Red Teamer

Red Teamer

City:
Minneapolis

State/Province:
Minnesota

Posting

Start Date:

5/29/26

Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients' most complex digital transformation needs. Leveraging our holistic portfolio of capabilities in consulting, design, engineering, and operations, we help clients realize their boldest ambitions and build future-ready, sustainable businesses. With over 230,000 employees and business partners across 65 countries, we deliver on the promise of helping our customers, colleagues, and communities thrive in an ever-changing world.

For additional information, visit us at

Job Description:

Job Description

Title:

Red Teamer

Duration: FTE / Contract

Location:

USA Remote

Red Teamer (Mid‑Level)

* Execute authorized red team and adversary emulation activities under defined rules of engagement to identify weaknesses in people, process, and technology.

* Participate in planning offensive security engagements, including scoping discussions, attack path selection, and success criteria aligned to realistic threat scenarios.

* Conduct hands-on testing across approved attack surfaces such as external perimeter, internal network, identity (Active Directory), endpoints, and cloud environments.

* Perform reconnaissance and enumeration using OSINT and internal discovery techniques to identify viable initial access and movement opportunities.

* Exploit validated weaknesses (where permitted) to demonstrate real-world business and security impact, including access expansion and lateral movement.

* Execute social engineering simulations (e.g., phishing) when in scope to assess human and procedural resilience.

* Document findings with evidence, maintaining accurate notes, screenshots, tooling artifacts, and timelines throughout the engagement.

* Collaborate with senior red team members and purple team counterparts to validate detections, assess response gaps, and improve defensive controls.

* Contribute to clear, structured reporting, translating technical findings into actionable remediation steps for security and infrastructure teams.

* Continuously improve red team tradecraft by learning new techniques, tools, and attack patterns while staying aligned with organizational policies and safety requirements.

Required Skills & Experience

Experience

* 3-6 years of hands-on experience in offensive security, red teaming, or advanced penetration testing.

* Prior experience operating in enterprise environments with formal authorization and change controls.

Technical Skills

Strong understanding of attack lifecycle and kill chain concepts.

Hands-on experience with:

* Windows, Active Directory, and identity attacks

* Network and endpoint security concepts

* Common vulnerability classes and exploitation techniques

* Working knowledge of phishing and social engineering testing (design and execution under supervision)

* Practical experience using offensive security tools

* Ability to write and modify scripts in Power Shell, Python, or Bash to automate tasks and support testing.

Communication & Professional Skills

* Ability to produce clear technical documentation and findings summaries.

* Comfortable working with cross‑functional teams (SOC, Infra, IAM, Cloud).

* Strong understanding of ethical, legal, and safety boundaries in offensive security.

Good‑to‑Have Skills

* Exposure to cloud security testing (Azure/AWS/GCP), especially identity and misconfiguration scenarios.

* Familiarity with MITRE ATT&CK and mapping findings to tactics and techniques.

* Experience participating in purple team exercises or detection validation.

* Basic understanding of EDR, SIEM, and logging pipelines to support detection gap analysis.

* One or more offensive security certifications (e.g., OSCP, CRTO, GPEN, or similar).

͏

Do

* Ensuring customer centricity by providing apt cybersecurity

* Monitoring and safeguarding the log sources and security access

* Planning for disaster recovery in the event of any security breaches

* Monitor for attacks, intrusions and unusual, unauthorized or illegal activity

* Performs moderately complex log reviews and forensic…