Lead Red Team Operator (Information Technology)

Role Summary

As a member of our Red Team, you will be challenged to test assumptions and make the unknown known.  Working closely with our Incident Response and Cyber Threat Intel teams you will use adversarial techniques to test the ability of our people, processes, and technologies' resiliencies against cyber-attacks.  When issues are found, you will partner with peers and leadership in our technology organization to effectively communicate the gaps and to provide guidance on effective remediation.  This includes performing penetration testing of various technologies at the firm along with designing and participating in Red Team exercises to strengthen our detection and response capabilities.

Responsibilities

• Leads Penetration Tests on enterprise networks, systems, and technology stacks.
• Develop and coordinate Red Team/Purple exercises.
• Contribute to continuous attack/validation program
• Provides expertise and insight for internal cyber security team practices
• Collaborate with peers to provide input and continuously improve practices.
• Acts as an advisor to management and key external stakeholders on broad ranging projects.

Business Knowledge:

• Can articulate and translate cyber security risks and vulnerabilities into practical solutions for technology teams to facilitate remediation.
• Detailed knowledge of the cyber program associated objectives
• Understanding of common threats to, and historical attacks against, the Financial Services industry
• Balances strategic and pragmatic concerns to problem solving

Qualifications

Required:

• Typically, 8+ years of experience in a 24x7 global enterprise
• Stays current with modern Threat Actor Tactics, Techniques and Procedures and counter measures.
• Strong written and verbal communication skills.
• Able to work with interdisciplinary teams
• Able to prioritize concurrent work efforts
• Understanding of Windows domain concepts for hybrid cloud environments.
• Experience with Active Directory concepts and vulnerabilities.
• Proficient with Cloud technologies and features as well as security impacts.
• Ability to identify vulnerabilities in networks, systems, and applications using common penetration testing frameworks, tools, and techniques or manual processes
• General understanding of web technologies/frameworks (HTML, JavaScript, etc.) and their associated vulnerabilities (OWASP Top 10, XSS, filter bypassing, SQL Injection)
• In-depth understanding of Windows operating systems and knowledge of Unix, Linux, and macOS operating systems.
• Ability to utilize MITRE ATT&CK framework, Cyber Threat Intelligence, and Cyber Security Awareness concepts to influence work
• Knowledgeable about the functions of various security infrastructure, including firewalls, Intrusion Prevention Systems, Proxy Servers, Security Event Managers, VPNs, etc.
• Coding/scripting knowledge such as Python, PowerShell, or Bash
• Dedication to quality and attention to detail
• Spearheads work reviews and actively participates in providing feedback on others' work
• Performs as an expert in the field of Offensive Security.

 

Preferred:

• Offensive Security (OSCP/OSCE), SANS GIAC (GPEN, GWAPT, GXPN, etc.), or similar information security certifications preferred
• Experience with exploit frameworks such as Metasploit, Cobalt Strike, PowerShell Empire and Open Source solutions
• Previous Experience working in the Financial Industry
• System Administration Experience
• Experience acting as an advisor to leadership

FINRA Requirements

FINRA licenses are not required and will not be supported for this role.

Work Flexibility

This role is eligible for hybrid work, with up to three days per week from home.

Base Salary Ranges

Please review the job posting for the location of this specific opportunity.

$120,000.00 - $205,000.00 for the location of: Maryland, Colorado, Washington and remote workers
$132,000.00 - $225,000.00 for the location of: Washington, D.C.
$150,000.00 - $256,000.00 for the location of: New York, California

Placement within the range provided above is based on the individual's relevant experience and skills for the role.  Base salary is only one component of our total compensation package.  Employees may be eligible for a discretionary bonus, which is determined upon company and individual performance.

Commitment to Diversity, Equity, and Inclusion

At T. Rowe Price, our associates are our greatest asset. We thrive because our company culture is built on inclusion and because we sustain a work environment where associates can bring their best selves to work every day. The backgrounds, talents, and experiences of our global associates allow us to embrace new ideas and perspectives that move our business priorities forward and enable us to deliver strong client outcomes. Here, you can expect equal opportunity and fair and consistent treatment for all. 

Benefits

T. Rowe Price is an equal opportunity employer and values diversity of thought, gender, and race. We believe our continued success depends upon the equal treatment of all associates and applicants for employment without discrimination on the basis of race, religion, creed, color, national origin, sex, gender, age, mental or physical disability, marital status, sexual orientation, gender identity or expression, citizenship status, military or veteran status, pregnancy, or any other classification protected by country, federal, state, or local law.