Overview
Skills
Job Details
BAS Development Engineer
Remote
Must have skills.
Ethical hacking, Python, C,MITRE, ATT&CK framework, SafeBreach platform
JD:
Position Summary
BAS Development Engineer Role Overview: The professional will be responsible for planning, executing, and analyzing the results of cyber threat and attack simulations, focusing on controlled environments to validate security controls, identify gaps, and support continuous improvement of the organization's security posture. This role involves close collaboration with offensive and defensive security teams, as well as infrastructure and architecture groups.
Required Technical Knowledge:
Advanced expertise in ethical hacking.
Experience in executing and modifying exploits.
Basic knowledge of reverse engineering.
Proficiency in Python, C, and Assembly (ASM) programming languages.
Familiarity with Breach and Attack Simulation (BAS) tools. Preferred Practical Experience:
Solid understanding of the MITRE ATT&CK framework.
Experience in writing and adapting exploits for various scenarios.
Ability to develop Python scripts to simulate actions and automate offensive tasks.
Proven experience with the SafeBreach platform is considered a strong differentiator.
Recommended Certifications: Offensive Security / Ethical Hacking: Certified Ethical Hacker (CEH)
Offensive Security Certified Professional (OSCP) eLearnSecurity Certified Professional Penetration Tester (eCPPT) SANS Institute (Advanced Offensive & Reverse Engineering):
SANS SEC560: GIAC Penetration Tester (GPEN)
SANS SEC542: GIAC Web Application Penetration Tester (GWAPT)
SANS SEC660: GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
SANS SEC573: GIAC Reverse Engineering Malware (GREM) Cloud and Security Specializations:
AWS Certified Security Specialty Microsoft Certified: Azure Security Engineer Associate
Google Professional Cloud Security Engineer