Red Team Analyst

2 weeks ago

Singapore Citi Full time

**Vulnerability Assessments Analyst - Red Team,**A**VP (C1**2**)**

**The Role**:
**Responsibilities**
- Support Citi’s Red, Blue, and Purple Teams during the execution of offensive security assessment operations
- Participate in advanced exploitation operations against a large global enterprise, including Red and Purple Team operations
- Identify opportunities to automate and standardize information security controls and for the supported groups
- Analyze source code to mitigate identified weaknesses and vulnerabilities within the system
- Review and validate automated testing results and prioritize actions that resolve issues based on overall risk
- Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions
- Assist the development and delivery of secure solutions by coordinating with business and technical contacts
- Assist in assessing risk when making business decisions

**Qualifications**

2+ years’ experience or equivalent knowledge and exposure are required with most of the following:

- Assisting in attack surface management
- Leveraging the MITRE ATT&CK Framework
- Helping to conduct Adversary Emulations or Assumed Breach Exercises
- Familiarity with industry Adversary Emulation Frameworks like PTES, CBEST, iCAST, GFMA
- Knowledge of tools and processes used to expose known and undocumented vulnerabilities in various different systems
- Assisting with Purple Team Testing
- Participation in Cyber Tiger Team operations
- Identifying, researching, validating, and exploiting various different, known, and unknown security vulnerabilities on the server and client side
- Red Team testing tools: Cobalt Strike, Red Team Toolkit, etc.
- Vulnerability Assessment tools: Nessus, Qualys, etc.
- Exploitation frameworks: Metasploit, CANVAS, Core Impact
- An understanding of OSI model
- Security devices: Firewalls, VPN, AAA systems
- OS Security: Unix/Linux, Windows, OSX
- Understanding of common protocols: HTTP, LDAP, SMTP, DNS
- Web development and programming languages: Python, Perl, Ruby, Java,.Net
- Reporting information security vulnerabilities to the business

**Education**
- Bachelor’s degree/University degree or equivalent experience
- Industry-accredited security certifications highly preferred but not required (e.g. PNPT, OSCP, OSCE, GXPN, GPEN, GCIH, GWAPT, GCFA, or CISSP)

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.
- **Job Family Group**:
Technology
- **Job Family**:
Information Security
- **Time Type**:
Full time
- **Most Relevant Skills**

Please see the requirements listed above.
- **Other Relevant Skills**

For complementary skills, please see above and/or contact the recruiter.-
- View Citi’s _EEO Policy Statement_ and the _Know Your Rights_ poster._

  • Red Team Analyst

    4 weeks ago

    Singapore Citigroup Inc. Full time

    Vulnerability Assessments Analyst - Red Team, AVP (C12) The Role: The Vulnerability Assessments Analyst - Red Team, AVP will participate in the Adversary Emulation program by emulating cyber and criminal threat actors targeting Citi. The candidate will conduct Intelligence-led Red Team Testing and Penetration Testing targeting people, process, and...

  • Red Team Engineer

    2 weeks ago

    Singapore Tech Rise People Full time

    Our client is a cyber security startup based in Singapore, experienced in simulating cyber attacks against huge global organisations. Their mission is to help these organisations with cutting-edge technology to understand, assess, and assure their cyber attack surface. The team consists of young, high-energy and high-performing members, who are devoted to...

  • Director Red Teaming Consulting

    5 days ago

    Singapore ARYAN SOLUTIONS PTE. LTD. Singapore Full time

    **Director Red Teaming Consulting / Pen Testing**: **Location: Singapore** **Certification: OSCP or OSWE or Crest Certifications **with **Red Teaming** and **Consulting**. - Provide leadership and guidance to a globally diverse team of Red Team Analysts - Flexible and available approach to meet the needs of team and peers across time zones - Collaborate...

  • Deal Management- Contract Analyst Intern

    2 weeks ago

    Singapore Red Hat, Inc. Full time

    At Red Hat, our interns are an integral part of the team. We are currently looking for a Deal Management - Contract Analyst Intern intern to join us in Singapore. The Deal Management Analyst Intern is responsible for delivering a range of specialized deal contract components to address customer requirements and according to Red Hat standards to meet deal...

  • Principal Red Team Analyst

    5 days ago

    Singapore watchTowr Full time

    **Hello, let us introduce ourselves!** We are watchTowr, a VC-backed cyber-security start-up headquartered in Singapore. Cyber security veterans and technical experts, we are obsessed with continuously finding ways to break into enterprises, while building technology for some of the world’s most targeted organisations. With experience informed by years...

  • Assistant Vice President, Red Team

    2 weeks ago

    Singapore MUFG Full time

    As a Global Red Team Operator at the AVP level, you will play a key role in executing advanced adversary simulation exercises that test and improve MUFG's global security posture. This role is ideal for professionals with a strong foundation in offensive security and a demonstrated ability to plan and execute Red Team operations. You will collaborate with...

  • Assistant Vice President, Red Team

    5 days ago

    Singapore MUFG Full time

    As a Global Red Team Operator at the AVP level, you will play a key role in executing advanced adversary simulation exercises that test and improve MUFG’s global security posture. This role is ideal for professionals with a strong foundation in offensive security and a demonstrated ability to plan and execute Red Team operations. You will collaborate with...

  • Llm Red-teaming Operation, Analyst

    6 days ago

    Singapore ByteDance Full time

    About ByteDance Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok, Helo, and Resso, as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create...

  • Vulnerability Assessments Analyst

    2 weeks ago

    Singapore Citi Full time

    **Vulnerability Assessments Analyst - Red Team, AVP (C12)** **The Role**: In addition, this role will expose the DevOps analyst to complex Red Team operations in a fast-paced environment where the ability to perform under pressure is key to success. **Responsibilities** - Support existing Red Team lab infrastructure, and build out new requirements to align...

  • Red Team Specialist

    7 days ago

    Singapore Datasearch Consulting Full time

    **Red Team Specialist** **Singapore** **Competitive Salary + Bonus** **Responsibilities**: - Engage in hacking activities to discover innovative, high-impact vulnerabilities across diverse organisations without any limitations. - Prioritise the identification of vulnerabilities that significantly affect our clients, giving preference to Remote Code...