Job DescriptionWho we are looking forThe Purple Team Engineer will perform as a member of the Offensive Security team within the Global Cyber Security group. The Purple Team Engineer will participate in comprehensive assessments of the operational and technical prevention and detection capabilities and will assist in the review, development, testing, and implementation of security initiatives across a large, diverse, and complex financial environment. What you will be responsible forIndividuals who work on a purple team work together using offensive and defensive methods to identify weaknesses and recommended necessary measures to improve security prevention and detection.Use simulation tools to script and execute attack path campaignsSupport the creation of detection rules and alerts to reduce riskPrepare final security assessment reports containing the results and findings from the assessment.Conduct follow up and assist with resolution of all findings, as needed.What we valuePerform Infrastructure and Application Penetration TestingDeep knowledge of attack frameworks, such as MITRE ATT&CKExecute Vulnerability ScanningCloud Security ConceptsIT and Network infrastructure technologies Familiarity various penetration test utilities and tool suitesAbility to perform light programming tasks using common languages such a python and bash Demonstrated ability to identify core issues and work with leaders and team members to resolutionStrong organizational, task switching, and prioritizing skillsAbility to work independently and solve challenging problems while collaboration with stakeholdersKnowledge and interest in current vulnerability related trendsAttention to detailDriving to resultsCollaboration and influencingWorking professionally with confidential informationPresentation skills, both orally and writtenAbility to work well with others and under pressureDemonstrated professionalism in approach to communicating ideas and solutions in simple languageExperience DesiredEducation: Bachelor's3+ years of network and/or application penetration testing, CTI, Threat Hunting, and/or Incident Response.5+ years of experience in security/systems/network engineering and/or development2-3 years of SIEM content creationCEH, OSCP, CISSP, or equivalent preferred. State Street's Speak Up Line