Easter Seals Jobs

Manager II, Offensive Security

General Information

Press space or enter keys to toggle section visibility

Country

India

Department

IM SECURITY

Date

Monday, October 7, 2024

Working time

Full-time

Ref#

20034212

Job Level

Executive Manager

Job Type

Experienced

Job Field

IM SECURITY

Seniority Level

Mid-Senior Level

Description & Requirements

Press space or enter keys to toggle section visibility

About Xerox Holdings Corporation

For more than 100 years, Xerox has continually redefined the workplace experience. Harnessing our leadership position in office and production print technology, we’ve expanded into software and services to sustainably power today’s workforce. From the office to industrial environments, our differentiated business solutions and financial services are designed to make every day work better for clients — no matter where that work is being done. Today, Xerox scientists and engineers are continuing our legacy of innovation with disruptive technologies in digital transformation, augmented reality, robotic process automation, additive manufacturing, Industrial Internet of Things and cleantech. Learn more at www.xerox.com and explore our commitment to diversity and inclusion. (https://www.xerox.com/en-us/jobs/diversity)

Job Description:

We are seeking a highly skilled and experienced Offensive Security Manager to lead our team of Security Engineers in Xerox Cybersecurity organization. The ideal candidate will have a strong background in managing offensive security projects and teams, particularly in red teaming initiatives, and will be adept at both internal security projects and external customer engagements.

Key Responsibilities:

• Lead and manage a team of Offensive Security Engineers.

• Assist in the establishment of action plans, timetables, and outcome measurements.

• Supervise offensive security projects, including penetration testing and red teaming initiatives.

• Ensure the successful execution of high-risk and sensitive ethical hacks on both internal and external applications globally.

• Guide the team in simulating real-world cyber-attacks to evaluate the organization’s defense mechanisms.

• Coordinate and oversee system and network-level red team and ethical hacking exercises.

• Mentor and support engineers in creating scripts, frameworks, and tools for complex, undetectable attacks.

• Conduct regular penetration tests on Firmware, cloud assets, web applications, mobile applications, and networks.

• Integrate MITRE ATT&CK framework TTPs into red team exercises to emulate advanced threat actors.

• Oversee the validation process for submissions in the Bug Bounty Program.

• Provide support during security incidents to identify root causes and recommend detection and prevention measures.

• Ensure comprehensive documentation of assessment findings and remediation recommendations.

• Communicate and collaborate effectively with engineering and other security teams.

• Coordinate Red team operational briefings and presentations to non-technical audiences and executive management.

• Perform research of emerging technologies and design frameworks for red team exercises of new technologies.

• Stay informed about the latest trends in cybersecurity, including new attack techniques and vulnerabilities.

Required Skills and Experience:

• At least 3 years of experience in managing offensive security projects and teams and total of 8+ years of experience in cyber security domain.

• Familiarity with offensive security tools and techniques, such as penetration testing frameworks and related project management software.

• Experience with security tools and frameworks (e.g., Metasploit, Burp Suite, custom exploit tools, etc.).

• Excellent problem-solving skills with the ability to research, develop, and validate new attack vectors and exploit techniques.

• Strong written and verbal communication skills, with the ability to create clear documentation and effectively convey technical concepts.

• Highly organized and able to manage multiple projects simultaneously.

• Motivated team player with a sense of urgency and initiative.

#LI-SG1

#LI-Remote

Xerox is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity, sex, marital status, sexual orientation, physical or mental disability, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law. Learn more at www.xerox.com and explore our commitment to diversity and inclusion: https://www.xerox.com/en-us/jobs/diversity People with disabilities who need a reasonable accommodation to apply or compete for employment with Xerox may request such accommodation(s) by sending an e-mail to XeroxStaffingAdminCenter@xerox.com. Be sure to include your name, the job you are interested in, and the accommodation you are seeking.