index.html.md 12.1 KB
Newer Older
Jan Urbanc's avatar
Jan Urbanc committed
1 2
---
layout: job_family_page
3 4
title: "Red Team Roles"
description: "As members of GitLab's Security Operations sub department, the Red Team emulates real world adversary activities in order to better our enterprise and product security."
5 6
extra_js:
- libs/mermaid.min.js
Jan Urbanc's avatar
Jan Urbanc committed
7 8
---

Kristie Thomas's avatar
Kristie Thomas committed
9
As members of GitLab's [Security Operations sub department](/handbook/engineering/security/operations/), the [Red Team](/handbook/engineering/security/operations/red-team/) emulates real world adversary activities in order to better our enterprise and product security. This team requires thinking like an attacker while understanding the various levels of defensive technologies and their effectiveness. Creativity is key. Our Red Team develops in depth attack plans that focus on compromising GitLab, test existing defenses or assist in building new defenses based on real world attack data. The Red Team does not do penetration testing or vulnerability assessments, we conduct real world attack operations against live targets. To sum it up -- you need to be someone that is a true hacker at heart while understanding the various defensive techniques that make your job harder.
Jan Urbanc's avatar
Jan Urbanc committed
10 11 12 13 14 15 16 17 18 19 20 21 22 23

## Responsibilities
* Understanding of GitLab’s products and how they work
* Utilize Threat Modeling methodologies to identify threats and shape Red Team operations
* Understanding of Mitre’s ATT&CK Framework
* Focus on designing, researching, and executing real world attacks on GitLab infrastructure and products
* Incorporate current security trends, advisories, publications, and academic research
* Report on the Red Team engagements providing an in-depth analysis of the security issues identified
* Collaborate with defensive and infrastructure teams to improve defenses
* Identify complex security vulnerabilities and build exploits
* Publish blog posts and present talks at security conferences
* Contribute to GitLab products by testing and proposing new features

## Requirements
24
* Ability to use GitLab
Jan Urbanc's avatar
Jan Urbanc committed
25 26 27 28 29 30 31
* Experience with designing and implement processes and tools to identify gaps in GitLab's security posture
* Technical knowledge of systems in a multi-tenant, cloud environment
* Proficiency to communicate over a text-based medium (Slack, GitLab Issues, Email) and can succinctly document technical details.

## Levels

### Red Team Engineer (Intermediate)
32
This position reports to the [Manager, Red Team](#manager-red-team).
Jan Urbanc's avatar
Jan Urbanc committed
33

34
#### Red Team Engineer (Intermediate) Job Grade
Jan Urbanc's avatar
Jan Urbanc committed
35 36
The Red Team Engineer is a [grade 6](/handbook/total-rewards/compensation/compensation-calculator/#gitlab-job-grades).

37
#### Red Team Engineer (Intermediate) Responsibilities
Jan Urbanc's avatar
Jan Urbanc committed
38 39 40 41 42
* Participate in threat modeling sessions on various aspects of our infrastructure and products
* Participate in performing Red Team Operations
* Contribute to Red Team open source projects and internal tooling efforts
* Publish Red Team Tech Notes outlining attack techniques and other technical concepts

43
#### Red Team Engineer (Intermediate) Requirements
Jan Urbanc's avatar
Jan Urbanc committed
44 45 46 47 48 49 50 51
* Bachelor’s degree in Computer Science, Computer Engineering, Electrical Engineering or equivalent and 3+ years of professional experience in cyber security or related field
* Proven technical task management experience
* Experience working remotely on a widely distributed team
* Can convey technical information in writing at an intermediate level
* Intermediate knowledge of exploit techniques, and common TTPs 
* Intermediate knowledge of one or more programming or scripting languages

### Senior Red Team Engineer
52
This position reports to the [Manager, Red Team](#manager-red-team).
Jan Urbanc's avatar
Jan Urbanc committed
53

54
#### Senior Red Team Engineer Job Grade
Jan Urbanc's avatar
Jan Urbanc committed
55 56
The Senior Red Team Engineer is a [grade 7](/handbook/total-rewards/compensation/compensation-calculator/#gitlab-job-grades).

