Enable America Jobs

Introduction

At X-Force we help defenders continuously assess their real-world security. The X-Force Adversary Services team provides both traditional ad-hoc sophisticated red team exercises as well as continuous managed red teaming augmented by automation. As part of the X-Force Managed Red Team, you'll perform focused manual red team exercises for customers as well as oversee tasking and targeting automations via our attack platform to provide a continuous red team experience designed to mirror today's adversaries, not yesterday's threats. We partner with security teams to help them understand the art of the possible by delivering an unrivaled attack experience, at scale.

Your Role and Responsibilities

Have you ever been chomping at the bit to throw an amazing 0-day, but you have to wait for the tooling to be stable enough to make it work? Have you ever been rushing to rapidly leverage an n-day disclosure, because you're certain you're going to lose the only toehold you have, and you need another point of presence? Do you know what it feels like to be the worst hacker, worst hacker, worst hacker, worst hacker, BEST HACKER EVER, worst hacker, worst hacker, worst hacker? Yeah. Us too.

At IBM, we help defenders continuously assess their real-world security. Our managed red team offering provides an experience designed to mirror today's adversaries, not yesterday's threats. We partner with security teams to help them understand the art of the possible by delivering an unrivaled attack experience, at scale.

As a Managed Red Team Operator within the Targeted Operations group, you'll be part of the IBM X-Force Adversary Services team. Our managed red team program leveraging cutting-edge X-Force methodologies and sophisticated capabilities on top of an Attack Platform which leveraged automation and manual red teaming to help customers improve their security programs. You'll be responsible for inventing clever new ways of breaching customer networks and bypassing security controls, and then you'll work with our offensive engineers, researchers, and developers to drive those innovations throughout our toolset and across our customers. The work is frenetic but has a tremendous impact on our customers and the security market as a whole.

Simulating sophisticated threat actors takes industry leading offensive research, advanced capabilities, and mature methodology. We believe offensive research is essential to both simulating various sophistication levels of threat actors and enabling defenders to better understand, defend, and respond to attacks. IBM's X-Force Adversary Services team is considered the top team in the industry because we leverage Continuous Capability Development and Delivery (C2D2) to drive research, new tools, and develop mature Standard Operation Procedures (SOPs) and to ensure all operators are delivering red team exercises to the highest technical standards. We leverage automation and AI in targeting, tasking, and analysis to free up our human operators to solve the more interesting challenges for hacking the world's largest banks, defense contractors, and critical industries.

We are looking for individuals that are driven, proactive, thorough, and forward looking, and most of all, know what's needed to be part of an effective team.

Responsibilities of the Role:

• Grit. Grind. Motivation.

• Solving problems that do not have known solutions

• Discover, identify, and exploit vulnerable systems

• Plan and execute network operations against customer infrastructure

• Develop and prototype novel capabilities and techniques

• Research threats, vulnerabilities, and exploit techniques

• Debug exploits and related infrastructure

• Provide guidance and offense-related insights throughout IBM

Competencies required:

• Strong written and verbal communication skills in English

• Experience with offensive tooling and frameworks

• Experience modifying dotnet tooling to evade detection

• Experience with system-level debugging

• Ability to quickly configure test infrastructure

• Experience working with enterprise environments

• Experience with network or systems administration

Required Technical and Professional Expertise

• 5+ years of offense-related industry experience.

• Ability to develop/modify exploits and payloads to avoid defensive countermeasures.

• Understanding of real-world adversary operations methodologies, tactics, techniques, and procedures. In particular, the ability to apply frameworks (eg. MITRE ATT&CK™) in client engagements.

• Experience evading antivirus, egress filtering, and application allow listing.

• Experience with breaching external networks and cloud environments, targeting Entera.

• Experience with several programming languages (Python, C/C#/C++, Go).

• Ability to quickly configure test infrastructure.

• Experience working with C and various compiler toolchains.

Preferred Technical and Professional Expertise

• BA/BS in an Infosec related major or commensurate practical experience.

