Consultant, Red Team, Mandiant Consulting

About the Role: Consultant, Red Team, Mandiant Consulting at Google

As a Consultant, Red Team, Mandiant Consulting, you will be a vital part of Google Cloud's Mandiant team, a recognized leader in dynamic cyber defense, threat intelligence, and incident response. This role involves providing expert cybersecurity consulting services and support to clients, offering comprehensive advice on both technical and process-based controls across diverse environments.

You will specialize in performing Red and Purple team assessments, which includes advanced adversarial emulation of cyber attacks against customer organizations. Your responsibilities extend to other technical cyber assessments, such as external engagement, web application, mobile, and wireless security testing.

Beyond client engagements, you will contribute to expanding the team’s capabilities by creating new security tools, conducting research on offensive techniques, integrating cutting-edge threat actor intelligence, and sharing knowledge through internal presentations. You will be instrumental in developing precise and thorough reports and presentations for both technical and executive stakeholders, acting as a trusted advisor to C-level executives and security leaders.

Additionally, you will assist with scoping prospective engagements, lead teams from kickoff through the remediation phase, and actively mentor other staff members, fostering growth and expertise within the team.

Responsibilities

• Perform offensive technical cyber security engagements of a varied nature, including Red and Purple team assessments.
• Interface directly with clients to address concerns, resolve issues, or manage escalations, ensuring engagement value.
• Provide expert advice to clients on security best practices for remediating discovered vulnerabilities and enhancing their security posture.
• Collaborate effectively with internal teams to continuously expand and improve the capabilities of Mandiant's service offerings.

Minimum Qualifications

• Bachelor's degree in Computer Science, Information Systems, Cybersecurity or a related technical field, or equivalent practical experience.
• 3 years of experience in assessing and developing cybersecurity solutions across multiple security domains.
• Demonstrated experience in four or more of the following areas: network protocols, threat intelligence analysis, system and network administration, project management, developing applications, technical incident response processes, source code review, or reverse engineering.
• Proven experience in offensive security.
• Experience with operating system security, particularly across Linux or other operating systems.

Preferred Qualifications

• Certifications related to offensive security, such as OSCE, OSEP, OSEE, OSCP, CISSP, CISA, or relevant SANS courses.
• Experience collaborating with local sales and management teams to drive consulting business generation, scoping, or client management.
• Proficiency in creating security tools and a strong understanding of underlying programming languages like Python, C#, C/C++, Rust, Nim, or similar.
• Exceptional ability to communicate complex technical details through clear reporting and presentations to both technical and executive audiences.
• Excellent communication, collaboration, and public speaking skills.

Key skills/competency

• Cybersecurity Consulting
• Red Teaming
• Purple Teaming
• Adversarial Emulation
• Threat Intelligence
• Offensive Security
• Network Protocols
• Linux Security
• Python Programming
• Incident Response