Skip navigation EPAM

Senior/Lead Red Team Operator Bishkek, Kyrgyzstan or Remote

  • hot

Senior/Lead Red Team Operator Description

Job #: 67055
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

EPAM is looking for an experienced penetration tester with good communication skills to join our global team of IT professionals. Senior/Lead Red Team Operator will be a part of the Information Security Team, responsible for planning and executing advanced cyber-attacks against infrastructure, applications, and services.

What You’ll Do

  • Challenge existing security controls and identify strategic business and operational risks to the company
  • Perform network penetration, web application testing, source code reviews, threat analysis, wireless network assessments, and social-engineering assessments
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences
  • Effectively communicate findings and strategy to client stakeholders, including technical staff, executive leadership, and legal counsel
  • Recognize and safely utilize attacker tools, tactics, and procedures
  • Assist with scoping prospective engagements, leading engagements from kickoff through remediation, and mentoring less experienced staff
  • Practice routinely adopting the tools and techniques of actual adversaries, leveraging the latest attacks on other organizations to mimic adversaries' work to improve and train the Security Operations Center staff
  • Develop techniques to successfully demonstrate a compromise and how these attacks of deliberate disruption can cause financial loss or cause a negative impact on EPAM Systems and its customers
  • Develop, extend, or modify exploits, shellcode, or exploit tools

What You Have

  • Experience with MS Windows, Unix-based, and mid-range platform systems used to deliver commercial enterprise applications
  • Passion for learning
  • Knowledge of the functionality and capabilities of computer and network defense technologies: firewalls, IDS/IPS, antivirus, and Web Application Firewalls
  • Skilled in shell scripting or automation of simple tasks using Perl, Python, or Ruby
  • Proficiency in penetration testing tools
  • Source code review for control flow and security flaws
  • Thorough understanding of network protocols, data on the wire, and covert channels
  • Ability to document and explain technical details in a concise, understandable manner
  • Experience with reverse engineering or exploit development will be a plus
  • Expertise in threat modeling, adversary emulation, or long-duration Red Team exercises is highly appreciated
  • Preferred Certifications: Red Team Ops, OSCP, OSCE, GWAPT, GPEN or GXPN

We offer

  • Knowledge-sharing with colleagues all around the world
  • Community of industry’s top professionals
  • Outstanding career development opportunities
  • Regular assessments and salary reviews
  • Unlimited access to learning courses (LinkedIn learning, EPAM training courses, English regular classes, Internal Library)
  • Internal mobility program
  • Friendly team and enjoyable working environment
  • Flexible working schedule

Witaj. W czym możemy pomóc?