Mandiant’s Red team members are responsible for simulating a wide variety of cyberattacks to help identify and fix weaknesses of an organization’s cybersecurity program.
As an Associate Consultant, you will protect organizations from harm and address complex problems within a fast paced, rapidly evolving environment.
In this role, you will be responsible for providing cybersecurity consulting services and support to our clients, including assessing and advising clients on both technical and process-based controls for all manner of environments.
Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. By scaling decades of frontline experience, Mandiant helps organizations to be confident in their readiness to defend against and respond to cyber threats. Mandiant is now part of Google Cloud.
Perform Red and Purple team assessments, assumed breach assessments (i.e. Red team engagements with a pre-deployed implant).
Conduct external/internal/wireless network assessments, web and mobile application testing, and embedded system assessments.
Develop comprehensive and accurate reports and presentations for technical and executive audiences.
Recognize and safely utilize attacker tools, tactics, and procedures.
Communicate findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel.
Note: Google’s hybrid workplace includes remote roles.
Remote location: Ontario, CA.
Bachelor's degree in Cybersecurity with a focus on offensive security or equivalent practical experience.
1 year of experience in two of the following security areas: penetration testing, red teaming, web application/mobile, cloud, social engineering, scripting, tool development, vulnerability assessment, security operations
Ability to travel up to 20% of the time as required.
Certification in offensive security including OSCE, OSEP, OSEE, OSCP, CCSAS, CCT INF, or relevant SANS courses.
Experience with four or more of the following: network protocols, threat intelligence analysis, systems and network administration, project management, active directory architecture, application development, incident response, source code review, or reverse development.
Experience with tools used in penetration testing, security event analysis, incident response, computer forensics, network and endpoint architecture, or other areas of security operations.
Experience with cybersecurity technologies and implementation.
Excellent communication, collaboration, report writing, and public speaking skills.