Security Specialist- Breach & Attack
Are you a versatile self-starter with demonstrated ability to take initiative and work independently with attention to detail? Then, Apply Now!
Working with one of the top financial clients, this role calls for a Security Specialist- Breach & Attack who will develop and implement a controls assurance strategy structured around the MITRE ATT& CK framework. The successful candidate will be creating realistic attack scenarios based on attacker tactics, techniques, and procedures (TTPs) to test the effectiveness of security controls across various systems and networks.
Responsibilities:
- Collaboratively identify key security controls, monitor gaps in their implementation, and work closely with relevant teams to remediate identified issues.
- Staying current with industry best practices, emerging threats, and relevant regulatory requirements to ensure a comprehensive understanding of the evolving cybersecurity landscape.
- Collaborate with cyber threat intelligence, threat hunting, and threat detection engineering groups to identify and prioritize key security controls and gaps, and ensure appropriate alerting feedback.
- Generate comprehensive reports detailing simulation findings, including actionable recommendations for remediation and security posture improvement to relevant stakeholders.
- Collaborate with other members of the cybersecurity team to analyze and interpret the results of simulated attacks.
- Continuously improve and refine the breach and attack simulation process to enhance its effectiveness.
- Make recommendations for security posture improvements based on analysis of breach and attack simulation trends.
- Work with senior analysts and leadership to develop relevant BAS dashboards to represent program value.
- Quantify risk reduction due to the breach and attack simulation program
- Leverage APIs and automation techniques to integrate BAS with other security tools.
Desired Skill Set:
- Advanced knowledge of security incident and event management, log analysis, Network traffic analysis, Malware investigation and remediation.
- Experience with cloud infrastructures for the enterprise, such as Amazon Web Services, G Suite, Office 365, and Azure, is preferred.
- Familiarity with Breach and Attack Simulation (BAS) solutions
- Excellent problem-solving and analytical skills.
- Good communication
- Experience with Python or PowerShell
- Exposure to threat hunting, incident response, Digital Forensics and purple teaming
Nice To Have:
- Experience working in at Banking or financial institution
- Any engineering experience
BeachHead is an equal opportunity agency and employer. We advocate for you and welcome anyone regardless of race, color, religion, national origin, sex, physical or mental disability, or age.
Privacy Policy