×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Senior Red Teamer

Job in Kearney, Buffalo County, Nebraska, 68847, USA
Listing for: Nelnet, Inc.
Full Time position
Listed on 2026-06-01
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below

Overview

Nelnet is a diversified company that serves students, consumers and enterprises. The Senior Red Teamer is responsible for planning and executing full‑scope offensive security engagements that simulate advanced persistent threats against the enterprise.

Responsibilities
  • Own and contribute to the full lifecycle of red team engagements – scoping, rules of engagement, threat modeling, operational planning, execution, deconfliction, and post‑engagement reporting – across external network, assumed breach, and purple team scenarios.
  • Ensure engagements are structured, documented, and executed in alignment with program standards and organizational risk appetite.
  • Conduct advanced penetration testing and adversary simulation across all technical and physical attack surfaces, including web applications, APIs, servers, network infrastructure, cloud environments (IaaS, SaaS, PaaS), Windows Active Directory, mobile applications, and physical access controls.
  • Develop and maintain custom offensive tooling, exploits, payloads, and evasion techniques to support engagements and reduce reliance on commodity or signature‑based tooling.
  • Research and operationalize current and emerging threat‑actor TTPs, translate findings into engagement scenarios, attack chains, and internal playbooks.
  • Provide technical mentorship and guidance to junior red team practitioners.
  • Collaborate with blue team, SOC, and defensive stakeholders to validate detection and response capabilities, support purple team exercises, and deliver actionable feedback.
  • Author technically rigorous, well‑structured reports and executive‑level summaries.
  • Contribute to the development and ongoing refinement of red team program materials – engagement frameworks, methodology documentation, internal playbooks, and capability roadmaps.
  • Prepare and deliver briefings on red team findings and program activity to technical leads, security leadership, and executive stakeholders.
Education and Experience
  • Knowledge equivalent to a Bachelor's degree in Computer Science, Information Security, or related field, or equivalent professional experience.
  • 5–8 years of hands‑on experience in a penetration testing or red team role, or equivalent offensive security experience.
  • Demonstrated experience leading red team engagements across multiple domains.
  • Experience developing custom offensive tooling, scripts, or capabilities (Power Shell, Python, C/C++, C#, Bash).
  • Experience operating and customizing command‑and‑control frameworks (e.g., Cobalt Strike, Havoc, Sliver).
  • Experience communicating risk to engineering teams and non‑technical management.
  • Experience producing high‑quality technical and executive‑level reports.
  • Active industry certifications required; advanced offensive security certifications preferred (OSCP, OSED, CRTO, CRTE).
Competencies
  • Deep expertise in penetration testing methodologies across web applications, APIs, network infrastructure, cloud environments, and Windows Active Directory.
  • Deep expertise with offensive security tooling and the ability to extend or replace tools.
  • Experience with command‑and‑control frameworks – deployment, customization, and operational use.
  • Knowledge of MITRE ATT&CK and ability to map engagement activity to threat‑actor methodologies.
  • Experience developing attack plans for varied red team scenarios.
  • Experience with EDR, firewall, IDS/IPS, and AV evasion techniques.
  • Working knowledge of SOC workflows and detection logic.
  • Knowledge of indicators of compromise associated with common offensive tools and techniques.
  • Proficiency in scripting and development (Power Shell, Python, Bash, C/C++, C#, or equivalent).
  • Familiarity with vulnerability classification frameworks (CVSS, OWASP Top
    10, CVE).
  • Solid understanding of infrastructure deployment and systems administration in on‑premises and cloud environments.
  • Solid understanding of Windows Active Directory architecture and associated attack paths.
  • Solid understanding of Linux operating systems and common exploitation techniques.
  • Familiarity with IT regulatory frameworks and compliance requirements as they apply to offensive testing scope and rules of engagement.
  • Strong organizational, written, verbal, and…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search