Senior Red Team Consultant

About the Role: Senior Red Team Consultant

As a Senior Red Team Consultant at Google Cloud, Mandiant Consulting, you will be instrumental in delivering advanced cybersecurity consulting services to our diverse client base. This role focuses on assessing and advising clients on technical and process-based security controls across various environments. You will conduct Red and Purple team assessments, simulating sophisticated cyber attacks, and perform other technical cyber assessments including external engagement, web application, mobile, and wireless security testing.

A core part of your responsibility will be to enhance the team’s capabilities through the creation of new security tools, conducting research into advanced offensive techniques, integrating cutting-edge threat actor intelligence, and sharing knowledge through internal presentations and discussions.

You will be tasked with developing precise and comprehensive reports and presentations tailored for both technical and executive audiences. Acting as a trusted advisor, you will engage with C-level executives, security leaders, and other key customer stakeholders. Additionally, you will support the scoping of prospective engagements, lead engagement teams from kickoff through the remediation phase, and mentor other staff members.

About Mandiant and Google Cloud

Part of Google Cloud, Mandiant is a renowned leader in dynamic cyber defense, threat intelligence, and incident response services. Mandiant's deep cybersecurity expertise has earned the trust of security professionals and executives globally. Our unique blend of frontline experience in responding to complex breaches, nation-state grade threat intelligence, machine intelligence, and industry-leading security validation ensures we possess unparalleled insight into today's advanced threats.

Minimum Qualifications

• Bachelor's degree in Computer Science, Information Systems, Cybersecurity, a related technical field or equivalent practical experience.
• 5 years of experience assessing and developing cybersecurity solutions across multiple security domains.
• Experience in four or more of the following: network protocols, threat intelligence analysis, system and network administration, project management, developing applications, technical incident response processes, source code review, reverse engineering.
• Experience in offensive security.
• Experience with operating system security across Windows, Linux, or Mac.

Preferred Qualifications

• Certifications related to offensive security including OSCE, OSEP, OSEE, OSCP, CISSP, CISA or relevant SANS courses.
• Experience working with local sales and management teams in driving consulting business generation, scoping or client management.
• Experience in creating security tools and understanding underlying programming languages (such as Python, C#, C/C++, Rust, Nim or similar).
• Ability to communicate technical details through reporting and presentations to both technical and executive audiences.
• Excellent communication, collaboration, and public speaking skills.

Responsibilities

• Perform offensive technical cybersecurity engagements of a varied nature.
• Interface with clients to address concerns, issues, or escalations, track and guide to closure any issues that impact the engagements and its value to clients.
• Advise clients on security best practices for remediating discovered issues.
• Collaborate with internal teams to expand capabilities to deliver further value to clients.

Key skills/competency

• Red Teaming
• Adversarial Emulation
• Cybersecurity Consulting
• Offensive Security
• Threat Intelligence
• Security Assessments
• Web Application Security
• Mobile Security
• Network Protocols
• Client Management