SunTrust Banks Cyber Counterintelligence – Red Team Manager in Atlanta, Georgia

Req ID: W452305

Job Description

The successful candidate must possess a deep understanding of both cyber security and computer science. An in-depth understanding of advanced concepts such as application manipulation, exploit development, and social engineering and information operations.

This role will manage the team responsible for identifying weaknesses in our people, processes and technology that can be exploited by cyber threats to conduct network intrusions and other cyber attacks.

The successful candidate must possess a deep understanding of both cyber security and computer science. An in-depth understanding of advanced concepts such as application manipulation, exploit development, and social engineering and information operations. Example operations could be:

  • Gaining access to a secure enclave in order to access sensitive information.
  • Social engineering branch or call center staff in order to gain access to sensitive data.
  • Conducting covert attacker TTPs throughout the internal network in order to test detection & response capabilities.
  • Installing ATM skimmers and going undetected
  • Determining if the bank’s wire transfer system can be penetrated and unauthorized wire transfers initiated

This role will require out of the box thinking, creativity and a strong desire to succeed. The problem sets will be complex and unique. The successful candidate will be a talent magnet, strategic thinker and strong leader. This role will work closely with leaders across cyber operations. Responsibilities: Plan and oversee the execution of network penetration, data exfiltration proof of concepts, social-engineering operations. Operations may include physical penetrations in order to access the objective. Develop detailed reports and presentations read outs, for both technical and executive audiences, that effectively articulate strategies used, findings and recommended remediation to both tech staff, executive leadership and general counsel. Planning and coordinating precision operations with clear objectives and targets. Developing customer capabilities (scripts, exploits, etc.) designed for specific targets / operations.

Qualifications Minimum Requirements: Bachelor’s degree in Information Security, Information Technology, Computer Science, with three or more years’ work experience in a cyber security-related role; OR at least five years of work experience in a cyber-security specific role with a demonstrable understanding of the cyber threat landscape as well as best practice prevention and detection techniques. In-depth, practical knowledge of information systems and ability to identify, apply, implement and drive cyber security best practices in an enterprise environment. Extensive, hands-on experience related to cyber security incident management; network, host and application security; intrusion analysis; malware analysis; vulnerability management & penetration testing; digital forensics or eDiscovery; as appropriate to assigned team. Advanced knowledge of cyber security tools such as: SIEM, IDS/IPS, Antivirus, anti-spam filtering, operating system security (Windows & Linux), network security technologies, penetration testing toolsets, or digital forensics and live memory forensics platforms, as appropriate to assigned team. Effective verbal and written communication skills for the purpose of presenting complex technical information, driving the implementation of best practice recommendations, and influencing business decisions. Demonstrated teamwork and collaboration skills. Strong time management skills and ability to manage priorities effectively. Demonstrated ability to provide direction and mentorship to teammates, peers and leaders. Ability to travel domestically as needed will be required.

Equal Opportunity Employer: SunTrust supports a diverse workforce and is a Drug Testing and Equal Opportunity Employer. SunTrust does not discriminate against individuals on the basis of race, creed, color, gender, religion, national origin, age, disability, veteran status, pregnancy, marital status, citizenship status, sexual orientation, gender identity, genetic information, or any other classification protected by applicable laws.

To review the EEO Poster, copy and paste the following link into your browser: http://www1.eeoc.gov/employers/upload/eeocselfprintposter.pdf http://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCPEEOSupplementFinalJRFQA_508c.pdf

© 2017 SunTrust Banks, Inc. All rights reserved.

SunTrust is federally registered service marks of SunTrust Banks, Inc.