Red Teaming

Job Description – Red Teaming/Security Assurance Analyst
Team: Cyber Resilience & Defence
Designation: Red Teaming/Security Assurance Analyst

Job Role: Specializing in Red Teaming Assessment MITRE Framework Cyber Threat Intelligence Threat Hunting and DFIR (Digital Forensics and Incident Response) you will play a pivotal role in enhancing our clients' cyber defenses against cyber threats.

Experience: Minimum 3 years of handson relevant experience crucial in identifying vulnerabilities assessing security postures and orchestrating simulated attacks to evaluate and fortify our clients' resilience against cyber threats.

JobLocation: vCyberiz Sdn Bhd Selangor Malaysia

Shifts: The resource may need to work Flexible Hours to provide extended support & be available on call when required.

Essential Technical skills:
Solid experience in Red Teaming assessments utilizing both offensive and defensive cyber techniques.
Proficiency with the MITRE ATT&CK framework and its application in cyber defense strategies.
Strong understanding of Cyber Threat Intelligence sources methods and analysis.
Proven capability in threathunting methodologies and tools.
Handson experience in Digital Forensics and Incident Response (DFIR) investigations.

Design and Development of Techniques and Tactics:

1. Physical Social Engineering Attacks: Conducting covert operations that involve manipulating individuals to gain physical access to secure areas or sensitive information including tactics such as tailgating pretexting and impersonation.

2. Rapid Payload Prototyping: Developing and deploying customized malware and exploits quickly to simulate realworld attack scenarios enabling the testing and improvement of an organization’s defensive measures.

3. Effective Scenario Development Based on Use Cases: Crafting realistic and relevant attack scenarios that are tailored to an organization’s specific environment and threat landscape ensuring that the Red Teaming exercises are impactful and aligned with realworld threats.

Excellent analytical and problemsolving skills with the ability to think strategically and act tactically in highpressure situations.
Effective communication skills with the ability to convey complex technical information to nontechnical stakeholders.
Relevant certifications (e.g. OSCP CISSP GIAC) are advantageous.

NonTechnical Skills –

Clear and concise communication of technical information to nontechnical stakeholders fostering understanding and informed decisionmaking.
Analytical ability to identify root causes of cyber issues assess risks and propose practical solutions in dynamic environments.
Proven capability to work effectively in crossfunctional teams leveraging diverse perspectives to achieve cybersecurity objectives.
Efficient prioritization and task management to meet deadlines in highpressure situations ensuring timely response to cyber incidents.
Readiness to adapt to evolving cybersecurity threats and technologies with a commitment to continuous learning and professional development.