We are seeking two skilled and motivated Security Assessment & Red Team Specialists to join our cybersecurity team. The ideal candidates will have hands-on experience in penetration testing, red teaming, and adversary emulation. You will be responsible for conducting advanced offensive security operations to assess, validate, and improve the organization’s security posture.
Key Responsibilities:
- Conduct continuous security assessments and penetration testing of applications, systems, and infrastructure.
- Plan and execute red team operations, simulating advanced persistent threats (APT) and real-world cyberattacks.
- Perform attack simulations and adversary emulation to test incident detection and response capabilities.
- Identify gaps in security controls, exploit vulnerabilities, and recommend effective remediation strategies.
- Validate the effectiveness of existing security controls and provide insights for improvement.
- Collaborate with blue teams and other stakeholders to share findings and enhance detection capabilities.
- Document methodologies, findings, and reports clearly for both technical and non-technical audiences.
- Stay up to date with the latest TTPs (Tactics, Techniques, and Procedures), threat intelligence, and security tools.
Required Skills & Qualifications:
- 3 to 5 years of hands-on experience in penetration testing, ethical hacking, or red teaming.
- Proficiency in tools such as Cobalt Strike, Metasploit, Burp Suite, Nmap, Nessus, BloodHound, Empire, etc.
- Solid understanding of MITRE ATT&CK framework, threat modeling, and adversary simulation.
- Experience with scripting and automation using Python, PowerShell, or Bash.
- Strong knowledge of Windows, Linux, and network infrastructure.
- Familiarity with security frameworks such as NIST, ISO 27001, or OSSTMM is a plus.
- Relevant certifications such as OSCP, CRTO, CRTP, OSCE, GXPN, or CPT are highly desirable.