• History of presenting at security conferences.

• Track record in vulnerability research and CVE assignments.

• Knowledge of Windows APIs.

• Knowledge of EDR detection capabilities such as Carbon Black/CrowdStrike, etc. and associated evasion techniques for behavioral based alerting.

• Demonstrated exploit, payload, or attack framework development experience.

• Expert level knowledge of Linux internals, Active Directory, Mac, Windows workstations and servers, or Software Development..

• Relevant certifications from organizations like Offensive Security's OSCE, SANS' GXPN, or CREST's CSAT/CSAM or demonstrable equivalent skills.

• Prior security consulting experience

About Business UnitIBM Consulting is IBM's consulting and global professional services business, with market leading capabilities in business and technology transformation. With deep expertise in many industries, we offer strategy, experience, technology, and operations services to many of the most innovative and valuable companies in the world. Our people are focused on accelerating our clients' businesses through the power of collaboration. We believe in the power of technology responsibly used to help people, partners and the planet.

Your Life @ IBMIn a world where technology never stands still, we understand that, dedication to our clients success, innovation that matters, and trust and personal responsibility in all our relationships, lives in what we do as IBMers as we strive to be the catalyst that makes the world work better.

Being an IBMer means you'll be able to learn and develop yourself and your career, you'll be encouraged to be courageous and experiment everyday, all whilst having continuous trust and support in an environment where everyone can thrive whatever their personal or professional background.

Our IBMers are growth minded, always staying curious, open to feedback and learning new information and skills to constantly transform themselves and our company. They are trusted to provide on-going feedback to help other IBMers grow, as well as collaborate with colleagues keeping in mind a team focused approach to include different perspectives to drive exceptional outcomes for our customers. The courage our IBMers have to make critical decisions everyday is essential to IBM becoming the catalyst for progress, always embracing challenges with resources they have to hand, a can-do attitude and always striving for an outcome focused approach within everything that they do.

Are you ready to be an IBMer?

About IBMIBM's greatest invention is the IBMer. We believe that through the application of intelligence, reason and science, we can improve business, society and the human condition, bringing the power of an open hybrid cloud and AI strategy to life for our clients and partners around the world.Restlessly reinventing since 1911, we are not only one of the largest corporate organizations in the world, we're also one of the biggest technology and consulting employers, with many of the Fortune 50 companies relying on the IBM Cloud to run their business. At IBM, we pride ourselves on being an early adopter of artificial intelligence, quantum computing and blockchain. Now it's time for you to join us on our journey to being a responsible technology innovator and a force for good in the world.

Location StatementIBM offers a competitive and comprehensive benefits program. Eligible employees may have access to: - Healthcare benefits including medical & prescription drug coverage, dental, vision, and mental health & well being - Financial programs such as 401(k), the IBM Employee Stock Purchase Plan, financial counseling, life insurance, short & long- term disability coverage, and opportunities for performance based salary incentive programs - Generous paid time off including 12 holidays, minimum 56 hours sick time, 120 hours vacation, 12 weeks parental bonding leave in accordance with IBM Policy, and other Paid Care Leave programs. IBM also offers paid family leave benefits to eligible employees where required by applicable law - Training and educational resources on our personalized, AI-driven learning platform where IBMers can grow skills and obtain industry-recognized certifications to achieve their career goals - Diverse and inclusive employee resource groups, giving & volunteer opportunities, and discounts on retail products, services & experiences The compensation range and benefits for this position are based on a full-time schedule for a full calendar year. The salary will vary depending on your job-related skills, experience and location. Pay increment and frequency of pay will be in accordance with employment classification and applicable laws. For part time roles, your compensation and benefits will be adjusted to reflect your hours. Benefits may be pro-rated for those who start working during the calendar year. This position was posted on the date cited in the key job details section and is anticipated to remain posted for 21 days from this date or less if not needed to fill the role. We consider qualified applicants with criminal histories, consistent with applicable law.

Being You @ IBMIBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.