Do you want to take the first step in making Filipinos’ lives better everyday? Here in GCash we want to stay at the forefront of the FinTech industry by creating innovative, meaningful, and convenient financial solutions for the nation! G ka ba? Join the G Nation today!
CSFM RED TEAM MANAGER
Key Responsibilities:
Team Leadership and Supervision: Lead, manage, and guide a team of cybersecurity experts engaged in red team initiatives. This involves delegating tasks, setting objectives, offering support, and cultivating a cooperative and high-achieving team environment.
Strategic Planning and Implementation: Develop strategic goals and plans for red team activities that align with the organization's broader cybersecurity objectives and risk management strategies. This encompasses identifying targets, outlining attack scenarios, and determining testing methodologies.
Execution of Red Team Operations: Oversee the planning and execution of red team exercises, which simulate real-world cyberattacks to evaluate the effectiveness of the organization's security measures and response protocols.
Identification and Exploitation of Vulnerabilities: Conduct thorough assessments of cybersecurity vulnerabilities across various systems, networks, and applications. Use penetration testing techniques to identify and exploit security flaws, mirroring potential attacker strategies.
Enhancement of Incident Response: Collaborate with incident response teams to analyze red team findings and enhance incident response procedures. Offer recommendations to bolster detection, containment, eradication, and recovery capabilities in the event of a security breach.
Risk Management and Remediation: Identify critical security risks and vulnerabilities uncovered during red team exercises. Collaborate with relevant stakeholders to prioritize and address these issues, developing and implementing strategies to fortify the organization's security posture.
Reporting and Communication: Prepare comprehensive reports detailing red team findings, including identified vulnerabilities, successful attack paths, and suggestions for risk mitigation. Communicate findings clearly and succinctly to senior management, technical teams, and other stakeholders.
Research and Development Initiatives: Stay informed about the latest cybersecurity threats, attack methodologies, and defensive techniques through ongoing research and professional development. Experiment with new tools and approaches to enhance the effectiveness of red team activities.
Requirements:
Cybersecurity Proficiency: Demonstrated expertise in cybersecurity principles, methodologies, and practices, encompassing network security, application security, cryptography, and secure coding.
Penetration Testing Mastery: Proven capability in executing comprehensive penetration tests, employing both manual and automated approaches to identify vulnerabilities, exploit them, and offer effective remediation strategies.
Leadership Experience: Track record of successfully leading and coordinating cybersecurity teams, assigning tasks, providing mentorship, and fostering a collaborative work environment.
Communication Proficiency: Exceptional written and verbal communication skills, adept at conveying technical findings to diverse stakeholders, preparing detailed reports, and delivering presentations to senior management.
Strategic Insight: Ability to think strategically and proactively anticipate emerging cybersecurity threats, enabling the development of robust red team strategies and tactics.
Problem-Solving Aptitude: Proficiency in identifying complex security challenges and devising innovative solutions to address them effectively.
Technical Competence: Advanced knowledge of cybersecurity tools and technologies commonly used in penetration testing and red teaming.
Commitment to Continuous Learning: Dedication to staying abreast of evolving cybersecurity trends, techniques, and technologies, ensuring ongoing professional development and organizational readiness.
Education and Experience:
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
Minimum of 7 years of experience in cybersecurity, with a focus on offensive security or penetration testing.
Must have at least 2 years experience in managing a red team / offensive security team.
Certifications:
Preferred certifications include the ff:
Offensive Security Certified Professional (OSCP)
Offensive Security Certified Expert (OSCE)
GIAC Penetration Tester Certification (GPEN)
GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
Certified Red Team Professional (CRTP)
Certified Red Team Expert (CRTE)
Certified Red Team Operator (CRTO)
Any other similar offensive security certifications.
What We Offer
Opportunity for career growth and development in the #1 FinTech company in the country Working with a dynamic and highly collaborative team who want to change the game A company that values their people with highly competitive and flexible compensation and benefits package