Principal Security Consultant (Red Team Operator - US)
NetSPI · Minneapolis, MN · 5 days ago
RemoteRemoteInformation TechnologyFull-time
Responsibilities
- Lead comprehensive red team operations by serving as the primary technical operator on both threat intelligence-driven and standard adversarial engagements.
- Strategically plan scenario execution, orchestrate team resources and timelines, and make critical technical decisions that drive successful outcomes in complex, high-stakes environments.
- Leverage deep technical expertise in operating systems, network architecture, and infrastructure fundamentals to execute sophisticated attack chains and navigate complex enterprise environments during red team operations.
- Pioneer cutting-edge offensive security capabilities in coordination with our dedicated malware and capability developers by researching, developing, and operationalizing innovative techniques, proprietary tools, and advanced methodologies that push the boundaries of adversarial simulation and red team effectiveness.
- Offer mentorship or coaching to growing team members, while sharing knowledge externally through blogs, webinar presentations, or presenting at conferences.
- Collaborate with cross-functional teams on key activities, including scoping initiatives, providing subject matter expertise in high-stakes sales presentations, and contributing strategic technical insights to marketing campaigns that showcase our capabilities.
- Help define, document, and continuously refine internal technical processes, service methodologies, and TTPs that standardize excellence across all engagements.
- Perform administrative tasks related to day-to-day consulting activities to ensure smooth business and engagement operations.
Requirements
- Minimum Qualifications:
- Bachelor’s degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience.
- 5+ years of work experience performing adversarial simulation related engagements.
- Recognized Red Team or Penetration testing specific qualifications such as CCSAS, CCSAM, CRTO, OSED, OSCE (GXPN, GPEN, OSCP, GWAPT or similar certifications may also be considered).
- Familiarity with offensive tools, based on applicable skillset.
- Deep technical familiarity with offensive and defensive IT concepts and protocols.
- Working knowledge of Windows, Linux and MacOS operating systems internals.
- Extensive understanding of the MITRE ATT&CK framework, OWASP Top 10, and other security frameworks.
- Ability to work independently and as part of a team.
- Proficient communication skills, both written and verbal.
- Willingness to travel up to 10% minimum.
- Preferred Qualifications:
- Ability to provide technical and QA oversight on the Red Team service line.
- Experience in one or more of the following programming or scripting languages (e.g., Python, PowerShell, Perl, C, C++, C#, Java, Nim, Rust, etc.).
Qualifications
- Minimum Qualifications:
- Bachelor’s degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience.
- 5+ years of work experience performing adversarial simulation related engagements.
- Recognized Red Team or Penetration testing specific qualifications such as CCSAS, CCSAM, CRTO, OSED, OSCE (GXPN, GPEN, OSCP, GWAPT or similar certifications may also be considered).
- Familiarity with offensive tools, based on applicable skillset.
- Deep technical familiarity with offensive and defensive IT concepts and protocols.
- Working knowledge of Windows, Linux and MacOS operating systems internals.
- Extensive understanding of the MITRE ATT&CK framework, OWASP Top 10, and other security frameworks.
- Ability to work independently and as part of a team.
- Proficient communication skills, both written and verbal.
- Willingness to travel up to 10% minimum.
- Preferred Qualifications:
- Ability to provide technical and QA oversight on the Red Team service line.
- Experience in one or more of the following programming or scripting languages (e.g., Python, PowerShell, Perl, C, C++, C#, Java, Nim, Rust, etc.).
- Strategic problem-solving abilities.
- High-performance team dynamics.
- Innovative methodologies.
- Technical oversight on the Red Team service line.
- Technical expertise in operating systems, network architecture, and infrastructure fundamentals.
- Researching, developing, and operationalizing innovative techniques, proprietary tools, and advanced methodologies.
- Mentorship or coaching to growing team members.
- Technical and QA oversight on the Red Team service line.
- Experience in one or more of the following programming or scripting languages (e.g., Python, PowerShell, Perl, C, C++, C#, Java, Nim, Rust, etc.).
Benefits
- Trusted by the top 10 U.S. banks and Fortune 500 companies worldwide.
- On an exciting growth journey as we disrupt and improve the proactive security market.
Pay
- Competitive compensation package.
Schedule
- 8-hour workday, with occasional evenings or weekends necessary to meet project deadlines or critical needs.