CrawlJobs Logo

Red Team Operator

United States, Fort Meade Employment contract 99000.00 - 225000.00 USD / Year · Job Posted July 04, 2026
Apply Position
Job Link Share

Job Description

You’ll join a small, mission-focused team where adaptability, and a willingness to master new tradecraft are essential. You will plan, execute, and report full-scope adversary emulation operations across complex, hybrid environments using clear guidance, established rules of engagement, and close support from experienced teammates. Your work will directly strengthen our clients’ detection and response by revealing real-world gaps and shaping practical improvements. As an experienced operator at Booz Allen, you’ll draw on proven red-teaming and security testing approaches such as covert red team, coordinated purple team, threat simulation, OT and cloud testing, and automation support, to tackle our clients’ hardest cyber challenges. You’ll continuously sharpen your skills and help evolve our methodology and tooling, from pre-engagement scoping through execution and executive-level readouts.

Job Responsibility

  • Plan, execute, and report full-scope adversary emulation operations across complex, hybrid environments using clear guidance, established rules of engagement, and close support from experienced teammates
  • Directly strengthen clients’ detection and response by revealing real-world gaps and shaping practical improvements
  • Draw on proven red-teaming and security testing approaches such as covert red team, coordinated purple team, threat simulation, OT and cloud testing, and automation support
  • Continuously sharpen skills and help evolve methodology and tooling, from pre-engagement scoping through execution and executive-level readouts

Requirements

  • Experience planning and executing offensive security operations end-to-end including recon to action-on-objectives
  • Experience developing rules of engagement (ROE), security assessment plans (SAP), target lists, and pre-engagement artifacts
  • Experience coordinating with stakeholders to deconflict, align, and minimize operational impact
  • Experience mapping findings to framework such as MITRE ATT&CK® and communicating detection and response gaps with clear, actionable recommendations
  • Experience operating common C2 and tradecraft frameworks, such as payload staging, lateral movement, and defense, evasion initial access techniques, and post-exploitation across Windows, Linux, and Active Directory
  • Experience creating comprehensive, executive-ready reports and detailed technical artifacts that drive remediation and measurable outcomes
  • Experience collaborating with cross-functional defenders, engineers, and mission stakeholders in agile, high-tempo settings
  • TS/SCI clearance with a polygraph
  • HS diploma or GED and 6+ years of experience with offensive security operations end-to-end or Bachelor’s degree and 4+ years of experience with offensive security operations end-to-end

Nice to have

  • Experience with cloud red-teaming (AWS) and containerized attack infrastructure such as Docker
  • Knowledge of Bash, PowerShell, Python, or other programming languages for tradecraft development and operator tooling

What we offer

  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Red Team Operator

8 matching positions

New

Principal Red Team Operator

Principal Operator, Red Team Role Summary The Operator, Red Team is a hands on ...
Location
Location
United States , Pittsburgh; Manchester; Charlotte; Johnston; Westwood; Boston; Phoenix; Iselin; Plano; Irving
Salary
Salary:
120000.00 - 210000.00 USD / Year
citizensbank.com Logo
Citizens Bank
Expiration Date
July 30, 2026
Flip Icon
Requirements
Requirements
  • 4 to 8 years of hands on cybersecurity experience with a strong focus on Red Team operations, adversary emulation, or advanced offensive security
  • Demonstrated experience executing Red Team or Purple Team engagements in assumed breach or adversary based scenarios
  • Proven ability to design and execute attack paths rather than relying solely on automated tools or point in time testing
  • Strong technical capability across multiple attack surfaces, including identity and access attacks, endpoint and network exploitation, cloud and SaaS environments, and command and control frameworks
  • Understanding of campaign based red teaming and continuous testing approaches, including iterative and regression style validation
  • Working knowledge of AI security concepts, including how AI enabled systems, inputs, and workflows can be manipulated or abused
  • Ability to collaborate with Blue Team and Detection Engineering to translate offensive activity into improved detection and response capabilities
  • Strong operational discipline, including clear documentation, safe execution, and adherence to engagement constraints
  • Effective communication skills, with the ability to explain technical findings to security practitioners and cross functional partners
  • Demonstrated curiosity, adaptability, and ability to operate in rapidly evolving threat and technology environments
Job Responsibility
Job Responsibility
  • Execute Red Team and Purple Team engagements as a primary operator, including adversary emulation, assumed breach scenarios, and intelligence driven attack paths
  • Design and execute campaign based attack operations that simulate real world adversary behavior across enterprise environments
  • Perform hands on exploitation and abuse across on prem, cloud, SaaS, and hybrid infrastructures
  • Simulate advanced attacker tradecraft, including living off the land techniques, identity abuse, privilege escalation, lateral movement, persistence, command and control, and controlled data exfiltration
  • Conduct testing against AI enabled systems and workflows, including abuse and misuse of AI assistants, copilots, and automation platforms
  • Execute prompt manipulation, indirect prompt injection, and AI model misuse scenarios to evaluate emerging attack surfaces
  • Collaborate closely with Detection Engineering and Blue Team during Purple Team engagements to validate detections, identify coverage gaps, and refine response effectiveness
  • Translate offensive findings into actionable remediation insights and partner with stakeholders to ensure vulnerabilities are addressed and control effectiveness is improved
  • Contribute to full lifecycle execution of engagements, ensuring findings are tracked through resolution and result in measurable risk reduction
  • Leverage and extend red team tooling and frameworks and develop targeted scripts or payloads to emulate specific adversary behaviors
What we offer
What we offer
  • Competitive pay
  • comprehensive medical, dental, and vision coverage
  • retirement benefits
  • maternity and paternity leave
  • flexible work arrangements
  • education reimbursement
  • wellness programs
  • annual discretionary bonus
  • Fulltime
Read More
Arrow Right
New