57
#### Senior Red Team Engineer Responsibilities
Jan Urbanc's avatar
Jan Urbanc committed
58 59 60 61 62 63 64
* Extends Red Team Engineer responsibilities, plus;
* Lead both solo and group Red Team Operations
* Submit talk abstracts to top tier Information Security conferences
* Help identify new Red Team Operations
* Perform "read outs" of completed Red Team Operations
* Collaborate closely with defensive and infrastructure teams

65
#### Senior Red Team Engineer Requirements
Jan Urbanc's avatar
Jan Urbanc committed
66 67 68 69 70 71 72 73
* Bachelor’s degree in Computer Science, Computer Engineering, Electrical Engineering or equivalent and 5+ years of professional experience in cyber security or related field
* Proven technical task management experience
* Experience working remotely on a widely distributed team
* Can convey technical information in writing at a senior level
* Intermediate knowledge of exploit techniques, and common TTPs
* Intermediate knowledge of one or more programming or scripting languages

### Staff Red Team Engineer
74
This position reports to the [Manager, Red Team](#manager-red-team).
Jan Urbanc's avatar
Jan Urbanc committed
75

76
#### Staff Red Team Engineer Job Grade
Jan Urbanc's avatar
Jan Urbanc committed
77 78
The Staff Red Team Engineer is a [grade 8](/handbook/total-rewards/compensation/compensation-calculator/#gitlab-job-grades).

79
#### Staff Red Team Engineer Responsibilities
Jan Urbanc's avatar
Jan Urbanc committed
80 81 82 83 84 85 86 87
* Extends Senior Red Team Engineer responsibilities, plus;
* Lead threat modeling sessions on various aspects of our infrastructure and products
* Identify new Red Team open source project opportunities and internal tooling needs
* Identify areas of Red Team process improvement
* Identify new Red Team Operations, document an attack plan and execute
* Collaborate closely with defensive and infrastructure teams
* Show thought leadership both internally at GitLab and externally with the general community

88
#### Staff Red Team Engineer Requirements
Jan Urbanc's avatar
Jan Urbanc committed
89 90 91 92
* Bachelor’s degree in Computer Science, Computer Engineering, Electrical Engineering or equivalent and 8+ years of professional experience in cyber security or related field
* Proven technical task management experience
* Experience working remotely on a widely distributed team
* Can convey technical information in writing at an expert level
Jan Urbanc's avatar
Jan Urbanc committed
93
* Profound knowledge of exploit techniques, and common TTPs 
Jan Urbanc's avatar
Jan Urbanc committed
94 95 96
* Senior knowledge of one or more programming or scripting languages

### Manager, Red Team 
97
This position reports to the [Senior Manager, Red Team ](#senior-manager-red-team).
Jan Urbanc's avatar
Jan Urbanc committed
98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113

#### Manager, Red Team Job Grade
The Red Team Manager is a [grade 8](/handbook/total-rewards/compensation/compensation-calculator/#gitlab-job-grades).

#### Manager, Red Team Responsibilities
* Hire a world class team of security engineers to work on their team
* Help their team grow their skills and experience
* Provide input on security architecture, issues, and features
* Hold regular 1:1's with all members of their team
* Create a sense of psychological safety on their team
* Be your team's role model in terms of positive thinking, de-escalating conflict, and taking time off
* Identify the need to, and drive the implementation of security-related technical and process improvements
* Author project plans for security initiatives
* Draft and succesfully deliver quarterly OKRs
* Train team members to screen candidates and conduct managerial interviews
* Draft and deliver operation reports and hold retrospectives
Jan Urbanc's avatar
Jan Urbanc committed
114
* Build a substantial, collaborative partnership with Legal, Infrastructure, Alliances, and Product teams
Jan Urbanc's avatar
Jan Urbanc committed
115 116 117 118 119 120 121 122 123
* Draft and present findings from Red Team operations to relevant stakeholders and business owners
 
#### Manager, Red Team Requirements
* Proven track record as a member of offensive security, security research, or similar teams
* Experience with leading security teams
* Experience with working at a SaaS, or product company
* Willingness to be part of the Security Manager on-call rotation
* Robust sense of ownership, urgency, and drive
* Excellent written and verbal communication skills, especially experience with executive-level communications
Jan Urbanc's avatar
Jan Urbanc committed
124
* Capability to make sound decisions in the face of ambiguity and imperfect knowledge
Jan Urbanc's avatar
Jan Urbanc committed
125 126
* Willingness to be part of the Security Manager On-Call rotation
* First hand experience with major cloud providers - GCP, AWS, Azure, Digital Ocean
127
* Share our [values](/handbook/values/), and work in accordance with those values
128
* Alignment with Manager responsibilities as outlined in [Leadership at GitLab](/company/team/structure/#management-group)
Jan Urbanc's avatar
Jan Urbanc committed
129 130

