Leidos is currently looking to add a motivated individual to work in a dynamic environment with a team of Ethical Hackers and Cyber Engineers to support US CYBER COMMAND CNO Training. The successful candidate will provide Threat Emulation and Red Team Support using attack tools, techniques, and procedures (TTPs) based on documented, real-world cyber actors.
Job Summary:
Support Red Teams and Cyber OPFOR for assessments, training, and exercises with realistic scenarios reflecting real world threats. Support development of blue and red team network spaces for training events. Act as the Cyber OPFOR/Aggressor. Identify and assess cyber personnel proficiency responding to cyber threat against certification requirements. Document research and feedback. Work in a dynamic environment with non-standard hours during exercises and potential 25% travel for exercise support.
Security Clearance Requirement:
- Candidates must possess active TS/SCI with Polygraph to be considered for this role.
Primary Responsibilities:
- Research and develop various cyber threat actor Tactics, Techniques, and Procedures (TTPs) and environments to integrate such findings in Opposition Force (OPFOR) threat emulation.
- Plans and executes adversarial emulation in cyber exercises by exploiting common vulnerabilities and misconfigurations with common operating systems, protocols, and network security services.
- Assist with procuring, managing, and training for operational infrastructure associated with Red Team Command and Control (C2).
- Provide briefings of intrusion set activity to partner organizations and agencies.
- Organize training for other team members on analysis, tools, or reporting.
- Serve as a Subject Matter Expert for working groups and meetings with partner organizations and agencies.
- Generate report as required on development efforts.
Basic Qualification:
- Eight (8) to twelve (12) years of continuous work experience in the Cyber Mission Force (CMF) either working directly or in-support to Cyber Operations (CO).
- Bachelor's degree in computer science, Information Systems, or a related discipline from an accredited college or university.
- In lieu of the bachelor's degree, hold one or more of the following accredited certifications: Offsec Certified Professional (OSCP), Offensive Security Experienced Penetration Testers (OSEP), Practical Network Penetration Tester (PNPT), and GIAC Penetration Tester (GPEN).
- Experience in analysis of vulnerabilities, Control and Command (C2) frameworks, intrusion sets; interpreting analytical results, writing and briefing skills at a technical/professional level, and managing internal and external customer relations.
- Experience working with any of the following C2 frameworks: Cobalt Strike, Metasploit, PoshC2, and/or Mythic.
- Experience using relevant Cyberspace Operation (CO) tools used for the customer mission.
- Ability to provide formal documentation of analysis and/or research results.
Preferred Qualifications:
- Working knowledge of scripting languages such as Bash and Python.
- Ability to write/modify code in C, C++, or C#.
- Ability to create/modify existing software to include malware to support scenario cyber training objectives.
- Working knowledge of networking and protocols to support development of blue and red network space for cyber training events.
Careers.leidos.com
Pay Range:
Pay Range $122,200.00 - $220,900.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.