WHY CATALISTO

Catalisto helps organizations access unconventional solutions to their biggest security problems. We provide cybersecurity sourcing, testing and capacity development services to operators, companies, service providers and governments across the globe. We efficiently navigate the growing tsunami of security innovation and identify the technology solutions, talent and strategies that keep their people and assets safe from digital threats.

With decades of experience, we understand the severity of the threats businesses are facing. More importantly, we know what it takes to stop them. This first-hand knowledge and training give our team a unique perspective, enabling us to deliver the insight needed to make organizations more secure. We serve clients in various industries and backgrounds including Financial Services, Fortune 500 Corporations and Government and development clients.  

We are a small, but rapidly growing company, with operations in the USA, South Africa, and Europe, and clients across the globe.

YOUR ROLE

The Principal Cyber Security Engineer will help businesses by protecting digital assets, networking systems (both IT and OT) and data from potential adversaries, cyber-attacks and infiltrations. This is a varied role that includes security assessment (penetration testing/ red teaming), incident response support, security architecture advises and general cybersecurity consulting.  You will be a highly technical and skilled individual contributor, with a track record of successfully interacting with senior client stakeholders. However, you also work successfully as part of a larger team, and when required, can act as a team leader and provide guidance and support to more junior team members.

This position will serve as the second-in-command to the Head of Engineering/ South African country manager and the successful candidate must be able to constructively and swiftly close out cyber security issues with minimal supervision. You must be acknowledged by yourself and your peers as having 10/10 technical expertise – this is not a position that suits an administrator or manager. You must be able to deftly manage a diverse, and often significant workload, in a rapidly changing environment. We are looking for an insatiable learner, that has a deep sense of pride and accountability in their work, and a proficiency in directly guiding client stakeholders through their most stressful circumstances.  

YOUR RESPONSIBILITIES

·Security Assessment Duties: This position’s responsibilities include performing cyber security test engineering and management roles, supporting a broad range of customers and technologies supported by Catalisto. Responsibilities include:

• Writing cyber security focused test plans and procedures for several systems/subsystems

• Writing test scripts in PowerShell and/or Bash to expedite testing where automation can be used

• Executing test plans/procedures

• Serving as official recorder for test events as required

• Authoring test reports

• Execute Red Team engagements in a variety of networks using real-world adversarial Tactics, Techniques, and Procedures (TTPs) from conception to report delivery

• Demonstrate new vulnerabilities and assist Network Defenders (Blue Team) with the refinement of detection capabilities 

• Creating/updating JIRA tickets based on results of test events

• Scheduling, coordinating, leading, and supporting cybersecurity test events

• Assessing systems for compliance with security standards and identification of vulnerabilities using approved toolsets

• Providing in-house training/mentoring on approved security test tools and processes

Incident Response Duties:  Lead and direct team of security operations center and other cyber security engineers in technical response to cyber-attack on specific targets, including:

• Responding to system and/or network security breaches 

• Hunting for adversary in networks

• Determining and documenting attack path

• Guiding client on immediate, mid-term and long-term technical steps to take to mitigate, respond and recovery from an attack

• Supervise recovery of impacted IT and OT assets

• Document Root Cause, Incident Response Reporting, and Detailed Investigations Reports as instructed

Security Architecture Responsibilities: Advising clients on appropriate security implementations to improve the security of their IT and OT networks, including:

• Guiding client on appropriate network segmentation, firewall configurations and other security appliances/ solutions.

• Ensuring organizational data and infrastructure are protected by enabling the appropriate security controls

• Taking appropriate security measures to ensure that the organization’s infrastructure and existing data are kept safe and taking an active role in all infrastructure change management processes 

• Evaluating the organization’s security needs and establish best practices and standards accordingly 

• Designing, implementing, maintaining, overseeing, and upgrading all security measures needed to protect organizations’ data, systems, and networks 

Security Operations Center Responsibilities: Serve as senior cyber security architect in relations to security implementations in the SOC, providing expert technical guidance to SOC personnel, and overseeing SOC team when Head of Engineering is unavailable.

Other Responsibilities:

• Daily administrative tasks, reporting, and communication with the relevant departments in the organization 

• Regularly interact and work with our clients and customers, and auditors as required.

• Assist with special projects and perform other duties as assigned.

REQUIREMENTS

• Minimum of 8 years relevant and progressively responsible experience in cyber security engineering (only years in cyber security will be counted)

• Bachelor’s degree in Computer Science, Computer Engineering, Information Assurance, Cyber Security or a similar technical field.  4 years of related professional experience can be substituted in lieu of a bachelor’s degree.

• Expert level knowledge of the key Risk Management Frameworks (NIST SP 800-53, ISO 27001, CIS Controls v8.0)

• At least three or more years of continuous experience in one of penetrating testing, incident response and/or security architecture and design fields.

• Ability to read or write in a programming language, such as Python or C, C++, Java or Go.

• Excellent written and oral communication skills, and ability to communicate complex concepts and results to all levels of leadership, internal technology teams and non-technical stakeholders.

• Ability to apply creativity and analytical skills to deliver best in class solutions despite loosely defined requirements.

• Extremely high level of attention to detail.

• Ability to multi-task and work under pressure in a fast-paced environment.

• Ability to work independently, setting own priorities and objectives with minimal supervision.

• Ability to interact effectively and work collaboratively with a diverse group of internal and external contacts across geographic locations.

• Advanced intellectual, professional, and interpersonal agility and flexibility.

• Strong execution and facilitation skills with the ability to proactively lead and drive complex projects to completion.

• Can-do, constructive and confident demeanor that reduces incident and project stress, and client anxiety.

• Fast learner

CLEARANCE REQUIREMENTS

Applicants selected will be subject to a criminal and background check.

TRAVEL REQUIREMENTS

15 - 20% travel.

COMPENSATION AND BENEFITS

Market rate salary based on candidate experience, location and qualifications.  Employees are also eligible to participate in the company’s health care insurance contribution program, pension contributions, life, and disability insurance, paid time off, and annual bonus program in line with company policies. 

EEO COMMITMENT

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

TO APPLY

Please submit your resume to careers@catalisto.com