Principal Red Team Operator

Principal Operator, Red Team Role Summary The Operator, Red Team is a hands on ...
Location
Location
United States , Charlotte, North Carolina; Boston, Massachusetts; Manchester, New Hampshire; Pittsburgh, Pennsylvania; Westwood, Massachusetts; Johnston, Rhode Island
Salary
Salary:
120000.00 - 210000.00 USD / Year
citizensbank.com Logo
Citizens Bank
Expiration Date
July 30, 2026
Flip Icon
Requirements
Requirements
  • 4 to 8 years of hands on cybersecurity experience with a strong focus on Red Team operations, adversary emulation, or advanced offensive security
  • Demonstrated experience executing Red Team or Purple Team engagements in assumed breach or adversary based scenarios
  • Proven ability to design and execute attack paths rather than relying solely on automated tools or point in time testing
  • Strong technical capability across multiple attack surfaces, including identity and access attacks, endpoint and network exploitation, cloud and SaaS environments, and command and control frameworks
  • Understanding of campaign based red teaming and continuous testing approaches, including iterative and regression style validation
  • Working knowledge of AI security concepts, including how AI enabled systems, inputs, and workflows can be manipulated or abused
  • Ability to collaborate with Blue Team and Detection Engineering to translate offensive activity into improved detection and response capabilities
  • Strong operational discipline, including clear documentation, safe execution, and adherence to engagement constraints
  • Effective communication skills, with the ability to explain technical findings to security practitioners and cross functional partners
  • Demonstrated curiosity, adaptability, and ability to operate in rapidly evolving threat and technology environments
Job Responsibility
Job Responsibility
  • Execute Red Team and Purple Team engagements as a primary operator, including adversary emulation, assumed breach scenarios, and intelligence driven attack paths
  • Design and execute campaign based attack operations that simulate real world adversary behavior across enterprise environments
  • Perform hands on exploitation and abuse across on prem, cloud, SaaS, and hybrid infrastructures
  • Simulate advanced attacker tradecraft, including living off the land techniques, identity abuse, privilege escalation, lateral movement, persistence, command and control, and controlled data exfiltration
  • Conduct testing against AI enabled systems and workflows, including abuse and misuse of AI assistants, copilots, and automation platforms
  • Execute prompt manipulation, indirect prompt injection, and AI model misuse scenarios to evaluate emerging attack surfaces
  • Collaborate closely with Detection Engineering and Blue Team during Purple Team engagements to validate detections, identify coverage gaps, and refine response effectiveness
  • Translate offensive findings into actionable remediation insights and partner with stakeholders to ensure vulnerabilities are addressed and control effectiveness is improved
  • Contribute to full lifecycle execution of engagements, ensuring findings are tracked through resolution and result in measurable risk reduction
  • Leverage and extend red team tooling and frameworks and develop targeted scripts or payloads to emulate specific adversary behaviors
What we offer
What we offer
  • competitive pay
  • comprehensive medical, dental, and vision coverage
  • retirement benefits
  • maternity and paternity leave
  • flexible work arrangements
  • education reimbursement
  • wellness programs
  • Fulltime
Read More
Arrow Right

