JOB SEEKERS
EMPLOYERS
JOBS QUICK-SEARCH
.net
.net developer
a+
abap
account manager
accountant
admin
administrator
analyst
architect
bookkeeper
business analyst
business intelligence
c#
call centre
ccna
cisco
cloud
cobol
consultant
delphi
desktop
desktop support
developer
engineer
finance
graduate
graduates
helpdesk
internship
it manager
it support
it technician
java
java developer
junior developer
legal
linux
manager
marketing
mcse
network
network administrator
oracle
personal assistant
php
php developer
programmer
project
project administrator
project manager
receptionist
sales
sap
secretary
security
sql
support
technical support
technician
test analyst
tester
web developer
NEWSLETTER
FOLLOW US
Cyber Security Red Team Specialist
Job Ref
270439
Job Type
Permanent
Employer Type
Company
Date Added
13 Dec 2016
Expiry Date 10 Jan 2017
Expiry Date 10 Jan 2017
* There has been 1 application to this job.
* This job has been viewed 2573 times.
Employer:
Standard Bank
Location:
Gauteng
Salary:
Market related
Benefits:
Role details:
Standard Bank is a firm believer in technical innovation, to help us guarantee exceptional client service and leading edge financial solutions. Our digital footprint reflects our commitment to the latest solutions, the best people, and a uniquely flexible and vibrant working culture. To help us drive our success into the future, we are looking for an experienced Cyber Security Red Team Specialist our dedicated GIT IT Security at our JHB offices. Standard Bank is a leading African banking group focused on emerging markets globally. It has been a mainstay of South Africa's financial system for 150 years, and now spans 16 countries across the African continent
Job Purpose
The Cyber Security Red Team Specialist is tasked with executing attack simulations with the intention of pro-actively detecting weaknesses and shortcomings in the Bank security posture and improving detective controls within the Cyber Security Operations Centre (CSOC)
- - - - - - - - - - - - - -
Key Responsibilities/Accountabilities • Conduct high risk and sensitive ethical hacks of internally and externally hosted applications across the group according to scope defined by Red team.
• Co-ordinate and execute system/network level advanced red team and ethical hacking exercises
• Work special/off-hours (late nights, weekends etc.) as deemed necessary for the successful and covert execution of Red team exercises (emulating adversaries)
• Design and develop scripts, frameworks and tools required for facilitating and executing complex undetectable attacks
• Reviews results of network and application ethical hacks in order to determine severity of findings and to ensure proper remediation is applied.
• Performs penetration and remediation testing & reporting through the application of expert ethical hacking and penetration techniques in a fast-paced, highly technical environment.
• Identify network and system vulnerabilities and provide recommended counter measures or mitigating controls to reduce risk to an acceptable and manageable level.
• Lead (with the Blue team) presentations on Red/Blue team exercises to continuously improve the Blue team ability to detect, respond, and recover from security events.
• Provide technical support to Head of Cyber Security and Penetration Testing in identifying and streamlining new/existing protocols and tools used by the Red team.
Technical support could include, but not limited to the following: (1) Audit support & remediation, (2) Process Improvement, (3) Analysis & Reporting, (4) Cross Divisional
Preferred Qualification and Experience
One or more of the following Certification(s): OSCP, GPEN, OSCE, CISSP, CEH
Knowledge/Technical Skills/Expertise
Must have experience and be very proficient with the common tools associated with penetration testing (Metasploit, Burp Suite, etc. Must have a solid understanding of voice and data networks, major operating systems, active directory, and their associated peripherals. Must demonstrate knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors. Must be able to both work independently as well as effectively work in teams with individuals with a variety of skills and backgrounds)
Competencies
This competency includes facets of behaviour such as being visionary and establishing effective plans that take into consideration long-term aspects. This competency also includes the need for individuals to focus on identifying trends
Personal Attributes
Has confidence to bring conflict into the open to be resolved; Is able to confront others (peers, boss, etc.) or brings disagreement into the open with the purpose of resolving it, landing on a decision, to ensure action. Is open and honest when communicating with others (''straight talk''). Challenges popular values, decisions and opinions to ensure that actions are taken in the Bank's best interest. Takes action in defiance of corporate rules and procedures for the greater good of the business and its stakeholders. Accepts personal risks and/or consequences of failure and persist in the face of opposition or fear