Job Description

Story Behind The Need:

• Reason for request/why opened: additional support needed - project is growing
• Scope of Project: recurring project, validate security, mature the platform that they have and validate the security checks year after year.
• Team Size/Culture: pod structure - 20 team members - HM and contractor are going to be working together

Candidate Profile Details:

• Degree/Certifications Required: Degree, computer area - foc
• Years of Overall Experience: 5+ years of experience cyber security, with a focus on breach and attack simulation or other offensive security discipline.
• 8-10 yrs overall experience
• Ideal Candidate Background: cyber security, thread hunting in the domain, hunting operations, attacker tactics, , techniques, and procedures (TTPs) and coding, PowerShell and python - purple teaming, thread hunting, preforming validation checks
• How will performance be measured: quality of work, deliverables, scalability how they are contributing to the product, delivery to the validation checks, team coordination, fulfill the audit requirements and documentation, assigned a task monthly goal - based on their performance
• Stakeholders interaction - NO

Summary Of Day-To-Day Responsibilities:
:

• Develop and implement a controls assurance strategy structured around the MITRE ATT&CK framework
• Creating realistic attack scenarios based on attacker tactics, techniques, and procedures (TTPs) to test the effectiveness of security controls across various systems and networks.
• Collaboratively identify key security controls, monitor gaps in their implementation, and work closely with relevant teams to remediate identified issues.
• Staying current with industry best practices, emerging threats, and relevant regulatory requirements to ensure a comprehensive understanding of the evolving cybersecurity landscape.
• Collaborate with cyber threat intelligence, threat hunting, and threat detection engineering groups to identify and prioritize key security controls, and gaps, and ensure appropriate alerting feedback.
• Generating comprehensive reports detailing simulation findings, including actionable recommendations for remediation and security posture improvement to relevant stakeholders.
• Collaborate with other members of the cybersecurity team to analyze and interpret the results of simulated attacks.
• Continuously improve and refine the breach and attack simulation process to enhance its effectiveness.
• Make recommendations for security posture improvements based on analysis of breach and attack simulation trends.
• Work with senior analysts and leadership to develop relevant BAS dashboards to represent program value.
• Quantify risk reduction due to breach and attack simulation program
• Leverage APIs and automation techniques to integrate BAS with other security tools.

Job Requirements:

• What can you bring to TD? Share your credentials, but your relevant experience and knowledge can be just as likely to get our attention. It helps if you have:

o 5+ years of experience cyber security, with a focus on breach and attack simulation or other offensive security discipline.
o Advanced knowledge of security incident and event management, log analysis, Network traffic analysis, Malware investigation and remediation.
o Experience with cloud infrastructures for the enterprise, such as Amazon Web Services, G Suite, Office 365, and Azure is preferred.
o Strong software development skills, with proficiency in Python, PowerShell, and other relevant languages.
o Familiarity with Breach and Attack Simulation (BAS) solutions (e.g., AttackIQ, Atomic Red Team, etc.) and the MITRE ATT&CK framework
o Offensive security skills such as penetration testing or vulnerability assessment.
o Familiarity with MITRE ATT&CK, SIEM, EDR, and security control validation
o Knowledge of common security controls, best practices, and attacker techniques.
o Excellent problem-solving and analytical skills.
Must-Have Hard Skills:

• Advanced knowledge of security incident and event management, log analysis, Network traffic analysis, Malware investigation and remediation.
• Experience with cloud infrastructures for the enterprise, such as Amazon Web Services, G Suite, Office 365, and Azure is preferred.
• Familiarity with Breach and Attack Simulation (BAS) solutions
• Excellent problem-solving and analytical skills.
• Good communication
• Phyton or PowerShell
• Thread hunting, incident response, Digital Forensics and purple teaming

Nice-To-Have

• Banking or financial institution
• Any engineering exp

Job Details
13574
Contract
1 Year
Toronto
69.00 CAD
Recruiter
Dave Puggal

Skills Required