Principal Red Team Operator

The Operator, Red Team is a hands on offensive security practitioner responsible...
Location
Location
United States , Iselin
Salary
Salary:
120000.00 - 210000.00 USD / Year
citizensbank.com Logo
Citizens Bank
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4 to 8 years of hands on cybersecurity experience with a strong focus on Red Team operations, adversary emulation, or advanced offensive security
  • Demonstrated experience executing Red Team or Purple Team engagements in assumed breach or adversary based scenarios
  • Proven ability to design and execute attack paths rather than relying solely on automated tools or point in time testing
  • Strong technical capability across multiple attack surfaces, including identity and access attacks, endpoint and network exploitation, cloud and SaaS environments, and command and control frameworks
  • Understanding of campaign based red teaming and continuous testing approaches, including iterative and regression style validation
  • Working knowledge of AI security concepts, including how AI enabled systems, inputs, and workflows can be manipulated or abused
  • Ability to collaborate with Blue Team and Detection Engineering to translate offensive activity into improved detection and response capabilities
  • Strong operational discipline, including clear documentation, safe execution, and adherence to engagement constraints
  • Effective communication skills, with the ability to explain technical findings to security practitioners and cross functional partners
  • Demonstrated curiosity, adaptability, and ability to operate in rapidly evolving threat and technology environments
Job Responsibility
Job Responsibility
  • Execute Red Team and Purple Team engagements as a primary operator, including adversary emulation, assumed breach scenarios, and intelligence driven attack paths
  • Design and execute campaign based attack operations that simulate real world adversary behavior across enterprise environments
  • Perform hands on exploitation and abuse across on prem, cloud, SaaS, and hybrid infrastructures
  • Simulate advanced attacker tradecraft, including living off the land techniques, identity abuse, privilege escalation, lateral movement, persistence, command and control, and controlled data exfiltration
  • Conduct testing against AI enabled systems and workflows, including abuse and misuse of AI assistants, copilots, and automation platforms
  • Execute prompt manipulation, indirect prompt injection, and AI model misuse scenarios to evaluate emerging attack surfaces
  • Collaborate closely with Detection Engineering and Blue Team during Purple Team engagements to validate detections, identify coverage gaps, and refine response effectiveness
  • Translate offensive findings into actionable remediation insights and partner with stakeholders to ensure vulnerabilities are addressed and control effectiveness is improved
  • Contribute to full lifecycle execution of engagements, ensuring findings are tracked through resolution and result in measurable risk reduction
  • Leverage and extend red team tooling and frameworks and develop targeted scripts or payloads to emulate specific adversary behaviors
What we offer
What we offer
  • Medical, dental and vision coverage
  • Retirement benefits
  • Maternity/paternity leave
  • Flexible work arrangements
  • Education reimbursement
  • Wellness programs
  • Fulltime
Read More
Arrow Right
New

