Red Team Specialist (Cyber Security)

Job Description

• Conduct penetration testing and attack simulations on web applications, APIs, cloud environments, infrastructure, and Active Directory.
• Perform security reviews on source code, system architecture, and application design, and provide remediation recommendations.
• Support secure development initiatives by identifying attack surfaces and security risks in new features.
• Develop Red Team training curricula, hands-on labs, realistic attack scenarios, and technical learning materials.
• Create and maintain technical documentation, walkthroughs, and challenge content aligned with MITRE ATT&CK, OWASP, CWE/CVE, and the NICE Framework.
• Research emerging threats, TTPs, and offensive security techniques to enhance internal tools and training content.

Requirements

• Minimum 3 years of experience in Penetration Testing, Red Teaming, or Offensive Security.
• Mandatory certification: CEH (Certified Ethical Hacker).
• CPENT certification is highly preferred.
• Hands-on experience in web, API, cloud, infrastructure, and Active Directory security assessments.
• Proficient with offensive security tools such as Burp Suite, Metasploit, Nmap, BloodHound, Impacket, Mimikatz, Wireshark, and Hashcat.
• Strong scripting skills in Python, Bash, PowerShell, or JavaScript.
• Experience in developing labs, CTF challenges, or cybersecurity training materials is highly preferred.

Preferred Qualifications

• Familiarity with C2 frameworks such as Sliver, Cobalt Strike, Mythic, or Havoc.
• Experience with Docker, networking, Git, and Ansible.
• Understanding of Detection Engineering, Sigma, Splunk, and Elastic.
• Possess a technical blog, GitHub portfolio, CTF writeups, or experience delivering webinars and workshops.
• Strong communication, documentation, problem-solving, and collaboration skills with a passion for cybersecurity research and knowledge sharing.