The American Society of Mechanical Engineers (ASME)

Advertisement

14 hours

Senior Penetration Test and Red Team Analyst - Cyber Security

Waltham, MA
Apply Now
Apply on the Company Site
  • Job Code
    20172683
Company
Description: Description About the Position: The Penetration Test and Purple Teamis part of the Cyber Security Operations department within Digital Risk andSecurity, and supports the Digital Risk and Security team’s global operationsby identifying vulnerabilities via standard penetration testing assessments andidentifying threats posing a genuine risk to National Grid via red team /purple team tests that replicate behaviours of threat actors, assessed by Governmentand commercial intelligence providers. This information will enable NationalGrid to proactively adjust its defensive posture.
Position Responsibilities (including but not limited to): Carry out penetration testing across a number of environments, including web application, infrastructure and mobile platforms Take lead in performing purple team exercises based on cyber threat intelligence Manage, train and mentor small team up to 5 direct reports Willing to work outside of traditional working hours as required Role requires travel to different sites and potentially to the UK Your main interfaces will be with: Cyber Security Operations, Security Incident Response, Vulnerability Management, Digital Risk & Security teams, Service providers, Business areas, external vendors, law enforcement and government organizations
Qualifications Knowledge & Experience Required : • 5 years of hands on Penetration Testing of web applications andinfrastructure experience • Experience using Open Source and COTS for penetration testing which could include: Nmap,Nessus, Metasploit, Kali Linux, Burp Suite Pro and similar • OSINTand social engineering engagement experience • RedTeam experience • CBESTframework experience • Experiencein common scripting languages such as: Python, Ruby, LUA, Powershell or BASH • Experiencein at least one development languages: e.g. Java, C, C# or similar • Agood understanding of the OSI stack and the various protocols from layer 1 – 7including SNMP, HTTP, VPN, 802.11. • Must have an appreciation of other security partners and roles Patch Management, Risk, Auditing,Awareness and Security Architecture • Agood understanding of Cloud based architectures including Azure, AWS andOpenStack • Excellentcommunication skills with the ability to communicate at a technical andbusiness user level • Strongattention to detail able to review and QA work of peers • Abilityto create technical proposal and write test reports to a high standard • TeamLeading skills

This position is one of National Grid’s career path roles which provide for promotional opportunities within and across salary bands as you develop and evolve in the position by gaining experience, expertise and acquiring and applying technical skills.
National Grid is an equal opportunity employer that value s a broad diversity of talent, knowledge, experience and expertise. We foster a culture of inclusion t hat drives employee engagement to deliver superior performance to the communities we serve. National Grid is proud to be an affirmative action employer. We encourage minorities, women, individuals with disabilities and protected veterans to join the National Grid team.
Job : IS DIgital Security & Risk Primary Location : MA-Waltham Other Locations : MA-Northborough Organisation : IS Digital Security & Risk Schedule : Full-time Job Posting : Sep 18, 2017, 4:00:00 AM Unposting Date : Ongoing

Categories

  • Legal

Featured Employers[ View All ]

Share this job:

Senior Penetration Test and Red Team Analyst - Cyber Security

National Grid
Waltham, MA

Share this job

Senior Penetration Test and Red Team Analyst - Cyber Security

National Grid
Waltham, MA

Separate email addresses with commas

Enter valid email address for sender.

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast