Awesome Bay area health insurance company is expanding their cybersecurity team!
Individual contributor, hands-on role.
Some with broad experience working with security controls and knows how to define and operationalize in terms of business needs.
Someone with Java experience - doesn't have to be very experienced just has to have worked with the tool
Someone able to articulate and collaborate their views and input across multiple specialties and domains
A 'true Red Teamer' meaning, they can find issues with applications and has experience conducting red team exercises
Must be able to compromise applications and can continually push the Blue Team
Looking for someone who is able to understand the business drivers and what tools and frameworks meets those business drivers
Develop and implement enterprise-wide risk assessment, vulnerability research, and incident response services (develop process/methodology, infrastructure/technology tools, skills, knowledge base, documentation, etc.)
Execute the risk assessment process for new application development projects and existing production applications continuously (Includes penetration testing and vulnerability research versions of the risk assessment process)
Execute the vulnerability research process to identify known and unknown security vulnerabilities of a specified target and associated threat scenarios
Train and mentor junior staff on all topics related to application security including threat modeling, penetration testing, and vulnerability management
Work in a refreshingly organized team where innovative approaches to Cybersecurity are strongly encouraged and rewarded
More details to share if interested.
Looking for candidates with the below expertise/background:
Possession of a holistic view of the threat, vulnerability, and risk as well as their relationship
Deep understanding of internals and constructs of at least two main modern operation systems
Acumen with application and business logic embedded in business systems
Knowledge of open security testing standards and projects, including OWASP
Proficiency in one or more of the following: C, C++, Java, Python, Powershell
Experience employing phishing and other social engineering tactics
Experience using multiple command and control channels, including DNS and HTTPS
Proven ability to effectively communicate findings and mitigation strategies to stakeholders and develop comprehensive and accurate reports and presentations for both technical and executive audiences
Teamwork and ability to promote a working environment that increases collaboration, predictability, transparency and promotes a culture of experimentation and innovation
Based on Job Title, Location and Skills
Apply to this job.
Think you're the perfect candidate?
Help us improve CareerBuilder by providing feedback about this job:
Report this job
Report this Job
Once a job has been reported, we will investigate it further. If you require a response, submit your question or concern to our
Trust and Site Security Team
privacy and protection,
when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction.
By applying to a job using CareerBuilder you are agreeing to comply with and be subject to the CareerBuilder
Terms and Conditions
for use of our website. To use our website, you must agree with the
Terms and Conditions
and both meet and comply with their provisions.
We deliver innovation through focused solutions, superior ethics and significant relationships.
View the full profile
Who We Are
RED SKY was created to provide companies exceptional IT consulting and staffing support. For over half a decade, we perfected a streamlined process that supports the unique needs of each organization. Our core team customizes the search for every client, digging beneath the surface to provide excellent candidates for every position. The quality of our consultants and our dedication to our clients is what separates us.
What We Do
We provide specialists nationwide in every IT category, from Epic Systems Analysts to IT Service Management. With our headquarters in Minneapolis, offices in Chicago, New Jersey, Atlanta, Dallas, Seattle and Silicon Valley and company reach in Ireland and India, we are able to respond quickly where needed.
Our corporate philosophy is achieved through our personalized approach to our clients and consultants. Our staff cares. We ensure that the most talented professionals are introduced to our clients. We are not concerned with introducing you to the largest number of candidates, but discovering the best fit for your needs and company culture. Your satisfaction is our priority.