McGuireWoods has an opening for a Cyber Security Red Team Engineer on our IT team. The position can reside either in either our Richmond VA, Raleigh NC, or Washington DC office. We are searching for a for senior-level cyber security professional who will be responsible for overseeing the development of red teaming methods and activities across the firm, to include (but not limited to) the areas of business continuity, information security, personnel security, operations security, and facilities security.
McGuireWoods is a full-service firm providing legal and business solutions to corporate, individual and nonprofit clients worldwide for more than 184 years. Our law firm has earned the loyalty of many longstanding clients with deep understanding of their businesses and broad skills in corporate transactions, high-stakes disputes, and complex regulatory and compliance matters. People come here to do great, challenging work and we provide the resources and training for them to succeed and develop professionally. Working together from offices in the U.S., Europe and Asia, McGuireWoods is dedicated to diverse perspectives, impeccable service, and innovative delivery of practical, business-minded solutions. For more information, visit www.mcguirewoods.com.
Responsibilities Build and maintain a comprehensive model of relevant, feasible threats to the firm Conduct simulated attacks on firm resources, including but not limited to phishing, web application compromise, social engineering, and penetration testing (pen tester) Conduct ongoing analysis of the firm network and information systems using existing security monitoring tools, analytics tools, and other log sources in order to discover threats, weaknesses, and vulnerabilities Provide regular threat/risk briefings to senior management regarding issues raised by the red team. Present findings within a context of overall risk to the firm. Adjust red team activities and agenda based on senior management input Analyze security violation reports for suspicious activities and patterns Lead testing of installed systems to ensure protection strategies are properly implemented and functioning as intended Work closely with infrastructure and security teams, both to receive input and to provide practical and actionable intelligence
Qualifications Prefer Bachelors Degree in Information Technology or Computer Information Systems Must have a minimum of ten years of relevant experience Demonstrated knowledge and experience with various network protocols, firewalls, penetration testing tools, remote access, network operating systems and vulnerabilities, PC operating systems and vulnerabilities and network management tools. Specific experience required: TCP/IP, log review/analysis, Windows operating systems, Tenable Security Center Excellent analytical, problem-solving, customer service, project management and communication skills are required Understanding of operating system internals and network protocols Knowledge in application technology security testing (white box, black box and code review) Understand system technology security testing (vulnerability scanning and penetration testing) Microsoft and/or Cisco certifications helpful. CEH certification preferred. CISSP and CISA certifications strongly preferred Prefer those candidates with community contributions like public CVEs, bug bounties, open source tools and/or blogs