Specialist/Sr. Specialist, Red Team

• Conduct realistic offensive security exercises, planning and implementing engagements with a team of skilled hackers.
• Develop and maintain tools and infrastructure to support Red Team exercises.
• Document and present findings to technical audiences and senior leadership, including our Chief Information Security Officer and Chief Information Officer.
• Engage in purple team engagements with our Security Operations Center, simulating various threat levels.
• Research attack techniques and tools to improve engagement success.
• Provide debriefs post-engagement to guide improvement efforts.

You connect the dots:

• Your expertise in offensive security connects vulnerabilities with opportunities for enhanced security.
• Demonstrate your skills in scripting languages and systems knowledge to align technical configurations with security goals and successful vulnerability management.

You are a collaborator:

• Work closely with security and IT teams to develop robust, defense-in-depth controls.
• Collaborate to continuously improve security tactics and procedures, ensuring an integrated approach to global security management.

You are an innovator:

• Spearhead innovative security initiatives, pushing the boundaries of offensive security capabilities.
• Apply your offensive security approach to design new techniques and methodologies that anticipate future threats.

What you'll need (Required):

• Bachelors degree.
• Minimum 3+ years in penetration testing, red teaming, or vulnerability research.
• Proficiency in scripting languages (e.g., Python, Ruby, PowerShell, or Bash)
• Experience with Windows and Linux operating systems.
• At least one entry-level penetration testing certification such as OSCP, OSWA, CPTS, eJPT, CRTP, or PNPT.
• Solid networking knowledge, including Identity and Access Management and Active Directory.
• Experience identifying and remediating OWASP top 10 security flaws.
• Practical experience setting up and applying command and control (C2) frameworks for executing red team operations, including managing communications and coordinating attacks.

What you'll need (Preferred):

• Advanced certifications such as OSED, OSEE, OSCE3, or Red Team Ops II (CRTO II)
• Experience with cloud environments and containerization technologies (e.g., Docker, Kubernetes).
• A CVE disclosure, bug bounty, or open-source community contributions
• Strong system administration skills, including hypervisors
• High curiosity and continuous eagerness to learn beyond immediate security disciplines.