AGÕæÈË°Ù¼ÒÀÖ

Vulnerability Assessments Analyst - Red Team, AVP (C12)Ìý

Ìý

The Role:Ìý

The Vulnerability Assessments Analyst - Red Team, AVP will participate in the Adversary Emulation program by emulating cyber and criminal threat actors targeting Citi. The candidate will conduct Intelligence-led Red Team Testing and Penetration Testing targeting people, process, and technology. The candidate may also conduct regulatory driven Red Team Testing. To be successful in this role, the ideal candidate will have some experience in the following:Ìý

Ìý

ResponsibilitiesÌý

• Support Citi’s Red, Blue, and Purple Teams during the execution of offensive security assessment operationsÌý

• Participate in advanced exploitation operations against a large global enterprise, including Red and Purple Team operationsÌý

• Identify opportunities to automate and standardize information security controls and for the supported groupsÌý

• Resolve any vulnerabilities or issues detected in an application or infrastructureÌý

• Analyze source code to mitigate identified weaknesses and vulnerabilities within the systemÌý

• Review and validate automated testing results and prioritize actions that resolve issues based on overall riskÌý

• Scan and analyze applications with automated tools, and perform manual testing if necessaryÌý

• Reduce risk by analyzing the root cause of issues, their impact, and required corrective actionsÌý

• Assist the development and delivery of secure solutions by coordinating with business and technical contactsÌý

• Assist in assessing risk when making business decisionsÌý

• Demonstrate particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparencyÌý

Ìý

QualificationsÌý

2+ yearsâ€� experience or equivalent knowledge and exposure are required with most of the following:Ìý

• Assisting in attack surface managementÌý

• Leveraging the MITRE ATT&CK FrameworkÌý

• Helping to conduct Adversary Emulations or Assumed Breach ExercisesÌý

• Familiarity with industry Adversary Emulation Frameworks like PTES, CBEST, iCAST, GFMAÌý

• Knowledge of tools and processes used to expose known and undocumented vulnerabilities in various different systemsÌý

• Assisting with Purple Team TestingÌý

• Participation in Cyber Tiger Team operationsÌý

• Helping with Vulnerability Assessments and Penetration Testing (application and/or infrastructure) and articulating security issues to technical and non-technical audienceÌý

• Identifying, researching, validating, and exploiting various different, known, and unknown security vulnerabilities on the server and client sideÌý

• Red Team testing tools: Cobalt Strike, Red Team Toolkit, etc.Ìý

• Vulnerability Assessment tools: Nessus, Qualys, etc.Ìý

• Exploitation frameworks: Metasploit, CANVAS, Core ImpactÌý

• Social Engineering campaigns: email phishing, phone calls, SETÌý

• An understanding of OSI modelÌý

• Security devices: Firewalls, VPN, AAA systemsÌý

• OS Security: Unix/Linux, Windows, OSXÌý

• Understanding of common protocols: HTTP, LDAP, SMTP, DNSÌý

• Web application infrastructure: Application Servers, Web Servers, DatabasesÌý

• Web development and programming languages: Python, Perl, Ruby, Java, .NetÌý

• Reporting information security vulnerabilities to the businessÌý

Ìý

Education

• Bachelor’s degree/University degree or equivalent experienceÌý

• Industry-accredited security certifications highly preferred but not required (e.g. PNPT, OSCP, OSCE, GXPN, GPEN, GCIH, GWAPT, GCFA, or CISSP)Ìý

Ìý

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.Ìý

Ìý