Senior Red Team Security Consultant

Senior Red Team Security Consultant – Adversary Simulation Group 1 day ago – Be among the first 25 applicants. Get AI‑powered advice on this job and more exclusive features. Opportunity to work for niche Red Teaming Faction within CyberCX. About The Successful Applicant The successful applicant will be pro‑active in industry. Example activities include: Writing blogs Hosting content on GITHUB Thought leader writing online Public speaking (could be presenting at a conference on a red‑team subject of their choice) Other extracurricular red‑team activities No need to include a cover letter; however, please ensure that your involvement in any of the above is highlighted in your CV. Role Summary We are seeking an experienced Red Team Specialist with a minimum of 3–4 years of hands‑on offensive security experience to join our threat emulation team. The successful candidate will plan, authorise and execute realistic adversary‑style engagements (external perimeter breaches, social engineering, and full kill chain simulations) while maintaining strict legal, ethical and reporting standards. They must be proficient across multiple C2 platforms, skilled in EDR/AV evasion and comfortable operating in both physical/social and technical attack spaces. Key Responsibilities Plan, prepare and execute adversary attack simulations from external perimeter breaches and assumed breach perspectives. Perform reconnaissance (OSINT), red‑team reconnaissance, vulnerability discovery and exploit development as required for engagements. Develop and operate multiple command and control (C2) toolchains for engagements, including payloads, stagers and persistence mechanisms. Conduct social engineering engagements (phishing, vishing, physical access attempts) and develop believable pretexts and campaign artefacts. Bypass, evade and test EDR/AV detection controls in a safe, controlled and ethical manner; document detection gaps and remediation recommendations. Create clear, actionable findings, attack narratives and high‑level summary reports for technical and executive stakeholders. Collaborate with Blue teams in purple exercises and support replay exercises to validate mitigations. Maintain strict adherence to rules of engagement, legal constraints and evidence handling best practices. Mentor junior team members and contribute to tooling, playbooks and standard operating procedures. Required Experience & Competencies 3–4 years of offensive security / red teaming / penetration testing experience, with demonstrable experience running realistic multi‑stage engagements. Hands‑on proficiency with at least two mature C2 frameworks (e.g., Cobalt Strike, Sliver, Covenant, Mythic, PoshC2). Ability to design and operate payloads, stagers, beacons and custom modules. Practical experience bypassing or evading endpoint detection and response (EDR) and antivirus solutions through operational tradecraft, obfuscation, living‑off‑the‑land techniques and custom tooling. Skilled at internet‑facing reconnaissance, attack surface mapping, exploitation of externally exposed services, and chaining initial access to footholds. Experience designing and executing social engineering campaigns (spear phishing, credential harvesting pages, phone pretexting, physical testing) while following legal/ethical rules of engagement. Comfortable with scripting and small exploit development in Python, PowerShell, C, or similar; ability to modify and extend offensive tooling when required. Strong understanding of lateral movement, credential theft, privilege escalation, persistence mechanisms, and cleanup/post‑engagement hygiene. Excellent report writing skills and ability to present technical findings to non‑technical audiences. Clear understanding of authorisation, rules of engagement, evidence retention, and compliance considerations for red team operations. Desired Qualifications & Certifications Education: Bachelor’s degree in computer science, information security, cyber security or equivalent practical experience preferred; advanced or specialised training in offensive security is a strong plus. Strong (recommended): Offensive Security Certified Professional (OSCP) CREST Certified Infrastructure Tester (CCT Inf) or GIAC Advanced Penetration Tester (GXPN) Desirable (additional): CREST Certified Simulated Attack Specialist (CCSAS) or Zeropoint / Pentester Academy red team operator courses (CRTO/CRTE). SANS courses such as SEC564 (Red Team Ops) / SEC699 (Advanced Purple Teaming) or relevant SANS GIAC certifications. Personal Attributes Team player who can collaborate across technical and non‑technical stakeholders. High integrity and evidence of ethical behaviour. Curious, creative, and adaptive problem solver with strong operational focus. Comfortable working under ambiguity and proactively escalating risk when required. Seniority Level Mid‑Senior level Employment Type Full‑time Job Function Information Technology Industry Computer and Network Security Referals increase your chances of interviewing at CyberCX by 2x. #J-18808-Ljbffr