Job Information
JPMorgan Chase Red Team Operator in Wilmington, Delaware
DESCRIPTION:
Duties: Drive and participate in hands-on ethical hacking engagements focused on simulating real-world attacker tactics, techniques and procedures. Facilitate peer tasks during operations. Develop customs tools, exploits, Tactics, Techniques, and Procedures including custom malware and exploit scripts. Conduct knowledge sharing with and provide mentorship and feedback to internal and external teams. Serve as a Subject Matter Expert in Active Directory Security. Analyze vulnerabilities, threats, and architectural design to produce reports. Document observations and findings from operations in a clear and concise fashion in formal reports. Perform debriefs or visual presentations in a clear and articulate manner.
QUALIFICATIONS:
Minimum education and experience required: Bachelor's Degree in Computer Engineering, Computer Information Systems, Computer Security, or related field of study plus 5 years of experience in the job offered or as Red Team Operator, Application/Software Developer, Penetration Tester, Vulnerability Researcher, Security Consultant or related occupation. The employer will alternatively accept a Master's Degree in Computer Engineering, Computer Information Systems, Computer Security, or related field of study plus 3 years of experience in the job offered or as Red Team Operator, Application/Software Developer, Penetration Tester, Vulnerability Researcher, Security Consultant or related occupation.
Skills Required: Requires experience in the following: conducting network exploitation operations, including Red Team operations; computer networking; modern threats and vulnerabilities; Red Team attack methodologies; Red Team tools including Cobalt Strike and Metasploit; networking in all OSI layers and protocols; databases including MySQL and Neo4j; System administration in Windows, Linux, Unix, and Mac operating systems; computer forensics; operating system and software vulnerability research and exploitation; offensive security tools for reconnaissance, scanning, and exploitation including Nmap, BurpSuite, Bloodhound, PowerSploit, Empire, and GhostPack; log output from networking devices, operating systems, and infrastructure services; cloud administration and exploitation in AWS and Azure; developing in-house scripts using scripting languages in PowerShell and Python; compiled languages including C++, C#, JavaScript, and PHP; security tools or technology including Firewalls, Intrusion Detection Systems, Web Proxies, and Data Loss Prevention; articulating and visually presenting complex penetration testing and Red Team results to internal teams and senior leaders; Active Directory Security; competing-in and running information security capture- the-flag competitions; administering and building complex, virtualized, and anonymized computer networking infrastructures utilized in adversary emulation simulations; building hands-on Active Directory Attacks for testing; conducting live training sessions; presenting at major security conferences on subject of Active Directory Attacks. Must possess the following certification: Offensive Security Certified Professional (OSCP).
Job Location: 880 Powder Mill Road, Wilmington, Delaware 19803. Telecommuting permitted up to 60% of the week.
JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
We offer a competitive total rewards package including base salary determined based on the role, experience, skill set, and location. For those in eligible roles, we offer discretionary incentive compensation which may be awarded in recognition of firm performance and individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
JPMorgan Chase is an Equal Opportunity Employer, including Disability/Veterans