Responsibilities
Lead the scoping and definition of red‑team and adversarial simulation engagements, including determining goals, targets, timelines, and rules of engagement.
Coordinate with business units, IT teams, and leadership to gather requirements, understand operational constraints, and ensure testing activities align with business risk.
Develop structured engagement plans, including resource planning, attack paths, testing schedules, and expected deliverables.
Serve as the primary point of contact throughout the engagement lifecycle—ensuring smooth communication, managing expectations, and documenting key decisions.
Track remediation activities, ensuring findings are clearly documented, assigned to responsible teams, monitored to completion, and remediated within defined SLAs.
Host recurring remediation review sessions with stakeholders to validate progress and support their efforts in resolving identified weaknesses.
Maintain a detailed engagement tracker for planning, scheduling, resource allocation, remediation status, and operational metrics.
Support and occasionally lead technical testing activities where required, including reconnaissance, vulnerability validation, and assisting testers with environmental access and logistics.
Prepare and deliver reports, dashboards, and executive summaries that clearly communicate risk, findings, remediation status, and testing outcomes.
Partner with security operations, detection engineering, and infrastructure teams to ensure lessons learned are integrated into continuous improvement efforts.
Stay informed on emerging threats, industry best practices, and advances in offensive security methodologies.
Contribute to the ongoing maturity of the offensive security and red‑team governance model, including process improvements, documentation, and reporting automation.
Maintain a strong focus on customer experience, ensuring all engagements balance security value with business operational needs.
Profile
Bachelor’s degree in Computer Science, Information Security, or equivalent experience.
Minimum of 3+ years in offensive security, penetration testing, vulnerability management, security threat assessment, or related roles.
Experience in scoping and planning technical security assessments (red team, penetration testing, adversarial simulations, or similar).
Strong understanding of offensive security principles, common attack vectors, and the general testing lifecycle.
Demonstrated experience in remediation tracking, stakeholder coordination, and cross‑functional communication.
Ability to translate complex technical findings into clear business risk and actionable remediation plans.
Familiarity with frameworks such as MITRE ATT&CK, OWASP Top 10, NIST, CIS, and ISO security standards.
Strong organizational skills, with proven ability to manage multiple concurrent engagements.
Excellent communication, presentation, and relationship‑building skills.
Relevant certifications such as Security+, CySA+, GSEC, OSCP, CRTO, or similar are a plus.
What We Offer
Support for professional accreditations such as ACCA and study leave.
Flexible arrangements, generous holidays, plus an additional day off for your birthday.
Continuous mentoring along your career progression.
Active sports, events and social committees across our offices.
24/7 support available from our Employee Assistance Program.
The opportunity to invest in our growth and success through our Employee Share Plan.
Plus additional local benefits depending on your location.
Equity
We are committed to ensuring a welcoming recruiting and onboarding process for everyone. We celebrate our differences, and understand that our success relies on diverse perspectives and experiences, working towards shared goals and a common purpose. We take pride in creating a workplace where all our people are empowered to be truly invested in the alternative and bring their whole selves to work.
#J-18808-Ljbffr