Cyber Security Expert

Cyber Security Expert

We are hiring for one of our clients seeking experienced cybersecurity professionals to support the evaluation and improvement of advanced AI systems designed for cybersecurity applications.

This role is ideal for senior practitioners with deep hands-on experience across defensive (Blue Team) and/or offensive (Red Team) security disciplines. You will apply real-world expertise to evaluate, stress-test, and refine AI models that assist with threat detection, incident response, and attack simulation.

Role Overview

You will assess AI-generated security investigations and attack simulations for technical correctness, operational realism, and adversarial soundness. The work requires structured reasoning, real-world experience, and the ability to think from both attacker and defender perspectives.

Key Responsibilities

Defensive (Blue Team)

• Analyze real or simulated security incidents (e.g., phishing, lateral movement, ransomware, privilege escalation)
• Review logs and telemetry from SIEM, EDR/XDR, firewall, cloud, and identity platforms
• Map adversary behavior using frameworks such as MITRE ATT&CK
• Evaluate detection logic, alert fidelity, triage decisions, and response workflows
• Assess AI-generated investigations for technical accuracy and completeness

Offensive (Red Team)

• Analyze full attack chains from initial access through data exfiltration
• Evaluate detection gaps and bypass techniques
• Review exploitation strategies, payload behavior, and evasion methods
• Provide insights into adversary tactics and attack surface analysis
• Stress-test AI systems using realistic red-team scenarios

AI Evaluation & Structured Feedback

• Provide clear, structured explanations of investigative and adversarial reasoning
• Identify weaknesses in AI threat analysis
• Help refine evaluation benchmarks for detection and simulation accuracy

Required Experience

• 5+ years of professional cybersecurity experience in roles such as:
• SOC Analyst (Level II/III)
• Incident Responder
• Detection Engineer
• Threat Hunter
• Red Team Operator / Penetration Tester
• Offensive Security Consultant
• Hands-on experience responding to or conducting real-world security engagements

Technical Expertise

Blue Team

• SIEM platforms (e.g., Splunk, Sentinel, QRadar, Elastic)
• EDR/XDR tools (e.g., CrowdStrike, Defender, Carbon Black)
• Log analysis and event correlation
• Network traffic analysis (e.g., Wireshark, Zeek, tcpdump)
• Familiarity with MITRE ATT&CK mapping and detection engineering
• Cloud security and IAM investigation experience preferred

Red Team

• Penetration testing methodologies
• Adversary emulation and attack simulation
• Exploitation frameworks
• Privilege escalation and lateral movement techniques
• Evasion and obfuscation strategies
• Active Directory attack knowledge preferred

Preferred Qualifications

• Industry certifications (e.g., OSCP, OSEP, CRTO, GCIA, GCFA, GCIH, CISSP)
• Experience mentoring junior analysts or operators
• Scripting proficiency (Python, PowerShell, Bash)
• Experience in enterprise, consulting, or high-security environments

Engagement Details

• Independent contractor engagement
• Fully remote with flexible scheduling
• Weekly payments via supported platforms
• Project scope may adjust based on performance and business needs
• High performers may receive extended or future engagements
• Work authorization requirements may apply depending on location and project needs.

Key skills/competency

• Cybersecurity
• AI System Evaluation
• Blue Team
• Red Team
• Threat Detection
• Incident Response
• Attack Simulation
• SIEM
• EDR/XDR
• MITRE ATT&CK