You will be part of a well-established international Information Security team focused on Offensive Security activities. As a Red Team Specialist, you will play a critical role in assessing and enhancing our organization's security defenses.
Your primary responsibility is to simulate attacks on the organization's systems, networks, and applications to identify vulnerabilities and weaknesses; document the findings, and work with stakeholders to ensure that any findings are understood and addressed. You will collaborate closely with other security professionals, including Blue team members (defenders) and Cyber Security Operations Center (CSOC) analysts. Together, you will strengthen the organization's security posture. Your role will contribute to the success of the team and will be reporting to the Head of InfoSec Assurance.
Your key tasks
- Conduct Red team exercises to evaluate the effectiveness of security controls.
- Mimic real-world attacks to identify vulnerabilities and provide actionable recommendations.
- Carry out continuous implementation and testing sophisticated Tactics, Techniques, and Procedures (TTPs) to be engineered as part of the offensive knowledge base (KB).
- Design and implement advanced attack scenarios targeting modern computer networks and cloud environments.
- Contribute to the continuous improvement of the existing offensive knowledge base (KB).
- Execute testing, validation, and verification activities (e.g., field testing, performance testing, etc..) to evaluate and certify the effectiveness and stability of engineered capabilities.
- Collaborate with Blue team members and CSOC team to improve detection and response capabilities.
- Produce reports documenting findings and present them to stakeholders.
- Coordinating the engagement of specialized external companies for penetration tests when these activities cannot be carried out by internal personnel.
- Stay up-to-date with the latest attack techniques and security trends.