Systems Engineer - Penetration Testing
Job Description:
As a Systems Engineer - Penetration Testing you will play an essential role in our Rapid7 SecOps Consulting Division. This role will be responsible for the oversight, support and maintenance of applicable tools, applications and servers that are critical to enabling service delivery. The right candidate will be comfortable working with teams of security professionals to solve complex infrastructure, lab and process challenges while enabling our SecOps Consulting Services consultants with tools, infrastructure, and unique solutions to fulfill our client and industry engagement needs.
We are a team of ethical hackers for hire, the person in this role will help support all our activities – from infrastructure to exploits, you will have our back.
Responsibilities:
Successfully deploy, maintain, and support both new and existing physical and virtual systems in support of a growing consulting practice.
Securely administer various Windows and Linux servers via GUI and CLI to support the needs of the business.
Ensure that all systems, software, and deployment processes are documented and maintained for accuracy.
Manage and maintain inventory management systems.
Purchasing, shipping, and receiving of physical equipment, software, licensing, and domain names.
Partner effectively with the Rapid7 Information Technology and Information Security teams to align to corporate standards and continue Consulting expansion.
Ability to project manage tasks associated with multiple and sometimes disparate team members to meet deadlines
Highlight and communicate opportunities for growth, efficiency, and optimization.
Work with team to design, develop and maintain a wide variety of infrastructure and code.
Requirements:
3+ years of relevant Linux administration experience.
3+ years of relevant Windows Server experience.
Strong hands-on experience with virtualization technologies such as VMware workstation/Fusion/Player, Microsoft Hyper-V, Oracle VirtualBox, etc.
Experience managing and configuring firewalls, switches, routers, and other networking infrastructure.
Experience with interpreted and compiled languages (BASH, Python, Ruby, PowerShell, Java, JS) and their deployment to production systems.
Experience in building and maintaining cloud infrastructure services in a secure manner.
Experience with containers such as Docker, LDX, etc. and container management systems such as Docker Enterprise, Kubernetes, etc.
Knowledge and Skills:
The ability to identify and automate routine day to day tasks.
Hands-on experience creating build and/or automation scripts and/or deployment pipelines
Expertise in the design and automation of software builds and deployments
A solid understanding of analyzing system performance to tune and build systems.
A solid understanding of Network protocols such as TCP/IP, DHCP, DNS, NFS, SSH, SSL.
Strong oral and written communication skills.
Highlight and communicate opportunities for growth, efficiency, and optimization
Understand business problems and translate them to a technical audience
Preferred:
Familiarity with security testing tools such as Kali, Burp suite, GoPhish, Nexpose, Metasploit, hashcat, etc.
Hands-on experience with one or more infrastructure configuration management platform such as AWS OpsWorks, Terraform, Chef, Puppet, Ansible
Strong understanding and hands-on experience in varied infrastructure/cloud environments such as AWS, GCP, Azure, VMware vSphere/ESXi, and physical co-locations
Experience with infrastructure as code management platforms such as Terraform, Ansible, etc.
Experience with source code management tools such as Github, git, Bitbucket, etc.
Experience with build management tools, such as Jenkins, Github Actions, etc.