Offensive Security

Posted 23 March 2026
Salary Competitive
Job type Contract
Discipline Cyber Security
Reference76843
Remote working Hybrid/Flexible

Job description

CYBERSECURITY OFFENSIVE SPECIALIST

Requirement: Mandatory Active EU Secret Clearance

1. NATURE OF SERVICES

The Cybersecurity Offensive Specialist aims to proactively identify and address security vulnerabilities, misconfigurations, and areas for improvement regarding security by design. The role focuses on enhancing the overall cybersecurity posture and resilience against advanced threats. This involves close coordination with defensive teams (Incident Responders) to share insights and improve organizational security.

2. KEY RESPONSIBILITIES

  • Red Teaming: Plan and execute complex red teaming exercises, simulating advanced threat scenarios for on-premises and cloud infrastructure.
  • Adversary Simulation: Develop and implement advanced strategies to test defensive depth.
  • Exploitation: Identify and exploit zero-day vulnerabilities and advanced attack vectors.
  • Purple Teaming: Provide detection teams with sufficient context for collaborative improvement efforts.
  • Consultancy: Lead discussions with internal teams to understand business context and provide expert guidance on vulnerability mitigation and risk management.
  • R&D: Engage in advanced research and development related to offensive security tactics and custom scripting.

3. MANDATORY REQUIREMENTS

  • Citizenship: Must be an EU Native Citizen.
  • Clearance: Must hold a Valid EU Secret Security Clearance (clearable profiles will not be considered).
  • Experience: Proven experience in Penetration Testing and/or Red Teaming.
  • Certifications (Must hold at least one of the following groups):
  • Offensive Security: OSCP, OSCE, or OSWE.
  • GIAC: GPEN, GWAPT, or GCPN.

4. TECHNICAL SKILLS & KNOWLEDGE

  • Expertise: Deep knowledge of ethical hacking and red teaming methodologies.
  • Tooling: Proficiency in using and developing custom tools and scripts.
  • Cloud Infrastructure: Proficient knowledge of cloud computing platforms (e.g., AWS, Azure).
  • Risk Management: Exceptional risk assessment skills and the ability to present findings to stakeholders.
  • Compliance: Advanced knowledge of security compliance standards and regulations.

5. PREFERRED QUALIFICATIONS (NICE TO HAVE)

  • Experience: 7+ years in offensive security (or 5+ years with multiple advanced certifications).
  • Advanced Certifications: OSWP, OSEE, or GIAC (GXPN).
  • Domain: Strong infrastructure penetration testing experience.