Overview
Remote
On Site
80-100/hr
Contract - W2
Contract - 6 Month(s)
Skills
Security Controls
Continuous Improvement
Collaboration
C
Assembly
Application Service Management
Oracle ASM
Programming Languages
Writing
Python
Scripting
White Hat
Certified Ethical Hacker
OSCP
GPEN
Web Applications
SANS
SEC
Reverse Engineering
Malware Analysis
Cloud Computing
Amazon Web Services
Microsoft
Microsoft Azure
Cloud Security
Job Details
Breach and Attack Simulation Development Engineer
Role Overview:
The professional will be responsible for planning, executing, and analyzing the results of cyber threat and attack simulations, focusing on controlled environments to validate security controls, identify gaps, and support continuous improvement of the organization's security posture. This role involves close collaboration with offensive and defensive security teams, as well as infrastructure and architecture groups.
Required Technical Knowledge:
Advanced expertise in ethical hacking.
Experience in executing and modifying exploits.
Basic knowledge of reverse engineering.
Proficiency in Python, C, and Assembly (ASM) programming languages.
Familiarity with Breach and Attack Simulation (BAS) tools.
Preferred Practical Experience:
Solid understanding of the MITRE ATT&CK framework.
Experience in writing and adapting exploits for various scenarios.
Ability to develop Python scripts to simulate actions and automate offensive tasks.
Proven experience with the SafeBreach platform is considered a strong differentiator.
Recommended Certifications:
Offensive Security / Ethical Hacking:
Certified Ethical Hacker (CEH)
Offensive Security Certified Professional (OSCP)
eLearnSecurity Certified Professional Penetration Tester (eCPPT)
SANS Institute (Advanced Offensive & Reverse Engineering):
SANS SEC560: GIAC Penetration Tester (GPEN)
SANS SEC542: GIAC Web Application Penetration Tester (GWAPT)
SANS SEC660: GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
SANS SEC573: GIAC Reverse Engineering Malware (GREM)
Cloud and Security Specializations:
AWS Certified Security Specialty
Microsoft Certified: Azure Security Engineer Associate
Google Professional Cloud Security Engineer
Role Overview:
The professional will be responsible for planning, executing, and analyzing the results of cyber threat and attack simulations, focusing on controlled environments to validate security controls, identify gaps, and support continuous improvement of the organization's security posture. This role involves close collaboration with offensive and defensive security teams, as well as infrastructure and architecture groups.
Required Technical Knowledge:
Advanced expertise in ethical hacking.
Experience in executing and modifying exploits.
Basic knowledge of reverse engineering.
Proficiency in Python, C, and Assembly (ASM) programming languages.
Familiarity with Breach and Attack Simulation (BAS) tools.
Preferred Practical Experience:
Solid understanding of the MITRE ATT&CK framework.
Experience in writing and adapting exploits for various scenarios.
Ability to develop Python scripts to simulate actions and automate offensive tasks.
Proven experience with the SafeBreach platform is considered a strong differentiator.
Recommended Certifications:
Offensive Security / Ethical Hacking:
Certified Ethical Hacker (CEH)
Offensive Security Certified Professional (OSCP)
eLearnSecurity Certified Professional Penetration Tester (eCPPT)
SANS Institute (Advanced Offensive & Reverse Engineering):
SANS SEC560: GIAC Penetration Tester (GPEN)
SANS SEC542: GIAC Web Application Penetration Tester (GWAPT)
SANS SEC660: GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
SANS SEC573: GIAC Reverse Engineering Malware (GREM)
Cloud and Security Specializations:
AWS Certified Security Specialty
Microsoft Certified: Azure Security Engineer Associate
Google Professional Cloud Security Engineer
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.