Share this Job
Apply now »

Adversary Simulation Specialist

Company Name:  Basell PO India Pvt Ltd
Location: 

Mumbai, IN, 400076

Req ID:  72361
Facility:  Mumbai-470
Department:  Information Security
Division:  Global Business Services

Adversary Simulation Specialist

 

Basic Function

This role will define and execute automated and manual vulnerability assessments, identify and report vulnerabilities in applications, platforms and network components to prepare networked defenses and staff for the highly sophisticated targeted attacks our organization will face.

The role is part of the Offensive Security Team and works closely with the Incident Response team as well as the application developers/owners to ensure the security and reliability of critical electronic systems. 

Travel: 10%

Roles & Responsibilities
  • Identify and mimic the tactics, techniques and procedures of threat actors or threat groups, and the campaigns they execute against similar organizations or industries
  • Lead the execution of Penetration Tests, Application Security Assessments, Red and Purple teaming activities.
  • Coordinate with third parties the execution of External Penetration tests or similar activities
  • Combine cyber threat intelligence with vulnerabilities to simulate relevant threats, evaluate client incident response (IR) capabilities, help security operations teams prepare for worst-case scenarios
  • Deliver key findings and improvement suggestions to determine if systems and infrastructure are properly tooled and resourced to defend against sophisticated attackers
  • Foster security awareness culture, mentor team members, perform presentations and demonstrate hacking techniques.
  • Publish relevant security standards, practices, guidelines and processes
  • Research and integrate tools, processes and techniques to improve vulnerability analysis, forensics capabilities, network and data security, and threat management
  • Effectively communicate findings to stakeholders at all levels across the organization
  • Conduct research, penetration testing, and vulnerability assessments on external-facing resources and internal assets to determine risks
  • Maintain regular focus on latest industry techniques, tools and research; be able to develop and explain technical decisions and separate fact from opinion and speculation
  • Improve overall cyber resilience to the next level of maturity and effectiveness
Min. Qualifications
  • BS or equivalent experience
  • 5+ years related experience with information technology, information security and application penetration testing
  • Experience in one or more of the following: cyber operations, red teaming, exploit development, incident response/hunt, cybersecurity research and development
  • Strong written and verbal communication skills
Preferred Qualifications
  • Knowledge of advanced cyber threats, adversary methodologies, and cyber threat intelligence
  • Experience writing code in one or more programming language (Python, C/C++, JavaScript, Java, etc.)
  • Related certifications such as the OSCP or CEH
  • 3+ years of experience on coordination and execution of Web application, network, and system penetration tests with good understanding of OWASP TOP 25
  • Knowledge of ATT&CK and its uses within the cybersecurity community (e.g., Open Source projects)
  • Experience with encryption protocols (i.e., SSL/TLS) and algorithms (RSA, AES, etc.)
  • Familiarity with attack emulation/penetration tools, ie. APT Simulator and Metasploit
  • Expertise on application security including web application penetration testing and debugging and reverse engineering
  • Experience in red teaming execution and coordination.
  • Experience in incident response (hunt), blue teaming.
  • Must be a strong technical leader in the analysis of information security vulnerabilities
  • Good project management skills and experience acting as a project technical lead;
  • Ability in ensuring security by design inside of a System Development Life Cycle (SDLC) process.
Competencies
Builds effective teams
Collaborates
Cultivates innovation
Customer focus
Demonstrates courage
Drives results
Ensures accountability
Instills trust and exemplifies integrity

Apply now »