Lead Engineer - Red Team (Full-Time Remote or Hybrid)

Brooklyn Park, Minnesota
Jan 07, 2022
Feb 02, 2022
Employment Status
Full Time

(Full-Time Remote or Hybrid)

About Us

Target is an iconic brand, a Fortune 50 company, and one of America's leading retailers.

Target as a tech company? Absolutely. We're the behind-the-scenes powerhouse that fuels Target's passion and commitment to cutting-edge innovation. We anchor every facet of one of the world's best-loved retailers with a strong technology framework that relies on the latest tools and technologies-and the brightest people-to deliver incredible value to guests online and in stores. Target Technology Services is on a mission to offer the systems, tools and support that guests and team members need and deserve. We drive industry-leading technologies in support of every angle of the business, and help ensure that Target operates smoothly, securely and reliably from the inside out. Our high-performing teams balance independence with collaboration, and we pride ourselves on being versatile, agile and creative. Use your skills, experience, and talents as a member of a world-class cyber security team!

Target brings our Vision and Purpose to Life through:

  • Value diverse voices and approaches
  • Be authentic and respectful
  • Create equitable experiences

  • Build trusted relationships
  • Collaborate across business functions
  • Recognize and celebrate progress

  • Do what is right for Target, our team & guests
  • Deliver results that matter
  • Progress over perfection & continually learn

About Red Team

Target's Red Team uses adversary emulation to train defenders, and validate the processes and technology defending the organization as part of Cyber Security. We have a high level of transparency between teams. Organizational improvement is our foremost goal. Our frequent and short operations are supplemented with direct training, purple team work, and consulting within the company on security risk. We rely heavily on infrastructure and automation. Get a better sense of how our team functions! Watch "One Hundred Red Team Operations a Year" on YouTube.

Red Team members regularly:
  • Consult on, design, and execute adversary emulation operations
  • Conduct research into real-world threat actor tactics, techniques, and procedures to develop proof-of-concept tools and playbooks
  • Bypass preventative and detective security controls to accomplish operational goals
  • Partner with the Cyber Security Incident Response Team and other stakeholders in the organization to identify improvement opportunities
  • Collaborate with Cyber Threat Intelligence, Detection, and Threat Hunting engineers and analysts on research
  • Work with non-security engineering teams to educate, and collaborate on operational objectives

Expect To:
  • Develop strategic adversary emulation objectives and operational plans
  • Execute adversary emulation operations to surface risk in the organization
  • Work with partner teams to plan cooperative engagements
  • Lead and train operators
  • Communicate effectively with and directly support Blue Team members
  • Present findings and operational work to groups in a clear and professional manner
  • Study the techniques of Threat Actors, and apply that lens to operational work
  • Partner with other Team Members to improve tools and procedures
  • Manage work effectively in the team's project management tools (Github/JIRA)
  • Respond to the quick-changing needs and priorities of the team

About You
  • Has three years minimum experience in offensive security and/or defensive security
  • Demonstrates strong offensive security knowledge
  • Demonstrates strong understanding of the impact of Red Team work on an organization and its customers
  • Prioritizes process improvement
  • Seeks out cross-team collaboration opportunities
  • Clearly and respectfully communicates technical issues in a training or mentorship setting
  • Resolves complex technical issues with minimal assistance
  • Builds strong commitment within a team to support the appropriate priorities
  • Stays current on relevant technologies with self-directed learning

Desirable Skills:
  • Deep Red Team adversary emulation experience
  • Experience working on or with Blue Teams, including Incident Response, or Detection
  • Experience working in large, complex organizations
  • Python, C#, Powershell, Go, or C skills
  • Solving difficult problems, and creatively subverting systems
  • Ability to replicate the tools and techniques of in-the-wild threat actors
  • Follows Threat Actor trends impacting organizational security

This position may be considered for a Full-Time Remote or Hybrid work arrangement based on Target's needs. A Hybrid work arrangement means the team members core role will be a blend of virtual and onsite at a Target location. A Full-Time Remote work arrangement means the team member works full-time from home or an alternate location that's not a Target location, does not have a desk at their primary HQ work location and may travel to HQ up to 4 times a year.

Colorado, Connecticut or Nevada Residents Only: The salary range for Colorado, Connecticut or Nevada residents is $97,600 to $175,700 annually. Pay is based on several factors including but not limited to education, work experience, certifications, etc. In addition to your salary, Target cares about and invests in you as a team member, so that you can take care of yourself and your family. Find competitive benefits from financial and education to well-being and beyond.

Americans with Disabilities Act (ADA)

Target will provide reasonable accommodations (such as a qualified sign language interpreter or other personal assistance) with the application process upon your request as required to comply with applicable laws. If you have a disability and require assistance in this application process, please visit your nearest Target store or Distribution Center or reach out to Guest Services at 1-800-440-0680 for additional information.


Similar jobs

Similar jobs