Red Team Security Engineer

Want to make a global impact on healthcare? Join us as a Red Team Security Engineer!

You will be part of a company that has a positive impact on people’s health and well-being around the whole world, literally. The solutions our team is delivering support this mission, and it’s something we are proud of. Do not hesitate to apply NOW!

Our global healthcare client is building a new team with their current lead of a custom application development platform & AWS engineering to ensure people working on their platforms have the industry and company-specific knowledge to perform their duties efficiently and securely.

You will be central to the development of the qualified environment, having input into the evolution of the environment and the day-to-day operations. You will work with a diverse set of customers bringing unique challenges and opportunities to grow your experience.

What you'll do in this role  

• Maintain a deep understanding of the systems and tools, how they work, and how they could be attacked or abused.
• Propose, plan, and execute Red Team operations based on realistic threats to the organization both internal and external.
• Write detailed reports covering the goals and outcomes of Red Team operations, including significant observations and recommendations.
• Collaborate with Global Information Security team to improve detection and response capabilities.
• Collaborate with Platform teams to propose defensive improvements to cloud environments.
• Collaborate across multiple product teams to propose enhancements and additions.
• Collaborate with non-technical teams to propose process and policy enhancements and additions.
• Stay informed on current security trends, advisories, publications, and academic research that is relevant our organization.
• Publish internal blogs/communications on offensive-security topics.
• Teach and mentor other engineers, within the Red Team and beyond.

We're looking for

• Deep Understanding of the MITRE ATT&CK framework.
• Ability to automate tasks by writing basic scripts/programs.
• Ability to read and understand multiple programming languages, especially PHP and Python.
• Command-line experience with Linux-based operating systems.
• Experience exploiting vulnerabilities in at least two of the following areas:
• Web applications.
• Cloud environments (AWS).
• Linux and/or MacOS workstations.
• Software supply chain.
• Basic hands-on experience with AWS.
• An adversarial mindset — you must be able to put yourself in the mind of the attacker.
• Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner.

How to knock our socks off

• Familiarity and comfort with working remotely, including being on camera during video calls.
• A proven self-starter who is able to identify opportunities and challenges.
• You love borshch!

✔ Not checking every box?

This job looks very exciting, but you hesitate to apply because of the confidence gap? Reach out to us anyway! Beetroot is an inclusive workplace that considers all applicants. Equality is one of our core values. We're committed to providing equal opportunity and a sense of belonging for all Beetroot consultants and candidates. So let's discover together whether we could be an excellent fit for each other.