Starbucks Remote Cybersecurity Expert - Red Team Leader for Application Security Testing and Threat Modeling

Join the Starbucks Team as a Remote Cybersecurity Expert - Red Team Leader Are you a seasoned cybersecurity professional with a passion for staying one step ahead of emerging threats? Do you have a talent for leading high-performing teams and driving innovation in the field of application security? If so, we want to hear from you! Starbucks is seeking an experienced Remote Cybersecurity Expert - Red Team Leader to join our global cybersecurity team and play a critical role in protecting our customers, partners, and brand. About Us: A Culture of Innovation and Inclusion At Starbucks, we're committed to creating a culture of innovation, diversity, and inclusion that empowers our partners to thrive and make a meaningful impact. As a global company, we recognize the importance of having a diverse and talented team that can drive our mission to inspire and nurture the human spirit. Our remote work environment offers the flexibility and autonomy to work from anywhere, while still being connected to a vibrant and dynamic community of professionals. Job Summary As a Remote Cybersecurity Expert - Red Team Leader, you will be responsible for leading the design, development, and execution of a comprehensive red team program that simulates real-world threats and tests the defenses of our applications and systems. You will work closely with our Global Cybersecurity Services (GCS) teams to identify vulnerabilities, drive remediation efforts, and improve our overall cybersecurity posture. This is a high-visibility role that requires strong technical expertise, leadership skills, and the ability to communicate complex ideas to both technical and non-technical stakeholders. Key Responsibilities Develop, document, and operationalize strategies, methodologies, tools, and techniques that model the behaviors of external threat actors. Design and execute on authorized engagements that produce vulnerability reports and work with application/system owners to present the results and provide guidance on remediation steps. Serve as a subject matter expert for the red team and provide technical leadership and guidance to team members. Collaborate with various stakeholders and GCS teams to drive the red team program and ensure alignment with business objectives. Define and maintain a set of standard operating procedures and rules of engagement for red team operations. Build, develop, and maintain a high-performing red team that is equipped to tackle the latest cybersecurity threats. Essential Qualifications To be successful in this role, you will need to have: 8+ years of experience working in a relevant IT discipline, such as cybersecurity, penetration testing, or threat intelligence. 5+ years of experience in penetration testing/red teaming, with a strong understanding of application and network security vulnerabilities. Broad experience across multiple IT domains, including cloud, network, and application security. Advanced knowledge of hostile tools and platforms, as well as the latest threat actor tactics, techniques, and procedures (TTPs). Excellent problem-solving skills, with the ability to think creatively and stay one step ahead of emerging threats. Strong written and verbal communication skills, with the ability to present complex technical information to both technical and non-technical stakeholders. A strong track record of acting with integrity and ethics, and demonstrating a commitment to doing what's right. A proven ability to thrive in uncertainty and adapt to changing circumstances. Preferred Qualifications While not required, the following qualifications are highly desirable: Certifications such as OSCP, OSWE, GPEN, CEH, or others focused on offensive security. Experience with cloud security, containerization, and DevOps practices. A strong understanding of security frameworks and compliance regulations, such as NIST, PCI-DSS, and HIPAA. What We Offer: Career Growth, Learning Benefits, and a Great Work Environment As a Starbucks partner, you will have access to a range of benefits and opportunities that can help you grow your career and achieve your goals. These include: Ongoing training and development opportunities to help you stay up-to-date with the latest cybersecurity threats and technologies. A collaborative and dynamic work environment that encourages innovation and creativity. A competitive salary and benefits package that reflects your skills and experience. A culture of inclusion and diversity that values and celebrates individual differences. Opportunities for career advancement and professional growth. Compensation, Perks, and Benefits We offer a competitive compensation package that includes a salary of $30/hour, as well as a range of benefits and perks that can help you achieve a great work-life balance. These include: A flexible remote work environment that allows you to work from anywhere. A comprehensive benefits package that includes medical, dental, and vision coverage. Opportunities for stock ownership and equity participation. A range of wellness programs and resources to support your physical and mental health. A generous paid time off policy that allows you to take breaks and recharge. Are You the Right Fit for This Role? If you're a motivated and talented cybersecurity professional with a passion for leading high-performing teams and driving innovation in the field of application security, we want to hear from you! As a Starbucks partner, you will be part of a dynamic and inclusive community that is committed to making a positive impact on the world. Apply now to join our team and start your journey towards a rewarding and challenging career in cybersecurity. Starbucks is an equal opportunity employer and welcomes applications from diverse candidates. We are committed to creating a culture of inclusion and diversity that values and celebrates individual differences. Minorities, women, LGBTQIA+, veterans, and people with disabilities are encouraged to apply. Apply for this job