Red Team Tester

Red Team TesterJersey City NJ10+ years of proven experience in red team operations, penetration testing, and vulnerability assessmentStrong knowledge of attack techniques, tactics, and procedures (TTPs)Proficiency with red team tools (e.g., Cobalt Strike, Metasploit, BloodHound, etc.)Familiarity with programming and scripting languages (e.g., Python, PowerShell, Bash)Understanding of network protocols, operating systems, cloud security, and security technologiesExperience with social engineering and phishing campaignsKnowledge of lateral movement and privilege escalation techniquesUnderstanding of cryptographic principles and secure communication protocolsKnowledge of threat modeling and risk assessment methodologiesExperience with incident response and forensic analysisProficiency with conducting advanced penetration testing and adversarial simulations to identify security vulnerabilitiesProficiency with developing and executing test plans, scripts, and procedures for red team operationsWorking knowledge of regulatory and industry security standards (e.g. GDPR, HIPAA, PCI DSS, SOX, NIST, DORA and GLBA)Working knowledge of penetration testing using industry best practices such as OWASP top 10, CWE SANS TOP 25 standards and Threat-Led Penetration Testing (TLPT)Proficiency with documenting and reporting security issues and vulnerabilities, providing recommendations for remediation and demonstrating explaining to a wide audienceCollaborate with blue team (defensive) counterparts to improve overall security postureRelevant certifications (e.g., OSCP, CRTO, CEH, CISSP) are a plus

Created: 2025-03-10