Citi Group Purple Team - Technical Lead SVP C14 

United States, Florida, Tampa 

247983086

Responsibilities

• Develop and apply documentation, processes, and procedures to a program
• Utilize threat hunting techniques to understand how offensive attacks are logged, alerted, and visible to defensive controls
• Conduct Vulnerability Assessments and Penetration Testing (application and/or infrastructure) and articulate security issues to technical and non-technical audience
• Identify, research, validate, and exploit various, known, and unknown security vulnerabilities on the server and client side
• Direct the development and delivery of secure solutions by coordinating with business and technical contacts

Qualifications

• 10+ years of relevant experience with most of the requirements below
• Extensive experience working with Offensive Security Methodologies and Attack Simulation Techniques
• Offensive Security testing tools. e.g., Cobalt Strike, Bloodhound, Red Team Toolkit
• Experience leveraging the MITRE ATT&CK Framework
• Vulnerability Assessment tools. e.g., Nessus, Qualys, Rapid7
• Exploitation frameworks, e.g., Metasploit, CANVAS, Core Impact
• Social Engineering campaigns. e.g. email phishing, phone calls, SET
• Deep understanding of OSI model
• Security devices, i.e. Firewalls, VPN, AAA systems
• OS Security. e.g. Unix/Linux, Windows, OSX
• Understanding of common protocols. e.g. HTTP, LDAP, SMTP, DNS
• Web application infrastructure. e.g. Application Servers, Web Servers, Databases
• Web development and programming languages. e.g. Python, Perl, Ruby, Java, .Net
• Proven experience with attack simulation and threat hunting is a must
• Advanced Microsoft Office skills preferred
• Demonstrated ability to collaborate with a variety of analytical groups and service delivery organizations
• Advanced analytical and problem solving skills
• Consistently demonstrates clear and concise written and verbal communication
• Preferred Certifications: PNPT, OSCP, OSCE, GXPN, GPEN, GCIH, GWAPT, GCFA, or CISSP
• Proficient in interpreting and applying policies, standards and procedures
• Demonstrated ability to remain unbiased in a diverse working environment

Education

• Bachelor’s degree/University degree or equivalent experience
• Master’s degree preferred
• Certifications:PNPT, OSCP, OSCE, GXPN, GPEN, GCIH, GWAPT, GCFA, or CISSP or possess a willingness to pursue certifications after hire

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.