Red Team Security Engineer

At Sabio Group, we build and operate AI-powered customer experience platforms fo...
Location
Location
South Africa , Cape Town
Salary
Salary:
Not provided
sabiogroup.com Logo
Sabio Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrable hands-on experience in offensive security — penetration testing, red teaming, or adversary simulation — against modern web, API and cloud-based systems
  • Strong understanding of common vulnerability classes (OWASP Top 10, authZ flaws, SSRF, deserialisation, injection, cryptographic misuse) and how to chain them into real impact
  • Solid grasp of cloud security in at least one major provider (AWS, Azure or GCP): IAM, networking, key management, container and serverless services, common misconfigurations and attack paths
  • Practical understanding of AI/LLM systems — how they work, where they fail, and the new risks they introduce (prompt injection, jailbreaks, insecure tool use, training/RAG data exposure)
  • Coding capability in at least one of Python, Go, JavaScript/TypeScript or similar — comfortable writing exploits, tooling and automation, not just running other people's tools
  • Confidence with offensive tooling — Burp Suite, nmap, Nuclei, BloodHound, Metasploit, custom scripts — and the judgement to know when to build vs. buy
  • Familiarity with CI/CD, containers and IaC (Docker, Kubernetes, Terraform or equivalent) and how to attack and defend them
  • An evaluation mindset: you measure security posture with reproducible tests, metrics and evidence — not gut feel
  • Comfort with agentic development workflows — using AI coding assistants and AI co-work / pair-development models (Claude Code, Copilot, Cursor or equivalent) as part of your day-to-day delivery
  • Clear written and verbal communication in English: able to brief engineers, executives and (where relevant) customers on findings and risk
Job Responsibility
Job Responsibility
  • Plan and execute red team engagements, penetration tests and adversary simulations against our platforms, products and corporate environment
  • Identify, exploit and document vulnerabilities across web applications, APIs, cloud infrastructure, identity systems and AI/LLM-based services
  • Develop realistic attack scenarios — initial access, privilege escalation, lateral movement, data exfiltration — mapped to frameworks such as MITRE ATT&CK
  • Build and maintain custom tooling, exploits and automation where off-the-shelf tools fall short
  • Leverage AI pen testing tooling and frameworks as a force amplifier within your role
  • Active, hands-on use of AI-powered offensive security tooling as a core part of your workflow — leveraging LLMs and agentic assistants to accelerate reconnaissance, exploit development, code review, payload generation and report writing
  • Familiarity with emerging AI red-team frameworks and platforms — e.g. PyRIT, Garak, Promptfoo, NVIDIA Aegis, Microsoft Counterfit, HackerOne / Bugcrowd AI testing toolkits, or equivalent — and a practical sense of when to use which
  • Experience building or extending automated AI red-team harnesses: prompt-injection test suites, jailbreak corpora, tool-abuse scenarios, multi-turn attack agents, and regression eval sets for LLM and agentic systems
  • Pragmatic judgement on the limits and risks of AI-assisted offensive work — hallucinated findings, false confidence, data leakage into third-party models — and the discipline to validate AI output before acting on it
  • Curiosity to keep pace with a fast-moving space: new models, new attack techniques, new defensive controls — and a willingness to bring those learnings back into the team
What we offer
What we offer
  • Remote/Flexible work
  • Discovery Medical Aid
  • Connectivity Allowance
  • 15 days paid holiday a year- (this includes three Sabio days)
  • Momentum EAP
  • Fulltime
Read More
Arrow Right

Principal Software Engineer - Red Team

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
United States , Multiple Locations
Salary
Salary:
142800.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science or related technical field AND 6+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter
  • Expertise in red teaming, adversarial testing, and offensive security—including threat emulation, vulnerability discovery, and ethical hacking
  • Experience with Large Language Models (LLMs) and agentic AI systems
  • Strong background in system design and cloud platforms (Azure, AWS, GCP)
  • 8 years of professional software development experience in an OOL such as C# or Java and Bachelor’s degree in computer science or related fields, or equivalent experience
Job Responsibility
Job Responsibility
  • Design, implement, and support AI-driven red team services using generative as well as traditional AI techniques
  • Research, experiment with, and productionize frontier AI capabilities and design patterns
  • Research the latest attack techniques used by internal red teams and external threat actors
  • Contribute to red team tools for use by both human operators and AI red teaming services
  • Support partner development teams in contributing to our services and tools
  • Partner with internal defensive security teams to improve their detection, investigation, and response capabilities
  • Build strong relationships with your peers through design, code reviews, and mentoring
  • Fulltime
Read More
Arrow Right

Senior Staff Red Team Engineer

Our Information Security organization is seeking a Senior Staff Red Team Enginee...
Location
Location
United States , Burbank
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience leading covert Red Team operations
  • Experience with developing custom tools and payloads which bypass defensive products, and remain undetected in a mature network environment
  • Must have the ability to perform targeted attacks with or without the use of automated tools
  • Expertise in adversarial TTPs
  • Experience performing adversarial simulation
  • Experience in conducting surreptitious on-premise and cloud based attacks
  • Excellent written and verbal communication skills
  • Ability to establish priorities, work independently and proceed with objectives
  • Must be well organized and able to leverage best practices, able to thrive in fast-paced environment, and, most importantly, have the ability to approach problems with an innovative, can-do attitude
Job Responsibility
Job Responsibility
  • Lead end-to-end Red Team operations to highlight gaps impacting enterprise security posture and readiness
  • Develop payloads and attack tools which bypass security controls for use in covert operations
  • Simulate real-world attacks that are relevant to the business
  • Leverage bleeding edge AI research to enhance offensive security capabilities
  • Deliver detailed reports of technical findings to stakeholders and assist with the development of mitigation plans
  • Deliver executive technical out briefs to leadership across the organization
  • Assist with security investigations, root-cause analysis and corrective measures as required
What we offer
What we offer
  • Restricted stock units
  • Bonus
  • Employee benefits (see link in offer)
  • Fulltime
Read More
Arrow Right

