Red Team Specialist

Job Description

• Plan, execute, and report on Red Team engagements, including Application and Infrastructure security, adversary emulation, and other security assessments.
• Simulate advanced persistent threats (APTs) to test detection and response capabilities.
• Develop custom tools, scripts, and exploits to support Red Team operations.
• Collaborate with Blue Teams to improve detection, response, and mitigation strategies.
• Conduct threat modeling and attack surface analysis.
• Document findings and present detailed technical reports to both technical and executive audiences.
• Stay current with emerging threats, vulnerabilities, and offensive security techniques.
• Proficient knowledge of common cybersecurity frameworks and standards such as MITRE ATT&CK, NIST, and OWASP
• Advanced understanding of network protocols, infrastructure, and operating systems (Windows, Linux, macOS), multi-cloud such as Azure and Google cloud.
• Proven experience in exploiting vulnerabilities in web applications, networks, and systems
• Hands-on experience with penetration testing tools such as Metasploit, Burp Suite, Nmap, and Nessus
• Skilled in scripting and programming languages like Python, PowerShell, Bash, and JavaScript
• Strong understanding of social engineering techniques and ability to execute phishing and pretexting attacks
• Excellent analytical, problem-solving, and critical thinking skills
• Ability to communicate complex technical findings clearly and effectively, both verbally and in writing
• Ability to produce high-quality documentation and technical reports
• Experience conducting security assessments of third-party vendors and services
• Understanding of regulatory and compliance requirements related to cybersecurity
• Certifications such as OSCP, OSEP, CEH, or CRTP highly desirable