Minimum qualifications:
- Bachelor's degree in Computer Science or a related technical field, or equivalent practical experience.
- 8 years of experience with penetration testing and red teaming functions, including network, web application, mobile, cloud, social engineering, scripting, or tool development.
- 7 years of experience in information security.
- 5 years of experience leading or managing technical teams.
Preferred qualifications
- Certifications related to offensive security including OSCE, OSEP, OSEE, OSCP, CCSAS, CCT, INF, or relevant SANS courses.
- 5 years of experience in three or more of the following: project management, network penetration testing, mobile or web application assessments, social-engineering assessments, exploit development, or reverse engineering.
- Experience in training and public speaking engagements.
- Expertise in Unix, Linux, Mac, and Windows operating systems, including Bash and PowerShell.
- Strong knowledge of tools used for wireless, web application, and network security testing.
- Excellent communication skills, with the ability to develop documentation and explain technical details in a concise manner.
About the job
In this role, you will engage in advanced Red Team or Application Security concepts such as performing covert operations against complex networks while remaining entirely undetected, advanced application manipulation, and basic programming concepts. You'll be as technical as the consultants you manage and will assist on the most difficult engagements. A typical engagement could be breaking into a segmented secure zone at a high security client, or reverse engineering an application and encryption method in order to gain access to sensitive data, all without being detected. You will operate at scale while remaining stealthy, identify and abuse misconfigurations in network infrastructure, and manage a team of highly skilled, technical individuals.
You will be the lead project manager for all offensive engagements. This includes scoping prospective engagements, managing team metrics, establishing quarterly goals for team growth, conducting performance reviews and 1:1 meetings, scheduling resources for projects, managing multiple projects from kickoff to completion, and delivering executive out-briefs.
Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant't cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination of renowned frontline experience responding to some of the most complex breaches, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures that Mandiant knows more about today's advanced threats than anyone.
(British Columbia & Canada-Remote Only*) The British Columbia base salary range for this full-time position is CAD 178,000-218,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target salaries for the position. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. *Note: Disclosure as required by Bill 13
Please note that the compensation details listed in Canada role postings reflect the base salary only, and do not include bonus, equity, or benefits.
Responsibilities
- Manage consulting engagements, with a focus on advanced Application Security assessments, Red Team operations, and penetration tests. Provide both subject matter expertise and project management experience to serve as the “point person” for engagements.
- Assist with scoping prospective engagements, participating in engagements from kickoff through completion, and mentoring less experienced staff.
- Identify, market, and develop new and pull-through business opportunities.
- Supervise staff, provide feedback and coaching, and grow their technical and consulting skills. Improve Mandiant’s business processes and methodologies.
- Travel up to 20% of the time as required.