Purple Team Exercise Coordinator
Statestreet•23h ago
United StatesHybridFull-timeMid Level5+ yrs exp
- Who we are looking for State Street seeks to recruit a Purple Team Exercise Coordinator to support the planning, execution
- continuous improvement of Purple Team operations that strengthen State Street’s ability to detect, respond to
- mitigate evolving cyber threats. Why this role is important to us The Purple Team Exercise Coordinator will be part of a high-performing team within the Global Cyber Security Organization, focused on validating security controls, improving detection and response capabilities, facilitating collaboration between offensive and defensive security teams
- driving measurable cyber resilience outcomes. This position will report directly to the Purple Team Manager and work closely with Threat Hunt Response, Cyber Threat Intelligence, Red Team, Cyber Defense Center, Detection Engineering
- Cyber Platform teams. What you will be responsible for
- Planning, coordinating, and delivering Purple Team exercises aligned to State Street's threat landscape, cyber risks, and strategic priorities.
- Collaborating with the Red Team, Cyber Defense Center, Threat Hunt Response, Detection Engineering, and Cyber Threat Intelligence teams to design realistic adversary emulation scenarios.
- Coordinating exercise logistics, stakeholder engagement, communications, and reporting activities throughout the exercise lifecycle.
- Mapping Purple Team exercises to the MITRE ATT&CK framework and ensuring coverage of relevant adversary tactics, techniques, and procedures (TTPs).
- Facilitating collaboration between offensive and defensive teams to validate detection, prevention, response, and recovery capabilities.
- Documenting exercise objectives, rules of engagement, execution plans, lessons learned, and remediation activities.
- Tracking exercise findings, recommendations, and remediation actions through to completion.
- Supporting the development of detection engineering requirements based on exercise outcomes.
- Identifying opportunities to improve Purple Team operations through automation, orchestration, analytics, and Artificial Intelligence (AI).
- Developing meaningful metrics and reporting to demonstrate effectiveness, assurance outcomes, and cyber risk reduction.
- Assisting with the development and maturation of Purple Team methodologies, standards, governance, and operating procedures.
- Building strong relationships across Cyber Security, Technology, Risk Management, Audit, and Business teams to ensure alignment with organizational objectives.
- Supporting strategic initiatives that enhance the organization's security validation, adversary emulation, and cyber assurance capabilities. What we value These skills will help you succeed in this role:
- 5–10 years of experience in Cyber Security disciplines such as Purple Teaming, Cyber Exercises, Threat Hunting, Detection Engineering, Incident Response, Security Operations, or Red Teaming.
- Strong understanding of adversary emulation methodologies and Purple Team practices.
- Extensive knowledge of the MITRE ATT&CK framework and how it can be used to assess and improve security controls.
- Knowledge of Advanced Persistent Threat (APT) actors and their associated tactics, techniques, and procedures.
- Experience conducting or coordinating cyber exercises, simulations, tabletop activities, or security validation engagements.
- Familiarity with Endpoint Detection & Response (EDR), SIEM, attack simulation, and security monitoring technologies.
- Understanding of detection engineering concepts and security analytics development.
- Ability to analyze security control effectiveness and identify opportunities for improvement.
- Strong project coordination and stakeholder management skills.
- Ability to communicate technical findings to both technical and executive audiences.
- Excellent interpersonal, communication (written and verbal), and presentation skills.
- Strong problem-solving, organizational, and time management skills.
- Ability to work independently as well as collaboratively across multiple teams.
- Intellectually curious with a passion for cyber security research, emerging threats, and continuous improvement. Education & Preferred Qualifications
- Bachelor of Science in Computer Science, Information Security, Engineering or equivalent experience Relevant Industry Certifications such as:
- Relevant Industry Certifications (such as OSCP, OSCE, GREM, GCFA, GNFA, etc.) Additional Requirements
- Experience with adversary emulation platforms and security validation tools is desirable.
- Familiarity with security framework mapping and cyber assurance reporting.
- Previous experience within the banking or financial services industry is a plus.
- Experience working within regulated environments and supporting audit, risk, or regulatory requirements is advantageous.
- Ability to coordinate multiple workstreams and stakeholders across global teams.
- Passion for driving measurable improvements in cyber defense capabilities through collaborative security validation activities. About State Street Across the globe, institutional investors rely on us to help them manage risk, respond to challenges
- drive performance and profitability. We keep our clients at the heart of everything we do
- smart, engaged employees are essential to our continued success. We are committed to fostering an environment where every employee feels valued and empowered to reach their full potential. As an essential partner in our shared success, you’ll benefit from inclusive development opportunities, flexible work-life support, paid volunteer days
- vibrant employee networks that keep you connected to what matters most. Join us in shaping the future. As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status
- other characteristics protected by applicable law. Discover more information on jobs at StateStreet.com/careers Read our CEO Statement
Required skills
Cyber SecurityPurple TeamingThreat HuntingDetection EngineeringIncident ResponseSecurity OperationsRed TeamingMITRE ATT&CKEndpoint Detection & ResponseSIEMattack simulationsecurity monitoring