Red team offensive security specialist
Posted: Jan. 31, 2024, 11:38 a.m. - Full Time - Gurugram mumbai bengaluruJoin our team as a Red Team Offensive Security Specialist! Are you passionate about outsmarting cyber threats? We need someone with at least 2 years of experience who loves Active Directory Attack, Advisory Simulation, and bypassing techniques. Here's what you'll do: Responsibilities:
-
Conduct advanced penetration testing and red team operations to identify vulnerabilities and weaknesses in our systems and infrastructure.
-
Develop and execute sophisticated attack scenarios, mimicking real-world adversaries to assess our security posture effectively.
-
Collaborate with cross-functional teams to provide actionable recommendations for improving defensive strategies and mitigating potential risks.
-
Stay updated on the latest security threats, attack techniques, and defensive measures to continuously enhance our security posture.
-
Contribute to the development of tools, scripts, and methodologies to streamline red team operations and improve overall efficiency.
Requirements:
-
Minimum 2 years of experience in offensive security, with a focus on red team operations.
-
Mastery of Network and Web Attacks, including but not limited to reconnaissance, exploitation, and post-exploitation activities.
-
Proficiency in Active Directory Attack techniques and methodologies. -Please consider applying for this job only if you are familiar with the following attacks.
1. Pass-the-Hash (PtH) Attack 2. Golden Ticket Attack 3. Kerberoasting 4. DCSync Attack 5. Domain Password Spraying 6. ACL Abuse 7. ADCS Attacks
-
Proficiency in leveraging Phishing and OSINT techniques to infiltrate target environments and gather critical intelligence.
-
Hands-on experience with Advisory Simulation, including planning, execution, and reporting.
-
In-depth knowledge of bypassing techniques used to circumvent security controls and evade detection.
-
Familiarity with the MITRE ATT&CK framework and its application in offensive security operations.
-
Proficiency in coding skills (Python, PowerShell, C#, Golang etc.) to develop and modify tools/scripts as needed.
-
Strong problem-solving skills and the ability to think creatively to overcome complex security challenges.
-
Excellent communication skills with the ability to articulate technical concepts to both technical and non-technical audiences.
-
Experience in using tools like Cobalt Strike, Havoc C2, Sliver C2, Bloodhound, Powerview, and CME is essential for this position.