Cyber Security Offensive Specialist

1. Context / Introduction

The Cybersecurity Offensive Specialist service:

• Aims to proactively identify and address security vulnerabilities, misconfigurations., and areas with potential for improvement with regards to security by design, thereby enhancing the overall cybersecurity posture and resilience against cyber threats. Additionally, may involve coordination with other members of the defensive team (e.g. Cybersecurity Incident Responders) for sharing information and insights to address security weaknesses and improve the organization’s overall security posture.  
• Conducts manual and automated testing to identify vulnerabilities and security weaknesses in the Contracting Authority’s infrastructure, applications, and systems within a defined scope. This includes assessing the effectiveness of security controls and vulnerability management programs in place, analysing the results of assessments, writing reports, and communicating with stakeholders.  

Competences from e-CF framework

B.2. Component Integration 

B.3. Testing 

B.4. Solution Deployment 

B.5. Documentation Production 

E.3. Risk Management

1. Description of the tasks

The external service provider will perform the following tasks:

• General activities:
  • Identifies and addresses proactively security vulnerabilities, misconfigurations and areas with potential for improvement with regards to security by design, thereby enhancing the overall cybersecurity posture and resilience against cyber threats.
• Activities:
• Performs vulnerability scans and assessments to determine potential weaknesses, analyses the results of assessments, writes reports and communicates with customers.
• Conducts manual and automated testing to identify vulnerabilities and security weaknesses in an organization\'s infrastructure, applications, and systems within a defined scope.
• Assesses the effectiveness of security controls and vulnerability management programs in place, analyses the results of assessments, writes reports and communicates with customers.
• Is involved in purple teaming efforts to help drive improvements in security posture or detections.
• Specific expertise requirements:
• vulnerability management tools (e.g. Nessus Tenable, etc.)
• penetration testing tools (e.g. Burp Suite, etc.)

1. Level of education

As stated in section 5.1 of FREIA Specifications for the technical profiles for operational services (Lot1), the minimum educational qualification is a Level of education corresponding to Level 5 of the European Qualification Framework, which typically corresponds to 2 years of post-secondary education or higher, for the Junior and Confirmed seniority levels, and a Level of education corresponding to Level 6 of the European Qualification Framework, which typically corresponds to a Bachelor degree or higher, for the Senior seniority levels.

1. Specific knowledge, skills and expertise

The following specific knowledge, skills and expertise are required for the performance of the above listed tasks:

• Develop and implement comprehensive vulnerability management strategies and advanced penetration testing strategies.
• Conduct in-depth analysis of zero-day vulnerabilities and emerging threats.
• Provide expert guidance on vulnerability mitigation and remediation strategies, detection strategies and risk management.
• Serve as a subject matter expert in vulnerability management and penetration testing.
• Capability to conduct in-depth security assessments, including code reviews.
• Knowledge of advanced threat actor tactics, techniques, and procedures (TTPs).
• Plan and execute complex penetration tests in on-premises and cloud infrastructure.
• Lead discussions with customers or internal teams to understand business context.
• Identify and exploit zero-day vulnerabilities and advanced attack vectors.
• Proficiency in developing custom scripts and tools for vulnerability analysis and penetration testing.
• Provide detection teams sufficient context for collaborative purple team improvement efforts.
• Contribute to the development of vulnerability management and penetration testing policies and procedures.
• Engage in advanced research and development related to vulnerability management and penetration testing.
• Expertise in vulnerability management, penetration testing and ethical hacking.
• Exceptional risk assessment and management skills.
• Strong communication and presentation abilities to clearly present findings in written and oral form, to both technical and non-technical audiences.
• Leadership and mentorship capabilities.
• Thought leadership in penetration testing and cybersecurity.
• Advanced knowledge of compliance standards and regulations.
• In-depth understanding of cloud security and emerging technologies.
• Proficient knowledge of cloud computing concepts and platforms (e.g., AWS, Azure, etc.)

Due to the particular nature of a large international organisation such as the SRB, and due to the nature of activities in the cybersecurity domain, candidates should also have the following non-technical skills:

• Ability to integrate in an international/multicultural environment, rapid self-starting capability and experience in working in team;
• Ability to participate in multilingual meetings;
• Ability to work in multi-cultural environment, on multiple large projects;
• Ability to establish trusting relationships with counterparts in partnering organisations;
• Excellent team player
• Ability to understand, speak and write in English C1/C2 will be an advantage;
• High degree of discretion and integrity.