Hackajob is collaborating with CoreTech Security to connect them with exceptional professionals for this role. At CoreTech we have a rich pedigree of conducting world-class security research across a multitude of platforms. Having established and delivered many successful projects in this area over the years, we are expanding into adjacent areas. We are hiring Red Team Operators at all levels of seniority to help grow and deliver a new service.
You will be part of a long-term offensive security capability with backing, a clear mandate, and a roadmap for growth. Our Red Team will operate with a realistic adversary mindset, focusing on end-to-end attack simulation, stealth, and meaningful outcomes rather than checklist-driven testing.
As part of this team you will
* Plan and execute full-scope red team operations, simulating real-world threat actors as well as honing your own tradecraft
* Conduct red team engagements across:
* Network infrastructure, cloud, and Active Directory environments
* Web applications and APIs
* Social engineering and phishing campaigns
* Configure and use C2 frameworks for command and control
* Use network and endpoint detection (EDR) evasion techniques
* Perform post-exploitation activities including privilege escalation, lateral movement, persistence, and exfiltration
* Develop and modify custom tooling, payloads, and infrastructure
* Produce high-quality reports that tell the story of the attack and drive remediation
Required Experience
* Commercial experience of working on full-scope engagements in a similar role as a Red Team Operator, including being able to lead engagements
* Good understanding of networking, network technologies, DNS, routing, firewalls, IDS, IPS and common VPN solutions
* Experience with regulatory-driven engagements such as CBEST, TIBER, or GBEST.
* Linux server configuration experience
* Experience using Infrastructure-as-Code to deploy infrastructure
* Experience building and configuring an Active Directory environment (as a lab for example)
* Understanding of the common detection tools and services available to customers
* Experience recommending relevant mitigations and detection techniques to customers
* Ability to explain why an attack technique worked and how a customer can mitigate against it in future
* Good knowledge of existing tools and techniques and how to customise them
* Ability to customise existing code and write scripts without support
Please note, due to sensitivity of the role, successful applicants must be British Citizens with at least 5 years residency and willing to undergo extensive background checks to obtain a security clearance. Ideally you will already hold active Developed Vetting security clearance.
Desirable experience
* A relevant certification such as those offered by Offensive Security (OSEP, OSEE, OSWE), CREST (CCRTS, CCSAS, CCT), Cyber Scheme (CSTL, Red Team Manager) and SANS
Work Benefits
* Promotions are based on technical excellence and reviewed regularly
* 25 days holiday per year (with bank holidays on top), option to buy up to 5 days per year
* Level up with an extra day of holiday per year, up to an extra 5 days, starting from 2 years service
* We offer financial support to cover HMRC allowable costs of relocating if you’re moving to the area
* Training and development opportunities to support your career aspirations
* OReilly books subscription which provides access to huge range of technical books
* Regular events including internal technical conferences, company socials and pizza-fuelled lunchtime seminars
* Free seasonal fruit, tea, coffee, milk, squash and hot chocolate
Health Benefits
* Private online GP, and a helpline to speak with various healthcare professionals.
* Physiotherapists, osteopaths or chiropractors for muscle, bone, and joint pain.
* Mental health - counselling, and specialist consultations and treatment with psychologists and cognitive behavioural therapists.
* Annual Health assessment.
Financial Benefits
* A company bonus scheme so that everybody is rewarded for company success. This is an annual award that is based on the company hitting its targeted forecast. We have achieved this every year to date.
* 8% company contribution to pension with no minimum requirement for employee contribution.
* Death in Service cover of 4x base salary.
Lifestyle Benefits
* Enhanced maternity/paternity/adoption leave: 12 weeks maternity leave at full pay as soon as you join, further enhanced to 20 weeks full pay from 2 years’ service. 2 weeks paternity leave at full pay as soon as you join, further enhanced to 4 weeks full pay from 2 years’ service.
* Enhanced cycle-to-work scheme including the ability to purchase a bike over £1,000 (e-bikes, specialist cycles and trikes allowed).
J-18808-Ljbffr