Talos Red Team Consultant - 1353586

January 18, 2022 - Remote

What You’ll Do

The Cisco Talos Red Team Consultant will work within established methodologies to perform a variety of red team related activities for Cisco customers as a trusted advisor of the global Cisco Talos Incident Response team.

Talos Red Team consultants must be able to scope customer engagements and determine the most appropriate approach to achieving the customer objectives. In addition, Talos Red Team consultants must be able to execute one, or more, of the tasks below: * Conduct network-based penetration tests * Conduct wireless based penetration tests * Conduct blackbox/graybox/whitebox web application penetration tests * Conduct physical penetration testing * Conduct mobile application testing and analysis * Perform code reviews for coding security best practices * Conduct an overall Security Architecture Assessment

Red Team consultants will be expected to assist with or lead red team engagements, penetration testing, participate in purple team projects, network security architecture (NSAA) reviews, or other projects as requested.

Who You’ll Work With

When you work with us, you’ll be part of a global team of highly empowered Red Team, Incident Response, and Cyber Threat Intelligence professionals who work as a collaborative team focused on helping our clients be both better prepared to defend against adversaries on their network, as well as responding to active incidents within their network.

Who You Are

Both your clients and your colleagues consider you a charismatic, articulate individual, and a born diplomat. You check your ego at the door and learn from others constantly, while also helping to educate those who aren’t as well versed as you are in technical or procedural topics. As a result, you have a track record of working tirelessly to help your clients and teammates and have even come up with some novel techniques in your time.

You enjoy complex projects and problems and thrive on accomplishing the impossible. You will be expected to quickly assimilate new information as you will face new client environments.

Individuals in this role have a thorough understanding of Information Technology fundamentals and Cybersecurity. This includes fundamentals such as networking, applications, operating systems as well as controls, detection opportunities, and methods of bypassing controls and standard exploitation processes. Familiarity with exploit development and covert operations. Physical penetration test experience would be ideal. Confidence and experience with communicating findings both in verbal and written methods will be required.

Required Skills and Experience

  • Experience with red team tools and infrastructure, including deployment, maintenance, and use of multiple C2 frameworks.
  • Experience evading host and network-based security systems (e.g., anti-phishing, AV/EDR, behavioral analysis)
  • Prior experience leading or participating in network penetration tests, red team exercises, and purple team exercises
  • Mobile and/or web application assessments
  • Email, phone, or physical social-engineering assessments
  • Shell scripting or automation of simple tasks using Perl, Python, or Ruby
  • Developing, extending, or modifying exploits, shellcode or exploit tools
  • Familiarity with developing applications in at least one programming language C#, ASP, .NET, ObjectiveC, Go, or Java (J2EE)
  • Reverse engineering malware, data obfuscators, or ciphers
  • Source code review for control flow and security flaws
  • Strong knowledge of tools used for wireless, web application, and network security testing
  • Thorough understanding of network protocols, data on the wire, and covert channels
  • Mastery of Unix/Linux/Mac/Windows operating systems, including bash and Powershell
  • Ability to travel up to 20%
  • Ability to successfully interface with clients (internal and external)
  • Ability to document and explain technical details in a concise, understandable manner

Why Cisco

At Cisco, each person brings their unique talents to work as a team and make a difference. Yes, our technology changes the way the world works, lives, plays, and learns, but our edge comes from our people. Our People Are The Heart of Cisco.

Cisco is proud to be an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

We see inclusion and diversity as essential to fueling the power of connection. Learn about inclusion and collaboration in action at Cisco. Diversity, Inclusion and Collaboration at Cisco.

Benefits and Perks

We strive to keep our teams happy and healthy. Many roles have the option to be Remote or Hybrid. Cisco provides competitive pay, excellent medical, dental and vision coverage, 401(k) match, 20 days of paid time off plus holidays, support for parents and paid time to volunteer. View the benefits overview, Benefits and Perks - Cisco.

Join us! #WeAreCisco

Cisco requires all U.S. employees to be fully vaccinated or have an approved religious or medical accommodation. Candidates accepting an offer must provide proof of vaccination status on their first day. If someone anticipates requesting an accommodation for this requirement, they must receive approval before the start date. Candidates receiving an offer will receive additional information about the accommodation process at the time of the offer. All offers of employment are contingent upon complying with Cisco’s vaccination policy.