"Alerted.org

Job Description

Lead Red Team Engineer – Bangalore (Hybrid, 3 Days Onsite)

We are seeking a skilled Lead Red Team Engineer to conduct advanced penetration testing, red‑team operations, and exploit development while driving security improvements across the organization. This role is 80% independent, with 20% collaboration through team meetings and cross‑functional engagements.

Responsibilities

Perform penetration testing, red teaming, adversarial simulations, exploit modeling, social engineering, and report delivery.

Lead assessments across core infrastructure, applications, and cloud environments.

Research emerging threats, APT tactics, and vulnerabilities to enhance testing methodologies.

Build custom tools, scripts, and automation (Python preferred).

Contribute to red‑team engagements including C2 setup, phishing campaigns, payload development, and threat emulation.

Produce high‑quality findings, remediation guidance, and narrative‑based red‑team reports.

Mentor junior engineers and support continuous improvement of testing practices.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected] learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Skills and Requirements

4+ years of penetration testing or red‑team experience.

Strong knowledge of MITRE ATT&CK, Cyber Kill Chain, and adversary TTPs.

Hands‑on programming familiarity (Python ideal) for custom tooling.

Experience with Cobalt Strike (or similar C2 frameworks).

Strong skills in memory management, IDs used in C++, performance tuning (from notes if relevant), and exploit techniques.

Preferred certification: OSEP (or equivalent). Experience with AWS, cloud security, or cloud certifications.

Exposure to financial‑platform security environments.

Additional certifications (OSCP, eWPTX, AWS specialty certs).

Assessment Expertise (Nice to Have)

Strong competency in at least two areas: Web/API, External Network, Internal Network, AWS.

Additional exposure to Azure AD, Zero Trust, IAM/SSO, Linux/Mac/Windows security assessments.