Cyber Defense

Your role

Are you passionate about the offensive side of cyber security and research? Are you someone who likes to bridge the gap between the technical aspects of emulating attacker TTPs and how this will strengthen the security posture of your business? Are you self-driven, motivated and have experience working on a global security team?

We are looking for a Cyber Defense Operational Security Testing Red Team Operator / Security Tester to:

• join a growing in-house red teaming and offensive security capability
• execute all phases of offensive security operations participating in both red and purple team testing
• develop scripts, tooling, and methodologies to support offensive security capabilities.\\
• assist in providing risk appropriate and pragmatic recommendations to correct identified findings, vulnerabilities, and misconfigurations
• understand and adhere to regulatory, compliance, and legal requirements that impact business operations
• document and capture detail at the right level of abstraction while creating process/dataflow/architecture diagrams, or documenting instructions

Your team

You will be working in the Cyber Defense Organization within Technology Services, Technology Information Security Office (TS TISO). The TS TISO Vision is to protect, preserve, and prolong the value of the UBS data and digital services, and enhance UBS's brand and competitiveness in a digitized world. The Cyber Defense organization within TISO leads the management of all You will be working in the Cyber Defense Organization within Technology Services, Technology Information Security Office (TS TISO). The TS TISO Vision is to protect, preserve, and prolong the value of the UBS data and digital services, and enhance UBS's brand and competitiveness in a digitized world. The Cyber Defense organization within TISO leads the management of all cyber threats and cyber risk across our Firm. To "protect the foundations and secure the future," Cyber Defense serves two mission areas: cyber threat management and defense (understanding, detecting, and responding to threats), and cyber risk management and governance (setting priorities and preventing threats).

Operational Security Testing is a global team with a presence in Switzerland, Poland, and the USA. The team works across TS TISO and other security control areas to conduct red teaming, purple teaming, and other forms of offensive security testing to identify and help remediate gaps across all aspects of the Cyber Security protect, detect and response capabilities of our Firm. Your role will be based in Raleigh, NC.

Your expertise

• ideally, 3 years or more of experience in an offensive security role, such as penetration testing, and a desire to move into the world of red and purple teaming
• experience and proficiency in the day-to-day operations of a Red Team with knowledge of offensive security tools, such as Metasploit, Nessus, Burp, Kali Linux / CommandoVM or C2 frameworks (e.g. Cobalt Strike, Brute Ratel, Sliver, Nighthawk)
• experience in setting up infrastructure for Red Teaming operations and techniques utilized in reconnaissance, exploitation, persistence, lateral movement, command & control, etc.
• experience in automation using Python, Bash, or other scripting language ideally coupled with the ability to experiment and tweak newly developed open-source tools written in scripting language
• knowledge and understanding of MITRE ATT&CK framework and TTPs of cyber-attacks at a conceptual level as well as knowledge and understanding of OPSEC concepts in attack emulation
• experience in a blue team role investigating cyber security incidents in a modern enterprise security environment (including SIEM, EDR, etc) or experience in system administration or engineering experience with Linux and Windows operating systems are pluses,
• experience with OSINT, phishing / social engineering, vulnerability research, reverse engineering , exploit development and experience with cloud (Azure, AWS) technologies and experience programming in C, C++, C#, Rust, Nim or in Assembly are pluses
• Offensive Security certifications (such as OSCP or OSEP), SANS certifications (such as GXPN, GPEN, GWAPT, GREM), or other training in red teaming operations are a plus

"At UBS, we appreciate our Veterans and are committed to providing opportunities in Financial Services."

*LI-UBS
*UBS-MOGUL

About us

UBS is a leading and truly global wealth manager and the leading universal bank in Switzerland. We also provide diversified asset management solutions and focused investment banking capabilities. Headquartered in Zurich, Switzerland, UBS is present in more than 50 markets around the globe.
We know that great work is never done alone. That's why we place collaboration at the heart of everything we do. Because together, we're more than ourselves. Want to find out more? Visit ubs.com/careers.

Join us

At UBS, we know that it's our people, with their diverse skills, experiences and backgrounds, who drive our ongoing success. We're dedicated to our craft and passionate about putting our people first, with new challenges, a supportive team, opportunities to grow and flexible working options when possible. Our inclusive culture brings out the best in our employees, wherever they are on their career journey. We also recognize that great work is never done alone. That's why collaboration is at the heart of everything we do. Because together, we're more than ourselves.

We're committed to disability inclusion and if you need reasonable accommodation/adjustments throughout our recruitment process, you can always contact us.

---