses creativity and innovation, and promotes engagement through open communication, acceptance of new people and ideas, and a supportive team dynamicBuchanan & edwards, incIs an equal opportunity employer–minorities / women / veterans / individuals with disabilities / gender identity / sexual orientationBuchanan & edwards is an e-verify employer.
Posted 3 days ago