### Senior Manager, Red Team 
131
This role extends the Security Incident Response Team Manager role by adding vision and strategy. It consolidates all SIRT teams' efforts and drives them towards a set of strategic goals. The Senior Manager, Red Team reports to the [Director of Security Operations](/job-families/engineering/security-management/#director-of-security).
Jan Urbanc's avatar
Jan Urbanc committed
132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159

#### Senior Manager, Red Team Job Grade
The Security Incident Response Team Senior Manager is a [9](/handbook/total-rewards/compensation/compensation-calculator/#gitlab-job-grades).

#### Senior Manager, Red Team Responsibilities
* Extends Manager, Red Team responsibilities, plus;
* Provide tactical oversight of the teams' daily efforts
* Maintain vision for the teams' immediate and near-term future
* Develop and maintain teams' KPIs
* Be your teams' role model in terms of positive thinking, de-escalating conflict, and taking time off
* Help teams prioritise efforts	and ensure they align with the overall direction of the company
* Draft and successfully deliver on quarterly OKRs
* Train team members to screen candidates and conduct managerial interviews
* Build a substantial, collaborative partnership with peers from Legal, Infrastructure, Alliances, and Product departments
* Take the role of an Incident Manager during larger security events not necessarily related to Red Team efforts
* Take part in the Security Escalation On-Call rotation

#### Senior Manager, Red Team Requirements
* Experience with leading people managers
* Experience with leading Security or security-focused Site Reliability teams
* Experience with working at a SaaS, or product company
* Excellent written and verbal communication skills, especially experience with executive-level communications
* Capability to make concrete progress in the face of ambiguity and imperfect knowledge
* Being comfortable with rapid context switching
* Willingness to be part of the Security Escalation On-Call rotation
* Robust understanding of security issues, mitigations, and a solid grasp of the current global threat landscape
* Experience with the role of an incident manager during large scale security events
* Familiarity with major cloud providers - GCP, AWS, Azure, Digital Ocean
160
* You share our [values](/handbook/values/), and work in accordance with those values
161
* Alignment with Manager responsibilities as outlined in [Leadership at GitLab](/company/team/structure/#management-group)
Jan Urbanc's avatar
Jan Urbanc committed
162 163

## Performance Indicators
164
* Improve the security posture of the organisation by [executing operations that mimic real-world adversaries](/handbook/engineering/security/performance-indicators/).
Jan Urbanc's avatar
Jan Urbanc committed
165 166 167 168 169 170 171 172 173 174 175

### Career Ladder
```mermaid
  graph LR;
  sec:se(Red Team Engineer)-->sec:sse(Senior Red Team Engineer);
  sec:sse(Senior Red Team Engineer)-->sec:stse(Staff Red Team Engineer);
  sec:stse(Staff Red Team Engineer)-->sec:dse(Distinguished Red Team Engineer);
  sec:sse(Senior Red Team Engineer)-->sec:sem(Red Team Manager);
  sec:sem(Red Team Manager)-->sec:sesm(Red Team Senior Manager);
  sec:sesm(Red Team Senior Manager)-->sec:ds(Director of Security Operations);
```
April Hoffbauer's avatar
April Hoffbauer committed
176
For details on the Security organization leadership roles, to include the Security Operations Director and VP of Security, see the Security Leadership page.
Jan Urbanc's avatar
Jan Urbanc committed
177 178 179 180 181 182 183 184 185 186 187

## Hiring Process
Candidates for this position can expect the hiring process to follow the order below. Please keep in mind that candidates can be declined from the position at any stage of the process. To learn more about someone who may be conducting the interview, find their job title on our [team page](/company/team/).

- Qualified candidates will be invited to schedule a 30 minute [screening call](/handbook/hiring/interviewing/#screening-call) with one of our Global Recruiters.
- Next, candidates will be invited to schedule an interview with Red Team Manager 
- Candidates will then be invited to schedule an interview with Senior Red Team Engineer, Security Incident Response Team Manager, Trust & Safety Manager
- Candidates will then be invited to schedule an interview with Director of Security Operations
- Successful candidates will subsequently be made an offer via email

Additional details about our process can be found on our [hiring page](/handbook/hiring).