Twenty is seeking an innovative Associate Cyber Security Research Engineer to develop and automate sophisticated attack paths, leverage machine-speed data processing, and create tools that advance cyber and electromagnetic capabilities to help build the next generation of cyber technologies for the United States and its allies.
Requirements
- 3+ years of threat research and coding experience
- Deep understanding of the MITRE ATT&CK framework with practical experience mapping and implementing common adversary TTPs (Tactics, Techniques, and Procedures)
- Proven experience operating industry-standard threat emulation platforms and command & control frameworks, including development of custom payloads and modules
- Track record of integrating and analyzing threat intelligence data sources to enhance detection and response capabilities
- Demonstrated proficiency in implementing and detecting advanced persistence mechanisms, defense evasion techniques, and counter-forensic methods
- Strong containerization experience using Docker, including creating secure, production-ready containers and managing multi-container applications with Docker Compose
- Advanced programming skills in Python and/or Golang, with emphasis on developing security tools and automation frameworks
Responsibilities
- Design and implement sophisticated attack paths that emulate real-world adversary behaviors and TTPs
- Create modular, reusable components for common attack techniques and lateral movement methods
- Develop custom tools and scripts to support attack path execution and validation
- Automate common red team tools and techniques for scalable deployment
- Develop custom extensions and modules for industry-standard red team frameworks
- Create efficient workflows for repetitive security testing procedures
- Design and implement parsers for various data formats including logs, network traffic, and threat feeds
Other
- In-office position in its Arlington, VA office
- Must be eligible to obtain and maintain a U.S. Government security clearance
- Experience with Agile development methodologies
- System architecture and design experience
- Performance optimization and scalability experience
