Director - Offensive Security - Red Team
About the role
The Director of Offensive Security role at FICO is a strategic leadership position focused on shaping the company's proactive security posture through Red Teaming, Threat Intelligence, and Threat Hunting. This role requires a deep understanding of AI tools for Red teaming, the MITRE ATT&CK framework, cloud security, and AI security.
Responsibilities
- Define and execute a long-term roadmap for offensive security that aligns with business objectives and the evolving threat landscape.
- Partner with blue teams and engineering to ensure offensive findings are translated into automated detection rules and architectural improvements.
- Oversee the planning and safe execution of realistic, multi-stage attack simulations (Red and Purple Team exercises) in FICO environments.
- Ensure the Red Team effectively emulates the Tactics, Techniques, and Procedures (TTPs) of relevant threat actors.
- Drive the development of custom exploits, attack tools, and automation frameworks to stay ahead of off-the-shelf security controls.
- Lead the collection, analysis, and targeted distribution of actionable intelligence regarding emerging cybercrime, espionage, and hacktivism.
- Leverage commercial and open-source intelligence feeds to predict how new vulnerabilities might impact the organization's specific architecture.
- Manage a hypothesis-driven threat hunting program that identifies "silent failures" in detection logic before they lead to breaches.
- Analyze massive datasets (EDR, SIEM, cloud logs) to find patterns of behavior indicating advanced persistent threats.
- Use hunt findings to continuously tune and improve the efficacy of existing security tools like firewalls, XDR, and SOAR platforms.
Requirements
- In-depth experience in offensive security.
- Proven leadership experience managing and developing high performing, cross-functional teams within dynamic, multifaceted management environments.
- Hands-on experience as Red Teamer.
- Expertise in using AI tools for Red teaming.
- Deep understanding of the MITRE ATT&CK framework, cloud security (AWS/Azure/GCP), AI security and operating system internals.
- Demonstrated experience utilizing automation and AI to enhance the quality and productivity of offensive teams.
- Advanced industry certifications such as OSCP, OSEP, CRTO, or CISSP are highly preferred.
- Strong ethical judgment, adaptability in high-pressure crises, and the ability to mentor high-performing technical teams.
Qualifications
- Advanced degree in Computer Science, Cybersecurity, or a related field.
- At least 10 years of relevant experience in offensive security, threat hunting, or similar roles.
- Experience working in a fast-paced, agile environment.
- Excellent communication and interpersonal skills.
Skills
- Experience with AI and machine learning tools for Red teaming.
- Knowledge of the MITRE ATT&CK framework.
- Experience with cloud security (AWS/Azure/GCP).
- Experience with AI security and operating system internals.
- Experience with threat hunting and incident response.
- Experience with data analysis and visualization tools.
Benefits
FICO offers a comprehensive benefits package including health insurance, retirement plans, paid time off, and more. The company also provides opportunities for professional development and growth through training programs and mentoring initiatives.
Pay
The targeted base pay range for this role is $168,000 to $264,000, reflecting differences in candidate knowledge, skills, and experience.
Schedule
The schedule for this role is full-time.