Location(s): United States; Michigan, Virginia; Glen Allen, Van Buren Township
About Us: GE is the world's Digital Industrial Company, transforming industry with software-defined machines and solutions that are connected, responsive and predictive. Through our people, leadership development, services, technology and scale, GE delivers better outcomes for global customers by speaking the language of industry.
At GE Digital, we are creating technology and solutions to enable social, mobile, analytical and cloud capabilities for the Industrial Internet. The Industrial Internet is an open, global network that connects people, data and machines. It’s about making infrastructure more intelligent and advancing the industries critical to the world we live in. At GE, we believe it’s about the future of industry—energy, healthcare, transportation, manufacturing. It’s about making the world work better. GE is transforming itself to become the world's premier digital industrial company, executing critical outcomes for our customers. Explore how you can drive greater asset reliability, lower operating costs, reduce risk and accelerate operational performance with our Predix platform and software solutions. GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
Role Summary: The Sr Cyber Security Researcher is responsible for delivering controlled threat simulation services against company assets and partnering with business security teams to drive change. This includes threat research, structured attack development, vulnerability research and exploit development / testing, scripting, controlled exploitation of configuration weaknesses and software vulnerabilities, evasion of detection mechanisms and more.
Partner with business IT security teams to drive improvement in IT security as a result of Cyber Security Research engagements
Executing engagements; defining scope, coordinating attacks, executing tests and reporting findings, following an established methodology in accordance with defined processes
Conduct adversary simulation to determine if flaws and exposures can be exploited by unfriendly forces
Research, develop, implement, test and document tools, techniques and tactics used by adversaries to compromise and maintain control of information assets
Coordinate with other teams in IT Risk in development of threat agent profiles
Participate in cross-team Task Forces to drive impact of Cyber Security Research findings as appropriate
Bachelor's Degree in Computer Science or a related technical degree (OR Minimum 6 years of professional IT experience)
Minimum 3 years of experience in executing penetration tests
Minimum 2 years of experience in scripting
Minimum 2 years of deep, hands-on, technical security experience with at least one of: Wired Network technologies (CISCO routers / switches, Checkpoint), Wireless (WLAN, WIMAX, RFID), Enterprise Storage Systems, UNIX / Linux, Windows / AD, iSeries / zSeries, ORACLE, Web applications and Services, Cryptography, Social Engineering and Open Source Intelligence Gathering (OSINT), Mobile platforms, Software Security (Source Code Auditing and Binary Reversing)
Minimum 1 year of experience developing exploit code or novel attacks
Legal authorization to work in the U.S. is required.We will not sponsor individuals for employment visas, now or in the future, for this job.
We are in the process of transitioning to an improved job application system and in the interim we are operating with two systems. Have your Job ID ready (from the email you received when you applied) to log in and check your application status.
Click the appropriate button. If you don't know your job ID, you can still check your status: use both buttons.