Posted today
Top Secret/SCI
Mid Level Career (5+ yrs experience)
Unspecified
IT - Software
Camp Springs, MD (On-Site/Office)
Ring0 Technologies is seeking an experienced Interactive On-Net (ION) Operator to support cyber threat discovery, exploitation, and intelligence collection in a high-impact operational environment. The ION Operator will conduct interactive on-net operations against malicious infrastructure, leveraging customized tools, scripts, and tradecraft to gain access, collect intelligence, and produce mission-driven cyber effects—while maintaining strict operational security and anonymity.
Responsibilities:
• Conduct interactive on-net operations to exploit and access malicious infrastructures utilizing MA tactics, techniques, and protocols without compromising the identity of the operator or the organization
• Use customized scripts, functions, and tools to enable the customer to conduct interactive on-net operations efficiently, effectively, which produce cyber effects against the adversary, as the mission requires
• Use open-source and proprietary tools for network navigation, tactical forensic analysis, and intelligence collection
• Assist in the development of exploitation capabilities against known and newly identified targets; inform and refine operational requirements for new tools
• Participate in planning operations, discuss requirements, features, and end-goal expectations with the customer and developers – influence and find creative solutions to achieve the mission
• Identify problems, obstacles, and impediments before conducting an operation and report concerns to the customer
• Document guidance on how to perform interactive on-net operations to the customer and share procedures with colleagues and other sites
• Build and maintain a strong relationship with your team and with the customer
Required Skills:
• Graduate of the Future Operator Readiness, Growth and Enrichment (FORGE), or equivalent, or a graduate of the Remote Interactive Operator Training (RIOT)
• Three years of pen-testing/red teaming experience within the last five years, and at least six years of technical analysis, military intelligence, DNI, SIGINT analysis, or similar
• Strong understanding of system administration (Windows and *nix), analysis, and manipulation, including startup programs, system configuration files, common executable files, and logging capabilities
• Solid familiarity with networking analysis and manipulation, including network stack, ports, protocols, tunneling, routing concepts, firewalls, VPNs, proxy servers, and network mapping
• Established knowledge of hacker and pen testing methodologies such as host enumeration, exploitation, privilege escalation, persistence, and effects
• Robust understanding of detection evasion (antivirus, IDS/IPS, and other personal security products) and other post-operation steps
• Ability to assist in the development and adaptation of exploits for operating systems, applications, and services to fit operational needs
Desired Skills:
• Bachelors or master’s degree in computer science, software engineering, cybersecurity, or related discipline from an accredited institution in addition to the required experience
• Certifications such as SANS’ GXPN, GAWN, GPYC, GIAC’s GPEN; Offensive Security OSCP, OSWE, OSCE, OSEE, ECCouncil’s CEH, APT, LPT, CompTIA’s PenTest+, CASP+, Cisco’s CyberOps, CCNA, CCNP, or other si
• Experience with Python, PowerShell, or other scripting languages to automate operational requirements
• Ability to develop and adapt exploits for operating systems, applications, and services
Responsibilities:
• Conduct interactive on-net operations to exploit and access malicious infrastructures utilizing MA tactics, techniques, and protocols without compromising the identity of the operator or the organization
• Use customized scripts, functions, and tools to enable the customer to conduct interactive on-net operations efficiently, effectively, which produce cyber effects against the adversary, as the mission requires
• Use open-source and proprietary tools for network navigation, tactical forensic analysis, and intelligence collection
• Assist in the development of exploitation capabilities against known and newly identified targets; inform and refine operational requirements for new tools
• Participate in planning operations, discuss requirements, features, and end-goal expectations with the customer and developers – influence and find creative solutions to achieve the mission
• Identify problems, obstacles, and impediments before conducting an operation and report concerns to the customer
• Document guidance on how to perform interactive on-net operations to the customer and share procedures with colleagues and other sites
• Build and maintain a strong relationship with your team and with the customer
Required Skills:
• Graduate of the Future Operator Readiness, Growth and Enrichment (FORGE), or equivalent, or a graduate of the Remote Interactive Operator Training (RIOT)
• Three years of pen-testing/red teaming experience within the last five years, and at least six years of technical analysis, military intelligence, DNI, SIGINT analysis, or similar
• Strong understanding of system administration (Windows and *nix), analysis, and manipulation, including startup programs, system configuration files, common executable files, and logging capabilities
• Solid familiarity with networking analysis and manipulation, including network stack, ports, protocols, tunneling, routing concepts, firewalls, VPNs, proxy servers, and network mapping
• Established knowledge of hacker and pen testing methodologies such as host enumeration, exploitation, privilege escalation, persistence, and effects
• Robust understanding of detection evasion (antivirus, IDS/IPS, and other personal security products) and other post-operation steps
• Ability to assist in the development and adaptation of exploits for operating systems, applications, and services to fit operational needs
Desired Skills:
• Bachelors or master’s degree in computer science, software engineering, cybersecurity, or related discipline from an accredited institution in addition to the required experience
• Certifications such as SANS’ GXPN, GAWN, GPYC, GIAC’s GPEN; Offensive Security OSCP, OSWE, OSCE, OSEE, ECCouncil’s CEH, APT, LPT, CompTIA’s PenTest+, CASP+, Cisco’s CyberOps, CCNA, CCNP, or other si
• Experience with Python, PowerShell, or other scripting languages to automate operational requirements
• Ability to develop and adapt exploits for operating systems, applications, and services
group id: 10454459
