Senior Security Consultant, Red Team Lead

📋 Description

• • Are you a seasoned cybersecurity professional with a passion for offensive operations and a knack for emulating real-world adversaries? Do you thrive on the challenge of breaching perimeters, navigating complex networks, and demonstrating the tangible impact of security weaknesses?
• • Moose Labs LLC is seeking a Senior Security Consultant, Red Team Lead to spearhead our Vector Command continuous Red Teaming service. In this pivotal role, you will be at the forefront of simulating advanced cyberattacks, ensuring the highest quality of operations, and driving client success through expert breach simulations.
• • As a Red Team Lead, you will oversee a specialized team dedicated to emulating sophisticated adversaries. This involves conducting large-scale reconnaissance, identifying high-value assets, and uncovering exploitable vulnerabilities. Your expertise will be crucial in developing novel attack chains, executing post-compromise objectives, and effectively evading detection by security teams and their controls.
• • This role goes beyond traditional penetration testing; it's about evaluating a client's entire security posture and their defense-in-depth strategy. You will be instrumental in assessing the effectiveness of their security controls and providing actionable insights to enhance their resilience against advanced threats.
• • Your responsibilities will extend to supporting clients through comprehensive external attack surface analysis, meticulous exposure reconnaissance, and the seamless integration of accounts and tools. You will be responsible for preparing detailed monthly Red Team reports, clearly articulating findings and recommendations to both technical and non-technical stakeholders.
• • Daily collaboration with fellow Vector Command operators is essential. You will maintain a keen awareness of emerging vulnerabilities, shifts in customer attack surfaces, and evolving changes within diverse customer environments. This proactive approach ensures our Red Team operations remain cutting-edge and highly effective.
• • A key aspect of this leadership position is developing new Red Team Tactics, Techniques, and Procedures (TTPs). You will be instrumental in crafting and refining methodologies for conducting black-box Red Team operations against a diverse group of customers throughout the year.
• • You will provide invaluable guidance and mentorship to your pod members, assisting them with various aspects of their operations, including social engineering, exploit development, and external network penetration testing. Your leadership will foster a culture of continuous learning and skill development within the team.
• • Managing Red Team infrastructure and initial access payloads will be a core responsibility. You will ensure the robustness, security, and effectiveness of the tools and infrastructure used to conduct operations.
• • You will be directly responsible for the quality of customer deliverables, ensuring that all testing activities and findings produced by your pod are accurate, comprehensive, and clearly communicated.
• • Building and maintaining strong, positive relationships with clients is paramount. You will work closely with them to understand their unique business needs, security challenges, and strategic objectives, tailoring Red Team operations to meet these specific requirements.
• • Leading monthly client meetings and daily stand-up meetings with the Vector Command pod will be a regular part of your role. These interactions ensure alignment, facilitate communication, and drive progress.
• • You are encouraged to participate in industry conferences and professional organizations, contributing to the broader cybersecurity community and staying abreast of the latest trends and best practices.
• • You will create additional value for clients by providing continual insights and consultative advice, drawing upon your extensive experience with their specific environments, industries, established standards, and leading practices.
• • A critical skill will be your ability to translate complex technical concepts into clear, concise language understandable to non-security personnel, enabling effective communication and buy-in for recommended security improvements.
• • Mentoring and coaching junior staff is a key component of this role. You will foster their growth, encourage project contributions, and promote a culture of knowledge sharing within the team, developing the next generation of Red Team experts.
• • This role demands strong technical competencies, underpinned by previous technical consulting experience, enabling you to effectively lead and execute complex security engagements.
• • You will be expected to adapt tradecraft to emulate the latest adversary TTPs, ensuring our simulations remain relevant and challenging.
• • You will develop, deploy, and maintain Command and Control (C2) infrastructure as necessary, ensuring its security and operational effectiveness.
• • You will be responsible for the creation, modification, and implementation of TTPs that effectively evade security controls, demonstrating a deep understanding of defensive mechanisms.
• • A proactive mindset for designing offensive operations to gain initial access, laterally move, and persist within customer environments is essential.
• • You will leverage modern penetration testing tools and methods, coupled with a deep understanding of network and web-based application security concepts, Windows/Linux/UNIX internals, and social engineering techniques and tactics.
• • You will utilize your expertise in multiple interpreted and compiled programming languages to develop and deploy custom tools and payloads.
• • You will possess knowledge of common regulatory structures, obligations, and IT governance frameworks, enabling you to align security recommendations with compliance requirements.
• • You will lead long-term red team operations, demonstrating the ability to effectively manage and guide teams of penetration testers during engagements.
• • You will embody Moose Labs LLC's core values, fostering a culture of excellence that drives meaningful impact and collective success.
• • We believe that diverse teams drive innovation. If you are excited about this role and believe your experience can make a significant impact, we encourage you to apply.