Red Team Lead Engineer

Who we are looking for

As a senior member of the Red Team within the cybersecurity organization, the Red Team Lead Engineer will guide and execute adversary‑emulation activities, threat‑informed security testing, and controlled offensive security operations. The Lead Engineer is responsible for ensuring all testing activities align with organizational standards, authorization requirements, and applicable regulatory expectations, and that they are conducted safely within approved scopes and environments.

Why this role is important to us

The Red Team Lead Engineer will design and lead comprehensive, intelligence‑driven assessments across enterprise applications, platforms, cloud services, and critical infrastructure. These assessments evaluate both technical security controls and the effectiveness of detection, prevention, and incident‑response capabilities across the organization.

This role will collaborate with technical subject‑matter experts, security leadership, process and risk stakeholders, cyber threat intelligence analysts, defensive operations teams, and business system owners to ensure testing scenarios accurately represent realistic adversary behaviors and align with enterprise risk priorities. The Lead Engineer is expected to bring deep technical expertise across core security control domains, including identity and access management, data protection, secure software practices, cloud and infrastructure security, endpoint and detection technologies, network security, and vulnerability and threat management.

Knowledge of security monitoring, detection engineering, and incident‑response workflows further supports effective evaluation of organizational defenses.

As a senior role, the Red Team Lead Engineer will also contribute to methodology refinement, scenario development, process improvement, documentation standards, and cross‑team coordination, helping advance the maturity and effectiveness of the overall testing program.

What you will be responsible for

* Lead and execute adversary‑emulation activities to assess organizational defenses and security control effectiveness.

* Oversee and perform targeted security assessments across applications, infrastructure, cloud platforms, and critical enterprise technologies.

* Guide team members, assign work, and review testing approaches for quality and safety.

* Collaborate with security, technology, and risk stakeholders to design realistic, threat‑informed testing scenarios.

* Evaluate detection and response capabilities and drive improvements through coordinated purple‑team efforts.

* Develop and refine testing methodologies, tooling standards, and reporting practices to mature the program.

* Deliver audit‑ready reports and provide guidance on remediation to reduce identified risks.

What we value

These skills will help you succeed in this role

* Advanced proficiency in offensive security techniques and threat‑informed testing methodologies.

* Strong understanding of adversary behaviors and attack frameworks to guide scenario design.

* Broad, technical knowledge across networks, operating systems, cloud environments, and core security controls.

* Demonstrated analytical ability to identify core issues, interpret risk, and propose practical, evidence‑driven solutions.

* Strong organizational, time‑management, and prioritization skills in dynamic and high‑pressure environments.

* Commitment to maintaining awareness of emerging threats, vulnerabilities, and offensive security trends.

* Ability to develop or refine tools and automate tasks using common scripting languages.

* Demonstrated leadership in analyzing complex issues, shaping direction, and guiding team decision‑making.

* Excellent communication skills with the ability to distill complex technical concepts for diverse audiences.

* High integrity, professionalism, and sound judgment when handling sensitive information and operating under pressure.

Education &

Preferred Qualifications

* Bachelor's degree or equivalent advanced security experience.

* 4-6 years leading and/ or conducting penetration testing or red‑team activities.

* Broad expertise across networks, operating systems, cloud, and security controls.

*…