Strategic Projects Lead, Red Team

Scale's Red Team and Safety function stress-tests the most capable AI models in ...
Location
Location
United States , San Francisco; New York
Salary
Salary:
121600.00 - 190000.00 USD / Year
scale.com Logo
Scale
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Working fluency in model behavior, adversarial ML, and AI safety, enough to hold a substantive conversation with researchers and ML engineers
  • Experience managing technical accounts or partnerships, ideally with frontier AI labs, large enterprises, or federal agencies
  • Genuine interest in AI safety, evidenced in prior work, writing, or research
  • Strong written and verbal communication and the ability to translate between research and commercial audiences
  • Operational rigor
  • you scope carefully, track commitments, and keep complex engagements moving
  • Comfort with ambiguity and a bias toward action
Job Responsibility
Job Responsibility
  • Own a portfolio of frontier-lab partnerships day-to-day. Run customer conversations, scope new engagements, and grow accounts from one-off projects into ongoing scope
  • Act as a credible subject-matter expert in customer conversations
  • explain adversarial methodology, vulnerability taxonomies, benchmark findings, and what they imply commercially, in language that lands with technical buyers
  • Partner with Enterprise and Public Sector account teams to qualify and close opportunities where safety, red teaming, or LLM-based cyber security are part of the deal
  • Coordinate delivery with research and operations leads. Make sure scope, capacity, and timelines line up before we commit, and unblock the team as engagements run
  • Contribute to public benchmark launches. Help shape the framing, the rollout, and the narrative we take to customers and the field
  • Feed signal back into the roadmap. Surface what customers are asking for, what is breaking, and what we should build next
What we offer
What we offer
  • comprehensive health, dental and vision coverage
  • retirement benefits
  • learning and development stipend
  • generous PTO
  • commuter stipend
  • Fulltime
Read More
Arrow Right

Principal Consultant, Red Team

The Principal Consultant on the Offensive Security team is focused on assessing ...
Location
Location
United Arab Emirates , Dubai
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of professional experience leading Red & Purple team engagements, Advanced Attack Simulations, OSINT research, social engineering techniques, bespoke security assessments and exploit development
  • Experience testing a range of technologies (Active Directory, major OSs, cloud environments, IoT / OT) and using a range of security tools and technologies inc AI-enabled to automate and tailor engagements
  • Demonstrate a deep understanding of how malicious software works (i.e.-malware, trojans, rootkits, etc.)
  • Ability to modify known and/or craft custom exploits manually without dependence on consumer tools such as Metasploit
  • Strong knowledge of tools and techniques used to conduct network, wireless, and web application penetration testing
  • Familiarity with web application penetration testing and code auditing to find security gaps and vulnerabilities
  • Experience with penetration testing, administering, and troubleshooting major flavors of Linux, Windows, and major cloud IaaS, PaaS, and SaaS providers (i.e., AWS, GCP, and Azure)
  • Experience with scripting and editing existing code and programming using one or more of the following - Perl, Python, ruby, bash, C/C++, C#, or Java
  • Experience with security assessment tools, including Nessus, OpenVAS, MobSF Metasploit, Burp Suite Pro, Cobalt Strike, Bloodhound, and Empire
  • Knowledge of application, database, and web server design and implementation
Job Responsibility
Job Responsibility
  • Performs client penetration testing to find any vulnerabilities or weaknesses that might be exploited by a malicious party, using open-source, custom, and commercial testing tools - Red Team experience essential
  • Ability to assist in scoping engagements by clearly articulating various penetration approaches and methodologies to audiences ranging from highly technical to executive personnel
  • Report generation that clearly communicates testing and assessment details, results, and remediation recommendations to clients
  • Develop scripts, tools, and methodologies to automate and streamline internal processes and engagements
  • Conducts periodic scans of networks to find and detect vulnerabilities
  • Conducts IT application testing, cybersecurity tool and systems analysis, system and network administration, and systems engineering support for the sustainment of information technology systems (mobile application testing, penetration testing, application, security, and hardware testing)
  • Conduct threat hunting and/or compromise assessment engagements to identify active or dormant indicators of compromise (IoCs) using Crypsis and Palo Alto Networks’ threat hunting tools (and/or client owned hunting instrumentation where applicable)
  • Conduct cloud penetration testing engagements to assess specific workloads (i.e., AWS, GCP, Azure, containers, or other PaaS and SaaS instances) for vulnerabilities and subsequently attempt to exploit identified weakness after receiving permission from client stakeholders
  • Provide recommendations to clients on specific security measures to monitor and protect sensitive data and systems from infiltration and cyber-attacks including response and recovery of a data security breach
  • Fulltime
Read More
Arrow Right