Senior Offensive Security Specialist (Red Team)

GMV

Tres Cantos, Spain

2 days ago

Role details

Contract type

Temporary contract

Employment type

Full-time (> 32 hours)

Working hours

Shift work

Languages

English

Job location

Remote

Tres Cantos, Spain

Tech stack

Microsoft Active Directory

Amazon Web Services (AWS)

Software System Penetration Testing

Azure

Bash

Cloud Computing

Mobile Application Software

Python

Network Architecture

Open Web Application Security

Powershell

Red Team (Cyber Security)

Shell Script

Web Applications

Wireless Networks

Wi-Fi Technology

Scripting (Bash/Python/Go/Ruby)

Google Cloud Platform

Mitre Att&ck

Purple Team (Cyber Security)

Job description

In our team you will participate in penetration testing projects and technical assessments on web and mobile applications, network infrastructures, Wi-Fi networks, cloud environments (AWS, Azure, GCP), and emerging components such as artificial intelligence models. In addition, Red Team exercises will be conducted, oriented to simulate real attacks in a controlled manner, as well as Purple Team exercises, working in coordination with defensive teams to strengthen threat detection, response and mitigation.

Activities will include:

Running penetration tests on web applications, mobile, network infrastructure, Wi-Fi networks, cloud environments, artificial intelligence models, etc.
Participate in Red Team exercises, simulating real attacks, and Purple Team exercises, collaborating with defensive teams to improve threat detection and response.
Identify and report vulnerabilities, proposing technical recommendations for effective mitigation.
Collaborate with IT and cybersecurity teams in the implementation of security best practices

Requirements

Do you have experience in Shell Scripting?, For this position, we are looking for cybersecurity or similar graduates with experience in penetration testing in: network infrastructure, web and mobile applications, cloud environments (AWS, Azure, GCP), Active Directory, wireless networks. In addition to experience in Red Team exercises, including planning, execution of simulated attacks, evasion techniques, persistence and exploitation in controlled or real environments.

Scripting skills (Python, Bash, PowerShell) for automation of offensive tasks Understanding of methodologies such as PTES, MITRE ATT&CK, OWASP will also be an asset.

Benefits & conditions

Hybrid working model and 8 weeks per year of teleworking outside your usual geographical area.

Flexible start and finish times, and intensive working hours Fridays and in summer.

Personalized career plan development, training and language learning support.

National and international mobility. Do you come from another country? We can offer you a relocation package.

Competitive compensation with ongoing reviews, flexible compensation and discount on brands.

Wellbeing program: Health, dental and accident insurance; free fruit and coffee, physical, mental and financial health training, and much more!

️ In our recruitment processes you will always have telephone and personal contact, face-to-face or online, with our talent acquisition team. In addition, bank transfers and bank cards will never be requested. If you are contacted through another process, please get in touch with the person responsible for the selection process.

️ We promote equal opportunities in recruitment, and we are committed to inclusion and diversity.