Red Team Analyst
Posted
Jul 14, 2026 (Yesterday)
Seniority
Senior
Work Model
Not Specified
Type
Not Specified
Category
Salary
Not specified
Skills
Description
We are seeking a skilled Red Team Engineer to simulate real-world cyber adversaries and assess the organization’s detection and response capabilities. The role involves planning and executing adversary emulation, breach & attack simulations, and advanced penetration testing to identify security gaps across people, process, and technology. Key Responsibilities Red Team Operations Conduct red team engagements simulating real-world threat actors and attack scenarios. Perform external and internal reconnaissance , OSINT, and attack surface mapping. Execute initial access techniques , including: Phishing and social engineering Credential attacks Exploitation of exposed services and web vulnerabilities Perform post-exploitation activities such as: Privilege escalation Lateral movement Persistence Credential harvesting Adversary Emulation Emulate threat actor behavior using the MITRE ATT&CK framework . Design and execute attack chains across endpoints, Active Directory, networks, applications, and cloud environments. Maintain strict OPSEC during red team engagements to avoid detection unless intended. Tooling & Infrastructure Use and manage red team tools and frameworks such as: Metasploit, Nmap, Burp Suite, CrackMapExec, BloodHound C2 frameworks (e.g., Cobalt Strike, Sliver, Mythic) Assist in setting up attack infrastructure (domains, redirectors, phishing frameworks, payload hosting). Perform basic evasion techniques against AV/EDR/XDR solutions. Reporting & Collaboration Document findings, attack paths, and evidence in a clear and structured manner. Prepare red team reports , including: Executive summary Attack narrative & kill chain MITRE technique mapping Risk impact and recommendations Support remediation validation and re-testing activities. Required Qualifications Education Bachelor’s degree in Computer Science, Information Security, or a related field (preferred). Experience 1–3 years of experience in red teaming, penetration testing, or offensive security. Hands-on experience with network, web, Active Directory, and endpoint attacks . Technical Skills (Required) Strong understanding of: TCP/IP, DNS, HTTP/S Windows & Linux internals Active Directory fundamentals Knowledge of: OWASP Top 10 vulnerabilities Authentication and authorization flaws Familiarity with: MITRE ATT&CK framework Red Team methodologies and engagement rules Nice to Have / Preferred Experience with: Active Directory attacks (Kerberoasting, AS-REP Roasting, Pass-the-Hash) Phishing simulation campaigns Cloud security testing (AWS/Azure misconfigurations) Scripting skills in Python, Bash, or PowerShell Exposure to EDR/XDR evasion techniques Experience in Red Team Certifications (Preferred, Not Mandatory) CRTO (Certified Red Team Operator) OSCP CRTE / CRTP
Similar Jobs
Sr. Solutions Architect - Agencies
Databricks · USA
Senior Software Engineer - Data Platform
Samsara · USA
Software Developer Sr. - AI-Native .NET/ Azure (Cloud Platform)
Dayforce · USA
Staff Software Engineer, Backend (Lake Analytics Platform)
Affirm · USA