Offensive Security Engineer - Red Team Operator

Bonhill Partners
Charing Cross, United Kingdom
1 month ago

Role details

Contract type
Temporary contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
£ 90K

Job location

Charing Cross, United Kingdom

Tech stack

Microsoft Windows
Amazon Web Services (AWS)
Amazon Web Services (AWS)
Amazon Web Services (AWS)
Apple Mac Systems
Software System Penetration Testing
Azure
Bash
Border Gateway Protocol
Ubuntu (Operating System)
CentOS
Cisco PIX
Cloud Computing Security
Cloud Engineering
Complex Networks
Computer Security
Computer Networks
Dynamic Host Configuration Protocol
Debian Linux
Linux
DevOps
Digital Assets
DNS
Ethernet
Enhanced Interior Gateway Routing Protocol
Internet Protocol Security (IP SEC)
Intrusion Detection Systems
Virtual Private Networks (VPN)
Multi-protocol Systems
Python
Network Security
Lightweight Directory Access Protocols (LDAP)
Linux Distribution
Windows Server
Nagios
Network Architecture
Networking Basics
Network Installation Services
Network Monitoring
Routing
Network Protocols
Open Shortest Path First
Paessler Router Traffic Grapher
Public Key Infrastructure
Powershell
Systems Development Life Cycle
Ansible
Red Team (Cyber Security)
Security Information and Event Management
Solaris (Operating System)
TCP/IP
Virtual Local Area Networks
vSphere
Wide Area Networks
Snort (Software)
Scripting (Bash/Python/Go/Ruby)
Identity Services Engine
Google Cloud Platform
Load Balancing
Cloud Platform System
System Availability
Firewalls (Computer Science)
Juniper
SolarWinds (Software)
Network Support
Cybercrime
Routing & Switching
ISO/IEC 27002
Terraform
Splunk
Vulnerability Analysis

Job description

  • Conduct advanced penetration testing and red team operations across diverse environments, including cloud platforms such as AWS, Google Cloud Platform, and Azure.
  • Develop and execute simulated cyber-attacks leveraging knowledge of network protocols (TCP/IP, BGP, OSPF), routing protocols, VPNs, IPsec, IDS/IPS systems, firewalls (Cisco ASA, Juniper), and network architecture.
  • Exploit vulnerabilities in operating systems (Linux distributions such as Debian, CentOS, Ubuntu; Windows; macOS; Solaris) and applications to assess security controls.
  • Utilise scripting languages (Python, Bash, PowerShell) for automation of attack techniques and tool development.
  • Analyse network traffic using SIEM tools like Splunk or SolarWinds; monitor network activity with PRTG or Nagios; manage network security devices including Cisco ISE and Palo Alto firewalls.
  • Implement and evaluate encryption standards (PKI, SSL/TLS), high availability configurations, disaster recovery plans, load balancing solutions, and cloud infrastructure security measures.
  • Assist in incident response activities by identifying breaches or vulnerabilities through penetration tests and vulnerability assessments aligned with NIST standards (ISO 27002).
  • Maintain detailed documentation of attack simulations, findings, remediation recommendations, and compliance reports following SDLC processes.
  • Collaborate with IT teams on network support tasks involving DNS, DHCP, LDAP/Active Directory integration, network installation, system administration (Windows/Linux/Unix), VMware vSphere environments, and cloud architecture deployment.

Requirements

Do you have experience in Network security?, We are seeking a highly skilled Offensive Security Engineer specialising as a Red Team Operator to join an Investment Bank's cybersecurity team. The successful candidate will be responsible for simulating adversarial attacks to evaluate and enhance the organisation's security posture. This role requires deep expertise in computer networking, information security, and system administration, with a focus on identifying vulnerabilities within complex network architectures and cloud environments. The position offers an exciting opportunity to work with cutting-edge security tools and methodologies to protect critical infrastructure and data assets., * Proven experience in offensive security operations within enterprise environments or cybersecurity agencies.

  • Strong understanding of computer networking concepts including LAN/WAN architectures, VLANs, MPLS networks, Ethernet switching/routing protocols (BGP, EIGRP), OSPF.
  • Hands-on expertise with network security tools such as IDS/IPS systems (Snort), SIEM platforms (Splunk), firewalls (Cisco ASA), VPNs (IPsec), load balancers, high availability solutions.
  • Familiarity with operating systems including Linux distributions (Debian, CentOS, Ubuntu), Windows Server variants; experience with system administration tasks.
  • Proficiency in scripting languages like Python or Bash for automation; experience with DevOps tools such as Ansible or Terraform is advantageous.
  • Knowledge of cloud computing platforms including AWS (EC2, S3), Google Cloud Platform (GCP), Azure; understanding of cloud infrastructure security best practices.
  • Awareness of industry standards such as NIST cybersecurity framework and ISO 27002; experience implementing security controls compliant with these standards.
  • Ability to pass background checks and demonstrate a strong commitment to information security principles.
  • Relevant certifications such as OSCP, CISSP, CEH or equivalent are highly desirable. This role offers an engaging environment for cybersecurity professionals eager to challenge their skills while contributing to organisational resilience against cyber threats.

Apply for this position