Pay is based on several factors which vary based on position. These include labor markets and in some instances may include education, work experience and certifications. In addition to your pay, Target cares about and invests in you as a team member, so that you can take care of yourself and your family. Target offers eligible team members and their dependents comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more, to help you and your family take care of your whole selves. Other benefits for eligible team members include 401(k), employee discount, short term disability, long term disability, paid sick leave, paid national holidays, and paid vacation. Find competitive benefits from financial and education to well-being and beyond at https://corporate.target.com/careers/benefits.
JOIN TARGET CYBERSECURITY AS A LEAD ENGINEER - RED TEAM
About Us
Target is an iconic brand, a Fortune 50 company, and one of America’s leading retailers.
Target as a tech company? Absolutely. We’re the behind-the-scenes powerhouse that fuels Target’s passion and commitment to cutting-edge innovation. We anchor every facet of one of the world’s best-loved retailers with a strong technology framework that relies on the latest tools and technologies—and the brightest people—to deliver incredible value to guests online and in stores. Target Technology Services is on a mission to offer the systems, tools and support that guests and team members need and deserve. We drive industry-leading technologies in support of every angle of the business, and help ensure that Target operates smoothly, securely and reliably from the inside out. Our high-performing teams balance independence with collaboration, and we pride ourselves on being versatile, agile and creative. Use your skills, experience, and talents as a member of a world-class cyber security team!
About Red Team
Target's Red Team uses adversary simulation to uncover risk in our environment, provide training opportunities to defenders, and measure the processes and technology defending the organization. We leverage a high level of collaboration between teams as we drive organizational improvement. Our objective-driven operations are supplemented with direct training and development, Purple Team work, and consulting within the company on security risk. As a Red Team Lead Engineer, you will conduct and lead operations, contribute to the team, influence team direction, and collaborate with partner teams.
Red Team members regularly:
Consult on, design, and execute adversary emulation operations
Conduct research into real-world threat actor tactics, techniques, and procedures to develop proof-of-concept tools and playbooks
Bypass preventative and detective security controls to accomplish operational goals
Partner with the Cyber Security Incident Response Team and other stakeholders in the organization to identify improvement opportunities
Collaborate with Cyber Threat Intelligence, Detection, and Threat Hunting engineers and analysts on research
Work with non-security engineering teams to educate, and collaborate on operational objectives
Expect To:
Develop strategic adversary emulation objectives and operational plans
Execute adversary emulation operations to surface risk in the organization
Work with partner teams to plan cooperative engagements
Lead and train operators
Communicate effectively with and directly support defenders
Present findings and operational work to groups in a clear and professional manner
Study the techniques of Threat Actors, and apply that lens to operational work
Partner with other Team Members to improve tools and procedures
Manage work effectively in the team’s project management tools (Github/JIRA)
Respond to the quick-changing needs and priorities of the team
Read and write code to accomplish red team goals
Deeply understand red team infrastructure
About You
Four years minimum experience in offensive security and/or defensive security
Demonstrates strong offensive security knowledge
Demonstrates strong understanding of the impact of Red Team work on an organization and its customers
Prioritizes process improvement
Seeks out cross-functional collaboration opportunities
Clearly and respectfully communicates technical issues in a training or mentorship setting
Resolves complex technical issues with minimal assistance
Builds strong commitment within a team to support the appropriate priorities
Stays current on relevant technologies with self-directed learning
Desirable Skills:
Deep Red Team adversary emulation experience
Experience working on or with Blue Teams, including Incident Response, or Detection
Experience working in large, complex organizations
Python, C#, Rust, Go, or C skills
Solving difficult problems, and creatively subverting systems
Ability to replicate the tools and techniques of in-the-wild threat actors
Follows Threat Actor trends impacting organizational security
This position may be considered for a Remote or Hybrid (known internally at Target as "Flex for Your Day") work arrangement based on Target's needs. A Remote work arrangement means the team member works full-time from home or an alternate location that's not a Target location, does not have a desk at a Target location and may travel to HQ up to 4 times a year. A Hybrid/Flex for Your Day work arrangement means the team member's core role may be performed either remote or onsite at a Target location depending upon what your role, team and tasks require for that day. Work duties cannot be performed outside of the country of the primary work location, unless otherwise prescribed by Target.Americans with Disabilities Act (ADA)
In compliance with state and federal laws, Target will make reasonable accommodations for applicants with disabilities. If a reasonable accommodation is needed to participate in the job application or interview process, please reach out to candidate.accommodations@HRHelp.Target.com.