This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
You’ll join a small, mission-focused team where adaptability, and a willingness to master new tradecraft are essential. You will plan, execute, and report full-scope adversary emulation operations across complex, hybrid environments using clear guidance, established rules of engagement, and close support from experienced teammates. Your work will directly strengthen our clients’ detection and response by revealing real-world gaps and shaping practical improvements. As an experienced operator at Booz Allen, you’ll draw on proven red-teaming and security testing approaches such as covert red team, coordinated purple team, threat simulation, OT and cloud testing, and automation support, to tackle our clients’ hardest cyber challenges. You’ll continuously sharpen your skills and help evolve our methodology and tooling, from pre-engagement scoping through execution and executive-level readouts.
Job Responsibility
Plan, execute, and report full-scope adversary emulation operations across complex, hybrid environments using clear guidance, established rules of engagement, and close support from experienced teammates
Directly strengthen clients’ detection and response by revealing real-world gaps and shaping practical improvements
Draw on proven red-teaming and security testing approaches such as covert red team, coordinated purple team, threat simulation, OT and cloud testing, and automation support
Continuously sharpen skills and help evolve methodology and tooling, from pre-engagement scoping through execution and executive-level readouts
Requirements
Experience planning and executing offensive security operations end-to-end including recon to action-on-objectives
Experience developing rules of engagement (ROE), security assessment plans (SAP), target lists, and pre-engagement artifacts
Experience coordinating with stakeholders to deconflict, align, and minimize operational impact
Experience mapping findings to framework such as MITRE ATT&CK® and communicating detection and response gaps with clear, actionable recommendations
Experience operating common C2 and tradecraft frameworks, such as payload staging, lateral movement, and defense, evasion initial access techniques, and post-exploitation across Windows, Linux, and Active Directory
Experience creating comprehensive, executive-ready reports and detailed technical artifacts that drive remediation and measurable outcomes
Experience collaborating with cross-functional defenders, engineers, and mission stakeholders in agile, high-tempo settings
TS/SCI clearance with a polygraph
HS diploma or GED and 6+ years of experience with offensive security operations end-to-end or Bachelor’s degree and 4+ years of experience with offensive security operations end-to-end
Nice to have
Experience with cloud red-teaming (AWS) and containerized attack infrastructure such as Docker
Knowledge of Bash, PowerShell, Python, or other programming languages for tradecraft development and operator tooling
What we offer
Health, life, disability, financial, and retirement benefits