Cyber Red Team Analyst

  • CGI Group, Inc.
  • Fairfax, VA, United States
  • Aug 05, 2022
Full time

Job Description

Cyber Red Team Analyst

Position Description
The Red Team Analyst is part of the Global Advanced Threat Management Office, helping build and deliver corporate Red Team operations, and contributing to the global vulnerability management program. The Red Team conducts advanced adversary emulation operations to challenge assumptions and emulate threat actors targeting or attacking the business. This position may be required to operate independently or as part of the team to execute threat simulations with an international team of operators within CGI's Global Security Operations Center

This role can be located at any CGI office in the U.S.

Your future duties and responsibilities
• Execute Red Team engagements and campaigns across the spectrum of people, processes and technologies, consistent with goals and objectives of the CGI Rules of Engagement
• Maintain operational and lab infrastructure, tooling and technologies

Threat Simulation
• Simulate sophisticated cyber-attacks regionally, and worldwide using a variety of tactics and techniques
• Assist in planning of threat campaigns to include plan development
• Develop operation C2 profiles to mimic known and emerging threat actors

Penetration Testing
• Conduct network and application penetration testing

Vulnerability Assessment
• Manage regular and ad-hoc vulnerability assessments; conduct analysis and validation

• Research and develop Red Team methodologies including tactics, techniques and procedures
• Develop new tooling and modify existing tooling to account for changing network and detection landscapes

• Develop Red Team reports and deliverables
• Develop processes and automation to streamline the reporting process where possible

Required qualifications to be successful in this role
• Degree in IT, Security, Engineering or Technology is an asset

• Any of the following certifications:
‒ Certified Red Team Operator (Zero-Point Security)
‒ CREST Certified Simulated Attack Specialist (CCSAS)

• Experience (2+ years) in at least two of the following areas:
‒ Open-source and commercial offensive security tools
‒ Red team exercises
‒ Penetration testing
‒ Social engineering
‒ Exploitation techniques
• Knowledge of Windows/Linux/Unix administration, configuration, and security flaws
• Knowledge of operational security tactics and techniques (exploits and evasion, persistence techniques, lateral movement, social engineering, etc.)
• Experience with one or more programming and/or scripting languages
• Experience with developing Malleable C2 profiles.
• Working knowledge of advanced persistent threats
• Working knowledge of firewalls and other network security products
• Familiarity with debuggers and disassemblers is an asset
• Experience in exploit development is an asset
• Experience with infrastructure automation and testing with technologies such as Ansible & Vagrant is an asset
• Experience using virtualization and containerization in on premise environments as well as cloud environments.
• Experience with ELK stack is an asset

• Ability to deliver high quality reporting on technical issues identified and providing remediation guidelines to varying audiences
• Excellent written and oral communication skills
• Self-motivated and able to work both independently and with a team
Willing to travel internationally up to 10%

Est. Salary Range (Colorado Only): $84,000-$110,000*

*Disclaimer: In accordance with Colorado's Equal Pay for Equal Work Act, effective January 1, 2021, a good faith hourly or base salary range must be posted for all positions where the work may be performed in the state of Colorado. Therefore, this good faith salary range will only apply where this described position will be performed in the state, and should not be considered the compensation range in other locations or for other positions.

At CGI we call our professionals "members" to reinforce that all who join our team are, as owners, empowered to participate in the challenges and rewards that come from building a world-class company. CGI's benefits include:
• Competitive base salaries
• Eligibility to participate in an attractive Share Purchase Plan (SPP) in which the company matches dollar-for-dollar contributions made by eligible employees, up to a maximum, for their job category
• 401(k) Plan and Profit Participation for eligible members
• Generous holidays, vacation, and sick leave plans
• Comprehensive insurance plans that include, among other benefits, medical, dental, vision, life, disability, out-of-county emergency coverage in all countries of employment;
• Back-up child care, Pet insurance, a Member Assistance Program, a 529 college savings program, a personal financial management tool, lifestyle management programs and more

Insights you can act on

While technology is at the heart of our clients' digital transformation, we understand that people are at the heart of business success.

When you join CGI, you become a trusted advisor, collaborating with colleagues and clients to bring forward actionable insights that deliver meaningful and sustainable outcomes. We call our employees "members" because they are CGI shareholders and owners and owners who enjoy working and growing together to build a company we are proud of. This has been our Dream since 1976, and it has brought us to where we are today - one of the world's largest independent providers of IT and business consulting services.

At CGI, we recognize the richness that diversity brings. We strive to create a work culture where all belong and collaborate with clients in building more inclusive communities. As an equal-opportunity employer, we want to empower all our members to succeed and grow. If you require an accommodation at any point during the recruitment process, please let us know. We will be happy to assist.

Ready to become part of our success story? Join CGI - where your ideas and actions make a difference.

Qualified applicants will receive consideration for employment without regard to their race, ethnicity, ancestry, color, sex, religion, creed, age, national origin, citizenship status, disability, pregnancy, medical condition, military and veteran status, marital status, sexual orientation or perceived sexual orientation, gender, gender identity, and gender expression, familial status, political affiliation, genetic information, or any other legally protected status or characteristics.

CGI provides reasonable accommodations to qualified individuals with disabilities. If you need an accommodation to apply for a job in the U.S., please email the CGI U.S. Employment Compliance mailbox at . You will need to reference the requisition number of the position in which you are interested. Your message will be routed to the appropriate recruiter who will assist you. Please note, this email address is only to be used for those individuals who need an accommodation to apply for a job. Emails for any other reason or those that do not include a requisition number will not be returned.

We make it easy to translate military experience and skills! Click here to be directed to our site that is dedicated to veterans and transitioning service members.

All CGI offers of employment in the U.S. are contingent upon the ability to successfully complete a background investigation. Background investigation components can vary dependent upon specific assignment and/or level of US government security clearance held. CGI will consider for employment qualified applicants with arrests and conviction records in accordance with all local regulations and ordinances.

CGI will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with CGI's legal duty to furnish information.

  • Firewalls
  • Linux
  • Network Security
  • Windows