Join Macquarie’s Cyber Threat Incident Response (CTIR) team based in our Sydney office as an Adversary Simulation Lead.
In this role, you will be working alongside a diverse team in multiple offices around the globe and will be responsible for performing adversary simulation activities to ensure our ability to detect, identify, and mitigate risks in our global cyber environment. You will also act to ensure that Macquarie’s digital estate is protected from threats both known and unknown.
Your first-class technical skills are required to continuously identify, assess, and manage threats relative to the corporate risk appetite by leveraging technology and your experience to simulate threat actor activity and ensure protection. Experience in understanding and emulating advanced threat actor methods will be crucial to your success in this role.
Using your attention to detail and data driven approach you will act as an expert for the CTIR function to provide leadership, focus, and accountability for CTIR based offensive activities.
Your understanding of cyber threat as a function of human motivation, combined with your experience in actively detecting and defending against threats utilizing a combination of standard cyber tools and your own system/platform/network knowledge, will be highly beneficial in this role alongside your similarly skilled and experienced peers.
To be successful in this role you must have a minimum of 5 years of related security or operational experience in large enterprise environments, as well as operational experience in leading offensive security teams. Experience and a strong understanding of security technology and defense topologies are imperative to be successful in this role.
Key Responsibilities.
- Develop and lead a team to replicate adversary attack methodologies
- Conduct adversary simulation to identify and validate detection and prevention controls
- Collaborate with the defensive teams to ensure detective and investigative capabilities remain up to date
- Coordinate and execute offensive exercises with contracted third parties
- Understand campaigns for potential systemic threats to our global business
- Proactively seek out suspicious activity and threats within the environment, act appropriately to contain and mitigate them
- Analyze latest malware discoveries/shifts to understand how/if it would be effective in the environment
- Analyze attacks and trends facing the organization and industry to better define proactive defensive measures
- Discover internal security concerns and raise findings with the appropriate internal teams
Ideally you will bring
- Team leadership
- Offensive Security/Adversarial mindset
- Understanding of advanced adversary tactics, techniques, and protocols
- Ability to safely weaponize advanced tactics to support testing exercises
- Email gateway security controls
- Analytical mindset
- Familiarity with various network and cloud architectures
- Identity and Access Management (IAM)
- User and Entity Behavior Analytics (UBA/UEBA)
- Familiarity with the MITRE Att&ck framework
To join our passionate technology team, apply online via the link.
Find out more about Macquarie careers at http://www.macquarie.com/careers
About the Corporate Operations Group
The Corporate Operations Group brings together specialist support services in Digital Transformation & Data, Technology, Market Operations, Human Resources, Business Services, Business Improvement & Strategy, and the Macquarie Group Foundation. The Corporate Operations Group’s purpose is to power the entrepreneurial enterprise.
Our commitment to Diversity and Inclusion
The diversity of our people is one of our greatest strengths, and in combination with our inclusive environment, it enables us to deliver innovative and sustainable outcomes for our people, clients, shareholders and communities. From day one, you'll be encouraged to be yourself and supported to perform at your best. If our purpose of ‘empowering people to innovate and invest for a better future’ is as inspiring to you as it is to us, please apply. With the right technology, support and resources, our people can work in a range of flexible ways.
We are committed to providing a working environment that embraces and values diversity and inclusion. We encourage candidates to speak with a member of our recruitment team if you require adjustments to our recruitment process to support you, and the type of working arrangements that would help you thrive.
