Senior Red Team Engineer

Are you passionate about technology and enjoy explaining complex solutions in a way that everybody gets excited? If so, read on!

About Picus

Picus Security, the leading security validation company, gives organizations a clear picture of their cyber risk based on business context. Picus transforms security practices by correlating, prioritizing, and validating exposures across siloed findings so teams can focus on critical gaps and high-impact fixes. With Picus, security teams can quickly take action with one-click mitigations to stop more threats with less effort.

The Picus Security Validation Platform easily reaches across on-prem environments, hybrid clouds and endpoints coupled with Numi AI to provide exposure validation. 

The pioneer of Breach and Attack Simulation, Picus delivers award-winning threat-centric technology that allows teams to pinpoint fixes worth pursuing, offering a 95% recommendation in Gartner Peer Review.

About The Role

If you’re a results-driven person with an entrepreneurial mindset, who takes the initiative and thrives in a dynamic environment, then this is a great opportunity to play a pivotal role in a fast-growing cyber security company. 

As Senior Red Team Engineer you will play a critical role in identifying and simulating real-world cyber threats by analyzing public research on emerging cyber risks and designing sophisticated attack scenarios. You’ll develop advanced offensive tools to simulate adversarial behavior, while researching and creating Proof of Concepts for new attack simulation techniques. Collaboration is key in this role, as you’ll work closely with engineering teams to contribute to the development of innovative security product features.

What You'll Do

• Analyze and leverage public research on current cyber threats
• Design attack scenarios targeting operating systems and Domain Infrastructures
• Develop offensive tools to simulate real-world adversarial tactics and techniques
• Conduct research on new attack simulation capabilities and create Proof of Concepts
• Collaborate with Picus Labs’ Blue Team to evade defensive technologies
• Partner with engineering teams to contribute to the development of new product features

What You Have

• Hands-on experience with contemporary adversarial techniques and tactics
• Strong understanding of Windows internals, particularly in relation to Active Directory environments, or comprehensive knowledge of Linux and macOS internals
• Eagerness to grow in offensive tooling development and post-exploitation techniques
• Familiarity with the MITRE ATT&CK framework and its application in attack simulations
• Contributions to the offensive security community, such as open-source projects or vulnerability advisories, will be a plus
• Experience with exploit development is a strong plus
• Proficiency in both written and spoken English

Working at Picus

Fascinating work - a chance to shape and lead an exciting, fast-growing cyber security segment. Security Validation is a concept that helps organizations evaluate their security posture in a continuous, automated, and repeatable way. This approach allows for the identification of imminent threats, provides recommended actions, and produces valuable metrics about cyber-risk levels.

Unlimited opportunity! We are growing. At Picus, you'll be provided with as much responsibility as you can handle - new career development opportunities constantly arise given our rate of growth.

Global exposure - Get a lot of experience working not only in a fast-growing startup but also interact with customers all around the world.

Be part of a global remote team who is taking on Exposure Validation and a growing market segment.

We are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to age, sex, race, color, national origin, religious belief, gender or gender reassignment, sexual orientation, marriage or civil partnership, pregnancy and maternity, disability, protected veteran status, or any other characteristic protected by International law. Upon conditional offer of employment, candidates are required to complete reference and identity checks in line with local labor laws and as per the Company’s employment policy.