Wells Fargo - Westlake, TX

posted 2 months ago

Full-time - Senior
Westlake, TX
Credit Intermediation and Related Activities

About the position

Wells Fargo is seeking a Senior Lead Cyber Security Research Consultant who will play a pivotal role in investigating existing types of malware, analyzing their capabilities, and predicting new forms of malware to develop appropriate security responses. This position is critical in enhancing the organization's security posture and ensuring the safety of its information systems. The consultant will oversee the development of red teaming methods and solutions across various domains, including business continuity, emergency management, supply chain security, information security, personnel security, operations security, and facilities security. In this role, the consultant will build a mentoring program for the red team and its partners, focusing on developing capabilities around threat emulation, malware and tool creation, and tradecraft. As a senior contributor to the Offensive Security Research Team, the consultant will provide subject matter expertise on offensive operations, operationalizing threat intelligence, tool development, and tradecraft. Collaboration with blue and purple team partners will be essential to trigger incidents and enhance detection effectiveness, fostering strong relationships among different security groups. The consultant will also be responsible for building and maintaining a comprehensive model of relevant threats to the enterprise, educating senior management on the strengths, weaknesses, opportunities, and threats associated with strategic red teaming. Regular threat and risk briefings will be provided to senior management, presenting findings within the context of overall risk to the enterprise and adjusting red team activities based on management input. The consultant will work closely with existing infrastructure and security teams to provide actionable intelligence and act as an adversarial counterpoint to security strategy proposals.

Responsibilities

  • Oversee the development of red teaming methods and solutions across the enterprise.
  • Build a mentoring program for the red team and its partners.
  • Act as a senior contributor to the Offensive Security Research Team.
  • Work closely with blue and purple team partners to trigger incidents and enhance detection effectiveness.
  • Build and maintain a comprehensive model of relevant threats to the enterprise.
  • Educate senior management on the strengths, weaknesses, opportunities, and threats associated with strategic red teaming.
  • Provide regular threat/risk briefings to senior management regarding red team issues.
  • Work closely with existing infrastructure and security teams to provide actionable intelligence.
  • Act as an adversarial counterpoint to security strategy proposals.

Requirements

  • 7+ years of Cyber Security Research experience or equivalent through work experience, training, military experience, or education.
  • 7+ years of experience in briefing senior level executives and key stakeholders around red team activities.
  • 7+ years of information security reporting and analysis experience.
  • 5+ years of experience in reporting, analytics, or modeling in an information security or IT environment.

Nice-to-haves

  • 7 years of experience conducting red team assessments of high-consequence systems.
  • Understanding of MITRE ATT&CK framework.
  • Experience with Burp Suite, Crowdstrike, Splunk, Chronicle, EDR solutions.
  • Thorough understanding of security concepts and principles related to strategy, management, and intelligence analysis.
  • Ability to work productively with a variety of stakeholders with conflicting interests.
  • Ability to work with and against internal resistance and build consensus for red teaming.
  • Ability to think and act both strategically and tactically.
  • OSCP certification or other similar related security certifications.
  • GCP and Azure certifications.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service