Cybersecurity - TVM - Attack & Pen - Red Team - Manager - Consulting - Location OPEN

$143,500 - $263,200/Yr

Ernst & Young - Providence, RI

posted 3 months ago

Full-time - Manager
Providence, RI
Professional, Scientific, and Technical Services

About the position

As a Cybersecurity Manager specializing in Attack & Penetration Testing at EY, you will lead a team of security professionals in implementing security solutions for clients, focusing on identifying and mitigating cyber threats. This role involves managing penetration testing projects, mentoring team members, and staying updated on the latest security trends and vulnerabilities. You will work collaboratively within a global team to enhance clients' security postures and contribute to their business resilience.

Responsibilities

  • Plan and execute penetration testing projects including internet, intranet, wireless, web application, cloud, and social engineering tests.
  • Develop and execute red team scenarios to identify security gaps.
  • Lead and mentor a team of penetration testers, providing guidance and support for their professional growth.
  • Stay current with emerging security threats and industry best practices.
  • Perform in-depth analysis of penetration testing results and create comprehensive reports with findings and recommendations.
  • Manage and execute penetration testing projects adhering to established methodologies and rules of engagement.
  • Effectively communicate complex technical security concepts to both technical and non-technical stakeholders.

Requirements

  • Bachelor's degree in Computer Science, Cybersecurity, Information Systems, Information Technology, Engineering, or a related field with a minimum of 6+ years of related work experience, or a Master's degree with approximately 3-4+ years of experience in penetration testing.
  • Experience in managing and executing penetration testing projects.
  • Experience with manual attack and penetration testing.
  • Experience in establishing and managing Red Team or application penetration testing programs.
  • Scripting/programming skills in languages such as Python, PowerShell, Java, or Perl.
  • Familiarity with the latest exploits and security trends.
  • Ability to lead a technical team for remote and on-site penetration testing.
  • Proficient in managing multiple attack and penetration testing projects simultaneously under tight deadlines.
  • Familiarity with stealth network penetration testing.
  • Two relevant certifications such as OSCP, OSWP, GPEN, GWAPT, OSCE, OSEE, GXPN, CISSP, CISM, PMP, or CREST Certified Simulated Attack Manager.
  • Valid U.S. driver's license.
  • Willingness to travel domestically and internationally, estimated travel up to 50%.

Nice-to-haves

  • Knowledge of Windows, Linux, Unix, and other major operating systems.
  • Familiarity with cloud security trends and vulnerability remediation.
  • Deep understanding of the MITRE ATT&CK framework.
  • Engagement with the security community through research and contributions.
  • Deep understanding of TCP/IP network protocols and Active Directory attack techniques.
  • Understanding of web-based application vulnerabilities (OWASP Top 10).

Benefits

  • Comprehensive compensation and benefits package including medical and dental coverage.
  • Pension and 401(k) plans.
  • Wide range of paid time off options.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service