Offensive Security Engineer - Red Team Operator
Role details
Job location
Tech stack
Job description
- Conduct advanced penetration testing and red team operations across diverse environments, including cloud platforms such as AWS, Google Cloud Platform, and Azure.
- Develop and execute simulated cyber-attacks leveraging knowledge of network protocols (TCP/IP, BGP, OSPF), routing protocols, VPNs, IPsec, IDS/IPS systems, firewalls (Cisco ASA, Juniper), and network architecture.
- Exploit vulnerabilities in operating systems (Linux distributions such as Debian, CentOS, Ubuntu; Windows; macOS; Solaris) and applications to assess security controls.
- Utilise scripting languages (Python, Bash, PowerShell) for automation of attack techniques and tool development.
- Analyse network traffic using SIEM tools like Splunk or SolarWinds; monitor network activity with PRTG or Nagios; manage network security devices including Cisco ISE and Palo Alto firewalls.
- Implement and evaluate encryption standards (PKI, SSL/TLS), high availability configurations, disaster recovery plans, load balancing solutions, and cloud infrastructure security measures.
- Assist in incident response activities by identifying breaches or vulnerabilities through penetration tests and vulnerability assessments aligned with NIST standards (ISO 27002).
- Maintain detailed documentation of attack simulations, findings, remediation recommendations, and compliance reports following SDLC processes.
- Collaborate with IT teams on network support tasks involving DNS, DHCP, LDAP/Active Directory integration, network installation, system administration (Windows/Linux/Unix), VMware vSphere environments, and cloud architecture deployment.
Requirements
Do you have experience in Network security?, We are seeking a highly skilled Offensive Security Engineer specialising as a Red Team Operator to join an Investment Bank's cybersecurity team. The successful candidate will be responsible for simulating adversarial attacks to evaluate and enhance the organisation's security posture. This role requires deep expertise in computer networking, information security, and system administration, with a focus on identifying vulnerabilities within complex network architectures and cloud environments. The position offers an exciting opportunity to work with cutting-edge security tools and methodologies to protect critical infrastructure and data assets., * Proven experience in offensive security operations within enterprise environments or cybersecurity agencies.
- Strong understanding of computer networking concepts including LAN/WAN architectures, VLANs, MPLS networks, Ethernet switching/routing protocols (BGP, EIGRP), OSPF.
- Hands-on expertise with network security tools such as IDS/IPS systems (Snort), SIEM platforms (Splunk), firewalls (Cisco ASA), VPNs (IPsec), load balancers, high availability solutions.
- Familiarity with operating systems including Linux distributions (Debian, CentOS, Ubuntu), Windows Server variants; experience with system administration tasks.
- Proficiency in scripting languages like Python or Bash for automation; experience with DevOps tools such as Ansible or Terraform is advantageous.
- Knowledge of cloud computing platforms including AWS (EC2, S3), Google Cloud Platform (GCP), Azure; understanding of cloud infrastructure security best practices.
- Awareness of industry standards such as NIST cybersecurity framework and ISO 27002; experience implementing security controls compliant with these standards.
- Ability to pass background checks and demonstrate a strong commitment to information security principles.
- Relevant certifications such as OSCP, CISSP, CEH or equivalent are highly desirable. This role offers an engaging environment for cybersecurity professionals eager to challenge their skills while contributing to organisational resilience against cyber threats.