Consultant, Security Testing and Red Teaming
Description
The Consultant, Security Testing and Red Teaming is a core delivery role within the offensive security practice, responsible for independently executing penetration testing engagements and contributing to advanced offensive security activities.
This role has a strong emphasis on hands-on penetration testing across web applications, infrastructure, Active Directory, and cloud environments. Consultants are expected to operate with a high degree of autonomy on scoped engagements, apply sound technical judgement, and produce high-quality, defensible findings and reports for clients.
While penetration testing is the primary focus, Consultants are also expected to demonstrate the curiosity and technical breadth to grow into broader offensive security disciplines over time, including adversary simulation, red teaming, tooling development, and security research.
Roles and Responsibilities
Deliver end-to-end penetration testing engagements with minimal supervision, including:Web application penetration testingInternal and external network penetration testingActive Directory security assessmentsCloud and hybrid environment testingMobile application penetration testingIOT penetration testingOT penetration testingPerform manual vulnerability discovery, validation, and exploitation beyond automated scanning.Identify attack paths, chain vulnerabilities, and assess real-world business impact.Exercise sound judgement in exploitation depth, data handling, and risk management during testing.Maintain clear, detailed testing notes, evidence, and attack logs to support reporting and quality review.Produce high-quality technical findings with accurate severity assessment and actionable remediation guidance.Develop structured penetration testing reports, and support client walkthroughs and debriefs.Engage professionally with clients during kick-off sessions, testing clarification, and results discussions.Participate in peer reviews of testing approaches and reports to uphold delivery quality standards.Continuously develop technical depth across offensive security techniques, platforms, and tooling.Contribute to security testing playbooks, internal knowledge sharing and peer learning.Where appropriate, contribute to broader offensive security initiatives, such as:Adversary simulation and red teaming exercisesCustom tooling, scripting, or automationInternal research, labs, or capability development
Requirements
Offensive Security Certified Professional (OSCP) is required.To hold at least one advanced or specialist certifications such as OSWE, OSEP, OSEDApproximately 3 to 5 years of hands-on penetration testing experience in consulting, internal security, or equivalent practical environments.Strong understanding of penetration testing methodologies, rules of engagement, and ethical hacking principles.Solid technical foundations in:TCP/IP networking and common protocolsWindows and Linux operating systemsWeb application architecture and common vulnerability classesDemonstrated experience testing:Web applications, including authentication, authorization, and business logic flawsNetwork and infrastructure environmentsActive Directory domainsMobile applicationsProficiency with common penetration testing tools (e.g. Burp Suite, Nmap, Metasploit, BloodHound).Experience with scripting or programming (e.g. Python, PowerShell, Bash) to support testing and automation.Exposure to cloud security testing (AWS, Azure, GCP) and modern identity platforms.Experience with post-exploitation, lateral movement, and attack path analysis.Demonstrated interest in expanding beyond traditional penetration testing into broader offensive security and red teaming.Ability to clearly communicate technical findings in written reports and verbal discussions.Strong professionalism, integrity, and attention to detail.
