Global Security - Red Team Operator - X-Force Red
Posted on: November 12, 2021
Information and Data are some of the most important organizational
assets in today's businesses. As a Security Consultant, you will be
a key advisor for IBM's clients, analyzing business requirements to
design and implement the best security solutions for their needs.
You will apply your technical skills to find the balance between
enabling and securing the client's organization with the cognitive
solutions that are making IBM the fastest growing enterprise
security business in the world.
Your Role and Responsibilities
Are you passionate about breaking into well defended networks,
while evading mature detection strategies? Are you interested in
joining a team of like-minded experts, many of whom have decades of
experience breaking into anything and everything to help
organizations strengthen their security? If so, X-Force Red, IBM
Security's team of veteran hackers, is looking for a Red Team
Operator, and you may be the perfect fit.
The Red Team Operator will be part of the X-Force Red Offensive
Security team. You will plan and execute remote operations
dynamically emulating advanced threat actors to improve the
detection and response capabilities of clients through long-term
engagements. It is critical that as a consultant you are able to
rapidly learn new technologies and processes with minimal
assistance. In this role there is a potential for up to 25% travel,
including international travel.
Your responsibilities include the following:Manage full adversary
simulation engagements from conception to report delivery.
Communicate effectively with team members and clients during the
Keeping current with the latest offensive security techniques.
Perform adversary simulation of real-world adversary Tactics,
Techniques, and Procedures (TTPs) by leveraging frameworks such as
MITRE ATT&CK--- and other sources of information.
Develop payloads, scripts and tools that weaponize new concepts for
exploitation, evasion, and lateral movement.
Engage in an active evasion of defenders to avoid detection and
Coordinate with other Red Team operators to achieve the specified
Deliver reporting and debriefs to defenders in manner that improves
detection and response capabilities.
Perform/present technical security research.
If you are hired into a Colorado work location, the anticipated
compensation range for the position 127,000 to 252,000 is based on
a full-time schedule. Your ultimate compensation may vary depending
on your job-related skills and experience. For part time roles, the
compensation will be adjusted appropriately.
Required Technical and Professional Expertise
You will need a minimum of 3-5 years of experience in the
following:Red teaming experience in a dedicated red team role.
System administration, network administration, or programming
Ability to develop/modify exploits and payloads to avoid defensive
Understanding of real-world adversary operations methodologies,
tactics, techniques, and procedures. In particular, the ability to
apply frameworks (eg. MITRE ATT&CK---) in client
Demonstrated history of published exploitation research.
Strong analytical and problem-solving skills.
Good interpersonal, organizational, communications, and time
Experience coordinating security testing projects with multiple
Effective writing and communication skills.
Preferred Technical and Professional Expertise
History of presenting at security conferences.
Track record in vulnerability research and CVE assignments.
Knowledge of Windows APIs.
Knowledge of EDR detection capabilities such as Carbon
Black/Crowdstrike, etc. and associated evasion techniques for
behavioral based alerting.
Demonstrated exploit, payload, or attack framework development
Expert level skills in one of the following: Active Directory,
Software Development, or Cloud Infrastructure.
Relevant certifications from organizations like Offensive Security
(OSCP/OSCE), SANS (GPEN, GXPN, GWAPT), or CREST CSAT/CSAM or
demonstrable equivalent skills.
Prior security consulting experience.
About Business Unit
IBM is a leading provider of enterprise security solutions. Named
by industry analysts as a leader in 12 security market segment
categories, IBM Security is a multi-billion dollar business that is
rapidly growing. In an industry focused on building walls, IBM
Security is focused on creating an open, connected security
ecosystem that leverages AI and cloud to help clients improve
compliance, stop threats, and grow their business securely.
This job requires you to be fully COVID-19 vaccinated prior to your
start date, where legally permissible. Proof of vaccination status
will be required. If you are unable to be vaccinated due to
medical, pregnancy or religious reasons, we offer accommodations in
accordance with applicable law.
Your Life @ IBM
Are you craving to learn more? Prepared to solve some of the
world's most unique challenges? And ready to shape the future for
millions of people? If so, then it's time to join us, express your
individuality, unleash your curiosity and discover new
Every IBMer, and potential ones like yourself, has a voice, carves
their own path, and uses their expertise to help co-create and add
to our story. Together, we have the power to make meaningful change
- to alter the fabric of our clients, of society and IBM itself, to
create a truly positive impact and make the world work better for
It's time to define your career.
IBM's greatest invention is the IBMer. We believe that through the
application of intelligence, reason and science, we can improve
business, society and the human condition, bringing the power of an
open hybrid cloud and AI strategy to life for our clients and
partners around the world.
At IBM, we pride ourselves on being an early adopter of artificial
intelligence, quantum computing and blockchain. Now it's time for
you to join us on our journey to being a responsible technology
innovator and a force for good in the world.
IBM offers a wide range of resources for eligible IBMers to thrive
both inside and outside of work. In addition to a competitive
benefits program consisting of medical and life insurance,
retirement plans, and time off, eligible employees may also have
-12 weeks of paid parental bonding leave. Family care options are
also available to support eligible employees during COVID-19.
-World-class training and educational resources on our
personalized, AI-driven learning platform. IBM's learning culture
supports your restless attitude to grow your skills and build the
depth and scale of knowledge needed to achieve your career
-Well-being programs to support mental and physical health.
-Financial programs that empower you to plan, save, and manage your
money (including expert financial counseling, 401(k), IBM stock
-Select educational reimbursement opportunities.
-Diverse and inclusive employee resource groups where you can
network and connect with IBMers across the globe.
-Giving and volunteer programs to benefit charitable organizations
and local communities.
-Discounts on retail products, services, and experiences.
We consider qualified applicants with criminal histories,
consistent with applicable law.
Being You @ IBM
IBM is committed to creating a diverse environment and is proud to
be an equal opportunity employer. All qualified applicants will
receive consideration for employment without regard to race, color,
religion, gender, gender identity or expression, sexual
orientation, national origin, genetics, pregnancy, disability, age,
veteran status, or other characteristics. IBM is also committed to
compliance with all fair employment practices regarding citizenship
and immigration status.
Keywords: IBM, Arlington , Global Security - Red Team Operator - X-Force Red, Other , Arlington, Massachusetts
Didn't find what you're looking for? Search again!