This role offers a hybrid work schedule; offering the flexibility to work remotely two days a week, while providing the opportunity for in-person collaboration at our Buffalo, NY Tech Hub.Overview:Searches for application and system weaknesses that are exploitable, and partners with technology, cybersecurity, and risk teams to remediate any found weaknesses. Partners with technology leaders to train engineering and infrastructure teams to develop new applications and systems securely to ensure weaknesses are removed prior to implementation or software deployment.Primary Responsibilities:
Lead the planning and execution of purple team exercises and participate in red team exercises across enterprise environments to evaluate detection and response capabilities.
Act as the technical lead during adversary emulation scenarios, coordinating with threat intelligence and blue team counterparts to align operations with real-world TTPs.
Collaborate with defensive teams during purple team exercises to iteratively test and improve detections, alerts, and response playbooks.
Translate threat intelligence into actionable emulation plans using frameworks like MITRE ATT&CK, NIST, and internal threat models.
Support the red/purple team strategy by identifying capability gaps and driving the development of new tools, infrastructure, and techniques.
Design, build, and maintain automated adversary emulation platforms and configurations to support continuous security validation and testing.
Generate reports on assessment findings and summarize to facilitate remediation; document technical issues identified during security assessments.
Develop and maintain tools and scripts used in penetration testing and red team processes.
Build relationships with Cybersecurity and Technology teams to ensure technology applications and services are not at risk of compromise or will leak information.
Partner with Cybersecurity and Technology teams to leverage intelligence sources, identify new threats, improve tool usage and workflow, and mature monitoring and response capabilities.
Proactively recommend process enhancements to penetration testing tactics, techniques, and procedures, and implements prioritized improvements within Cybersecurity team.
Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s Risk Appetite. Design, implement, maintain, and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management.
Promote an environment that supports diversity and reflects the M&T Bank brand.
Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
Complete other related duties as assigned.
Scope of Responsibilities:
Engages in regular interaction with senior management and associated staff within Internal Audit, Compliance, Risk Management, and Technology.
Exercises judgement in selecting methods, techniques, and evaluation criteria in obtaining results. Exerts significant latitude in determining objective of assignment. Work is accomplished with limited direction.
Intermediate working knowledge of penetration testing and red team tools.
Advanced knowledge of networking and network protocols.
Intermediate working knowledge of operating systems and scripting and/or coding.
The position provides guidance and mentoring to less experienced team members.
Education and Experience Required:
Bachelor's degree and a minimum of 5 years’ relevant work experience, or in lieu of a degree, a combined minimum of 9 years’ higher education and/or work experience.
Prior experience penetration testing and red team tools to be able to simulate attacker tactics, techniques, and procedures.
Advanced knowledge of networking and network protocols
Intermediate working knowledge of operating systems and scripting and/or coding
Education and Experience Preferred:
Bachelor’s degree in an applicable discipline such as Computer Science, Cybersecurity, or Information Technology
Extensive understanding of information security concepts (both technical and organizational requirements)
Highly ethical and expected to maintain a level of professionalism at all times
Intermediate working knowledge in social engineering, application security (web and mobile), physical methods, lateral movement, threat analysis, internal and external network architecture, and a wide array of commercial and bring-your-own (BYO) products.
Excellent ability to strategically learn new technical skills, and apply broadly across systems, tools, and processes
Experience training penetration tester to ensure they have intermediate knowledge of penetration testing and red team concepts, tools, and ability to simulate attacker tactics, techniques, and procedures
Strong ability to analyze and draw reliable conclusions based on large volumes of quantitative data from diverse sources
Penetration testing-specific or Cybersecurity domain-related industry-recognized certification
M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $110,635.01 - $184,391.68 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.LocationBuffalo, New York, United States of AmericaM&T Bank Corporation is an Equal Opportunity/Affirmative Action Employer, including disabilities and veterans.