girl looking into her desktop
Back to search results

Adaptive Threat Simulation (ATS) - Red Team Operator

Denver, Colorado;

Job Description:

Job Summary:

Red Team Operator will analyze, improve, and execute against security controls proactively to prevent external threat actors from exploiting company information , systems, or critical resources. Required to research threat actors capabilities, motives, and then develop similar capabilities to perform threat simulation campaigns against current security posture.

 

Job Description:

The Cyber Security Defense (CSD) function within Global Information Security is responsible for all aspects of threat intelligence, monitoring, application, network, and insider threat security programs. Within CSD, our Emerging Threat Defense team works to continuously strengthen the bank’s cyber security posture through research, threat simulations, threat hunting, and offensive security engagements.  This team works with partners throughout the bank to both discover and develop mitigations from threats to help secure a critical infrastructure around the world that interacts with millions of customers. 

 

Role Responsibilities:

The Adaptive Threat Simulation (ATS) - Red Team Operator position is responsible for performing global threat simulations for Bank of America. This role will require thorough analysis and development of threat actors capabilities, motives, and other related offensive security research. Through conducting these threat simulations, security controls will be evaluated and improved to proactively prevent real threat actors from leveraging researched TTPs. A Red Team Operator will also be tasked with collaborating with key stakeholders, cyber threat intelligence teams, and other cyber defense control teams to identify opportunities to mature controls against emerging threats.  

 

Required:

  • 3+ years of Red Team experience
  • Must have experience and be very proficient with the common tools associated with red teaming  (Cobalt Strike, Empire, Mythic, Sliver, etc.).
  • Must have experience in developing implants and evading common security tools.
  • Must demonstrate knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors. 
  • Must be able to critically examine an organization and system through the perspective of a threat actor and articulate risk in clear, precise terms. 
  • Must have a solid understanding of voice and data networks, major operating systems, active directory, and their associated peripherals, along with MITRE ATT&CK TTPs. 
  • Must be able to both work independently as well as effectively work in teams with individuals with a variety of skills and backgrounds. 
  • Must be a team-oriented individual with excellent communication skills at explaining the so what? of a vulnerability issue to a non-technical audience.
  • Ability to effectively code in a scripting language (Python, PowerShell, awk, etc.). 
  • Ability to review released POCs coded in variety of languages (C#, C, go, etc.)

 

Desired:

  • Red team or Malware oriented certifications.
  • Previous experience working in the financial industry a plus.

Enterprise Role Overview:

Analyzes, improves, implements, and executes security controls proactively to prevent external threat actors from infiltrating company information or systems. Researches more advanced and complex attempts/efforts to compromise security protocols. Maintains or reviews security systems, assesses security policies that control access to systems, and provides regular status updates to the management team. Typically has 5-10 years of relevant experience and will act as an individual contributor.

Job Band:

H5

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

Job Summary:

Red Team Operator will analyze, improve, and execute against security controls proactively to prevent external threat actors from exploiting company information , systems, or critical resources. Required to research threat actors capabilities, motives, and then develop similar capabilities to perform threat simulation campaigns against current security posture.

 

Job Description:

The Cyber Security Defense (CSD) function within Global Information Security is responsible for all aspects of threat intelligence, monitoring, application, network, and insider threat security programs. Within CSD, our Emerging Threat Defense team works to continuously strengthen the bank’s cyber security posture through research, threat simulations, threat hunting, and offensive security engagements.  This team works with partners throughout the bank to both discover and develop mitigations from threats to help secure a critical infrastructure around the world that interacts with millions of customers. 

 

Role Responsibilities:

The Adaptive Threat Simulation (ATS) - Red Team Operator position is responsible for performing global threat simulations for Bank of America. This role will require thorough analysis and development of threat actors capabilities, motives, and other related offensive security research. Through conducting these threat simulations, security controls will be evaluated and improved to proactively prevent real threat actors from leveraging researched TTPs. A Red Team Operator will also be tasked with collaborating with key stakeholders, cyber threat intelligence teams, and other cyber defense control teams to identify opportunities to mature controls against emerging threats.  

 

Required:

  • 3+ years of Red Team experience
  • Must have experience and be very proficient with the common tools associated with red teaming  (Cobalt Strike, Empire, Mythic, Sliver, etc.).
  • Must have experience in developing implants and evading common security tools.
  • Must demonstrate knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors. 
  • Must be able to critically examine an organization and system through the perspective of a threat actor and articulate risk in clear, precise terms. 
  • Must have a solid understanding of voice and data networks, major operating systems, active directory, and their associated peripherals, along with MITRE ATT&CK TTPs. 
  • Must be able to both work independently as well as effectively work in teams with individuals with a variety of skills and backgrounds. 
  • Must be a team-oriented individual with excellent communication skills at explaining the so what? of a vulnerability issue to a non-technical audience.
  • Ability to effectively code in a scripting language (Python, PowerShell, awk, etc.). 
  • Ability to review released POCs coded in variety of languages (C#, C, go, etc.)

 

Desired:

  • Red team or Malware oriented certifications.
  • Previous experience working in the financial industry a plus.

Enterprise Role Overview:

Analyzes, improves, implements, and executes security controls proactively to prevent external threat actors from infiltrating company information or systems. Researches more advanced and complex attempts/efforts to compromise security protocols. Maintains or reviews security systems, assesses security policies that control access to systems, and provides regular status updates to the management team. Typically has 5-10 years of relevant experience and will act as an individual contributor.

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Learn more about this role

Full time

JR-22091863

Band: H5

Manages People: No

Travel: Yes, 5% of the time

Manager:

Talent Acquisition Contact:

Michael Geddie

Referral Bonus:

0

Colorado pay and benefits information

Colorado pay range:

$86,500 - $139,900 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

Jersey City pay and benefits information

Jersey City pay range:

$86,500 - $139,900 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.