Red Team Operator

---

Job description

Your role

Reporting through the global head of cloud and offensive security at IHS Markit, you will participate in the design and execution of campaign-oriented operations spanning a variety of targets, environments, and products. Successful team members must be able to evaluate environments, applications and systems and incorporate Cyber Threat Intelligence to develop actionable attack plans that emulate the behaviors of adversaries targeting IHS Markit.

The successful candidate will possess a breadth and depth of knowledge in the security of operating systems, networks and protocols, cloud technologies, firewalls, middleware, defensive security stacks (EDR, IPS/IDS, etc.). This position requires continuous learning to keep up with the latest technologies and attack tactics as well as a tenacious attitude. Members of the Offensive Security team are expected to continuously improve their tradecraft and add to the breadth and depth of their knowledge.

Responsibilities

* Effectively communicate the Offensive Security strategy, findings and risks to client stakeholders that range from technical staff, product owners to executive leadership

* Document and formally report testing initiatives, along with remediation recommendations and validation

* Provide pragmatic recommendations to correct identified flaws, vulnerabilities, and misconfigurations to effectively treat cyber risks

* Work collaboratively with & provide guidance to the Cyber Security Operations Center and Cyber Threat Intelligence teams to provide requirements, improve their capabilities to detect and eradicate Adversaries and improve the security posture of IHS Markit

* Participates and contributes to all phases of Breach & Attack Simulation, Red/Purple Team and Cyber Deception operations and development

* Configure and safely utilize Open-Source Intelligence (OSINT) and attack tools ( in-house, open source, and commercial), tactics, and procedures against authorized targets and operate within the Rules of Engagement

* Develop scripts, investigate tools and methodologies to continuously improve IHS Markit's offensive security capabilities

* Understand business processes, internal control risk management, IT controls and related standards

* Regularly research and learn new Tactics, Techniques & Procedures (TTPs) and work with teammates to assess risk and implement and validate controls, as necessary

* Arrange and provide support to business units launching new technology applications and services to verify that new products/offerings are not at risk of compromise or information leakage

You have

* 5+ Years of demonstrable expertise in offensive security operations as member of a Red or Purple Team, preferably in public cloud environments such as AWS

* Strong knowledge of core concepts such as TCP/IP networking, Windows & Active Directory, Unix/Linux, Cloud Service Providers, Relational Databases, middleware, web applications and how to secure them

* Expertise in scripting languages, Python and Bash are highly preferred

* Hands-on knowledge of exploitation, post-exploitation, and attack tools and frameworks

* In-depth understanding of MITRE ATT&CK, OWASP, threat actors, and emulation of Tactics, Techniques, and Procedures (TTPs)

* Experience with penetration testing (network, web applications) is beneficial

* Experience with delivering requirements and recommendations to Cyber Threat Intelligence (CTI) and Cybersecurity Operations Centers

* While not required, experience with designing and deploying Deceptive Technologies (e.g., Honeypots, Honeytokens) is highly desired

You are

* A naturally curious self-starter - you can develop and deliver on requirements with little to no supervision

* A relentless learner - you actively seek to add to your skillset and knowledge base while challenging the status quo to drive efficiency in the team

* Strong interpersonal skills - you can communicate with a wide range of technical and non-technical teams

* Insist on the highest standards within the team and actively share your perspectives with the team and the larger information security organization

What we offer

* Access to the most interesting information technologies

* The ability to implement your own ideas and solutions

* Participation in conferences and training for Information Security and Data Science qualifications

* ----------------------------------------------

Inclusion and diversity are critical to the success of IHS Markit, and we actively encourage applications from people of all backgrounds. We are committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, status as a protected veteran, or any other protected category. For more information on the many ways in which we enthusiastically support inclusion and diversity efforts for both candidates and employees, please access our Inclusion & Diversity Statement here.

We are proud to provide reasonable accommodations to applicants with disabilities. If you are interested in applying for employment with IHS Markit and need special assistance or an accommodation to use our website or to apply for a position, please contact or call +1 . Determination on requests for reasonable accommodation are considered on a case-by-case basis. This contact information (email and phone) is intended for application assistance and accommodation requests only. We are unable to accept resumes or provide information about application status through the phone number or email address above. Resumes are only accepted through the online application process, and only qualified candidates will receive consideration and follow-up.

IHS Markit maintains a substance-free workplace; employees may be asked to submit to a drug test (where permitted by law). In addition, as a federal contractor in the United States, the company participates in the E-Verify Program to confirm eligibility to work.

For information please click on the following links:

IHS Markit Business Code of Conduct

Right to Work

EEO is the Law

EEO is the Law Supplement

Pay Transparency

* ----------------------------------------------

Current Colleagues

If you are currently employed by IHS Markit, please apply internally via the Workday internal careers site.