Cyber Security Red Team

Location: Hyderabad/ Bangalore

Required skills:

• At least 8+ years of experience in penetration testing and red team operations.
• Deep understanding of Transmission Control Protocol / Internet Protocol (TCP/IP) protocols, devices, security mechanisms and how they operate.
• Strong understanding of network security threats including APT, botnets, Distributed Denial of Service (DDoS) attacks, worms, and network exploits.
• Adversary Emulation: Design and execute end-to-end red team engagements, mimicking the TTPs of specific threat actors relevant to our industry.
• Full-Kill Chain Execution: Lead all phases of an engagement: Reconnaissance (OSINT), Initial Access (Phishing, Social Engineering), Persistence, Lateral Movement, and Objective Achievement (Data Exfiltration).
• Stealth Operations: Conduct operations while avoiding detection by EDR, SIEM, and SOC analysts. Develop custom payloads and bypass techniques for modern security controls.
• Infrastructure Management: Build and maintain covert "attack infrastructure," including C2 (Command & Control) servers, redirectors, and domain fronting.
• Collaborative Debriefs: Participate in "Purple Team" exercises. Instead of just throwing a report over the fence, work alongside the Blue Team to help them build better detection signatures.
• Tool Development: Write custom scripts and tools (in Python, Go, or PowerShell) to automate repetitive tasks or exploit unique vulnerabilities where off-the-shelf tools fail.
• Reporting: Translate complex technical findings into actionable executive summaries that highlight business risk, not just technical flaws.
• Excellent written and verbal communication skills and have demonstrated ability to present material to senior officials.
• Highly self-motivated requiring little direction.
• Demonstrates creative/out-of-the-box thinking and good problem-solving skills.
• Sense of urgency and attention to detail
• Flexible to provide coverage in US morning hours on a need-basis, and as required

Desirable skills:

Strong knowledge of an enterprise architecture

Ability to obtain a strong and ongoing understanding of the technical details involved in current APT threats and exploits involving various operating systems, applications and networking protocols.

Knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors.

Understanding of cloud-based architectures and highly distributed big data architectures

Experience with application security testing tools, such as the Metasploit framework and Burp Suite

One or more of these certifications

o CEH: Certified Ethical Hacker

o CPT: Certified Penetration Tester

o CEPT: Certified Expert Penetration Tester

o GPEN: GIAC Certified Penetration Tester

o OSCP: Offensive Security Certified Professional