Аналитик по ИТ-безопасности

Overview

What You Will Do

• Conduct Red Team and Purple Team activities for client projects within clearly approved scopes.
• Perform adversary emulation against infrastructure, Active Directory, internal services, applications, and cloud environments.
• Identify security weaknesses and explain their real business impact to clients.
• Prepare clear reports with evidence, prioritized risks, and practical remediation recommendations.
• Work with client-side Blue Team, SOC, infrastructure, and engineering teams when required.
• Support the improvement of internal Red Team methodology, tooling, and delivery processes.
• Propose initiatives that improve the quality, efficiency, and maturity of our offensive security services.
• What we are looking for
• Strong practical experience in Red Team, offensive security, penetration testing, or adversary emulation.
• Solid understanding of Windows, Linux, networking, Active Directory, web security, and cloud security basics.
• Ability to script or automate tasks using Python, Bash, PowerShell, or similar tools.
• Understanding of MITRE ATT&CK, common TTPs, and realistic attack paths.
• Responsible mindset: no chaos, no unnecessary risk, and no activity outside the approved scope.
• Ability to communicate findings clearly to both technical and non-technical stakeholders.
• Strong documentation and reporting skills.
• Important note about the selection process
• We value
• practical experience above everything else
• .
• Certificates, job titles, and previous company names are welcome, but they will not replace demonstrated technical ability.
• The selection process will be based strictly on practical performance.
• Candidates will complete technical tests on virtual machines
• before the interview stage
• .
• Only candidates who successfully pass the practical VM-based tests will move forward in the hiring process.
• Nice to have
• Experience with client-facing security assessments.
• Experience with Purple Team exercises.
• Experience with detection engineering, EDR/SIEM environments, or threat-informed defense.
• Knowledge of cloud environments, CI/CD, containers, or enterprise infrastructure.
• What we offer
• **Salary: 25,000 AED per month.**
• No overtime. Work should fit into the working day.
• Friendly and respectful team.
• Open environment where initiatives are welcomed.
• Medical insurance.
• **Meal allowance: 125 AED per day, Monday to Friday.**
• Lenovo laptop.
• A 1-hour lunch nap is allowed if it helps you stay productive.
• Healthy communication, respect for personal time, and focus on quality rather than looking busy.
• We are looking for someone who can work responsibly on real client projects, deliver high-quality offensive security assessments, and help clients become genuinely more secure.