Cybersecurity Red Team Analyst - Expert

Huntington Bancshares Inc Columbus , OH 43216

Posted 2 months ago

Description

Core Responsibilities

  • Execute and Support the Threat Intel domain through Red Team operational procedures (communication and tracking)

  • Monitor output of penetration testing and remediation efforts to ensure effective security operation

  • Generate and publish Red Team metrics

  • Participate in creating / maintaining policies and standards

  • Support security technologies and ensure they are operating within expected requirements

  • Participate in remediation of Findings and Action Plans; partner with 1st, 2nd, and 3rd line Risk

  • Understanding of cyber threat analysis models

  • Supports planning, communicating, coordinating, and performing manual penetration testing and security assessments at application, system and enterprise level

  • Identify and drive process improvement within Red Team program

  • Creates and distributes penetration test results to impacted members at the bank

  • Support project delivery, as needed

  • Facilitate creating / maintaining domain operational procedures; ensure procedures are executed effectively

  • Understanding of security architecture and tools which can be leveraged for threat mitigation

  • Works closely with the incident and threat hunting teams, and various lines of business to mitigate risk

  • Documents security vulnerabilities and recommendations for remediation

  • Partners with business groups/ clients to design processes & scope of penetration testing & security assessment methodologies

  • Partner with the team to identify and drive delivery of opportunities to automate, improve efficiency, reduce the number of steps to perform the function while ensuring quality

  • Facilitate creating / maintaining domain operational procedures; ensure procedures are executed effectively

  • Support the evaluation, selection, and implementation of red team technologies

  • Assist engineers in troubleshooting performance issues

  • Strong written and verbal communication skills.

  • Understanding of security architecture and tools which can be leveraged for threat mitigation

  • Understanding of cyber threat analysis models

  • Leads the work product of penetration testing contractors, as required by the demands of the business.

  • Actively support security collaboration with internal and external parties

  • Partner with FSISAC and other third party sharing communities

  • Actively share threat intel with third party sharing communities

Basic Qualifications

  • Bachelor's Degree
  • 4 years of experience in Information Security or in management of a cross functional department
  • 4 years of experience gathering requirements and demonstrating successful delivery

Preferred Qualifications

  • Desirable Certifications: OSCP, GPEN, OSCE, GCIH, GXPN

  • Cyber Security Background (5-7 years experience)

  • Penetration testing/Red team experience (3-5 years experience)

  • Advanced experience in automation and scripting of applications and systems

  • Comprehensive knowledge of relational databases and structured query language

  • Strong understanding of threat actors and the TTPs used by known threat actors

  • Strong experience with Security Assessment Toolsets (Metasploit, NMAP, Cobalt Strike, Nessus, Burp Suite, etc.)

  • Comprehensive knowledge of the OSI Reference Model

  • Strong experience with Networking components (routers, switches, load balancers, wireless access points, etc.)

  • Comprehensive knowledge of firewalls, proxies, mail servers and web servers

  • Strong experience with operational support for operating systems, applications and networks

  • Comprehensive knowledge of client/server relationships and multi-tier environments

  • Strong experience in anomaly detection (signature / behavioral)

  • Strong experience with event and log correlation

EEO/AA Employer/Minority/Female/Disability/Veteran/Sexual Orientation/Gender Identity

Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.

Agency Statement: Huntington does not accept solicitation from Third Party Recruiters for any position


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cybersecurity Identity And Access Management Architect Expert

Huntington Bancshares Inc

Posted 1 week ago

VIEW JOBS 11/13/2019 12:00:00 AM 2020-02-11T00:00 Description Job Description The Information Security Architect position focuses on designing and supporting identity and access management for large scale enterprises. A successful candidate will partner with application owners and enterprise service providers to design identity and access management controls for internally and externally hosted applications. The position is 50% security architecture, 30% technical leadership, and 20% research and development. The individual works with project delivery and enterprise architecture teams to set standards, provide leadership, and be the final approval from a security perspective on projects and standards. * Acts as a subject matter expert and has a strong understanding of product roadmaps, trends, and industry practices * Ability to work with leaders and team members at all levels and across functional lines * Demonstrates effective verbal and written communication skills * Demonstrates experience establishing and maintaining effective working relationships * Strong analytical skills and the ability to think strategically * Critical thinking skills and does not hesitate to question status quo Basic Qualifications * Bachelor's degree * 2 years cybersecurity architecture * 6 years of information security experience * 6 years of experience delivering technology solutions in large-scale complex organizations Preferred Qualifications * Working experience implementing federated identity systems, directory services, role-based access control, multi-factor authentication, and SSO * Expert knowledge of authentication and authorization standards (e.g. SAML, OAUTH, NTLM, LDAP, Kerberos, PKI, XACML, etc.) * Strong working experience of Microsoft Active Directory and NetIQ products * Proven ability to develop end-to-end security and technology control solutions (across platforms, application, data and networks) * Experience applying identity and access management technical principles, practices, and procedures to multiple applications or component families * Knowledge and understanding of diverse platforms and operating systems, including current and emerging technologies * Excellent verbal, written, and interpersonal communication skills * Ability to interact with all levels of an organization * Experience influencing management on technical or business solutions * Able to manage simultaneous multiple complex tasks and to bring activities to closure * Certified Information Systems Security Professional (CISSP) * Experience architecting security solutions for financial services corporations * Familiarity with financial services compliance regulations and IT frameworks and standards EEO/AA Employer/Minority/Female/Disability/Veteran/Sexual Orientation/Gender Identity Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details. Agency Statement: Huntington does not accept solicitation from Third Party Recruiters for any position Huntington Bancshares Inc Columbus OH

Cybersecurity Red Team Analyst - Expert

Huntington Bancshares Inc