Job Openings Senior Red Team/Pen Tester

About the job Senior Red Team/Pen Tester

Must be a US Citizen located in the United States to be considered**

Are you a seasoned Red Team Operator ready to build something impactful from the ground up? Our client, a trusted federal partner, is standing up a new Red Team Program to support 12 adversary emulation exercises per quarter across the Department of Veterans Affairs (VA).

They're looking for three senior-level operators to lead advanced threat emulation efforts, guide junior operators, and contribute to developing tradecraft, tools, and infrastructure that mimic real-world adversaries while avoiding detection.

This position will require a Public Trust Clearance. Must be a US Citizen and pass the background check prior to start.

What You'll Be Doing:

  • Lead Red Team exercises end-to-end, from scenario planning to execution and reporting

  • Emulate advanced persistent threat (APT) actors in realistic, high-stakes environments

  • Produce detailed technical reports and high-level executive summaries

  • Collaborate with stakeholders and internal teams to align testing objectives with organizational risk

  • Develop custom tools, malware, and tactics to simulate undetected threat activity

  • Provide mentorship and strategy guidance to junior Red Team members

  • Improve red team methodologies, tooling, infrastructure, and operational effectiveness

What You Bring:

  • 10+ years of hands-on cybersecurity experience with Red Team or offensive security

  • Strong background in penetration testing and offensive development

  • Expertise in Python, C++, or C#

  • Familiarity with Mythic, Cobalt Strike, and similar C2/malware frameworks

  • Deep understanding of evasion techniques and stealth operations

  • Proven experience in client-facing roles, report creation, and leading executive reviews

  • Prior federal or civil government experience, VA or similar agency preferred

  • Experience with test planning, execution, and results analysis

  • Strong communication skills and ability to work autonomously

Nice to Have:

  • Industry certifications: CISSP, OSCP, CRTO, GPEN, GXPN, OSCE, OSWE, CEH, GCIH, GWAPT

  • Malware engineering background

  • Cloud Strike or similar endpoint detection experience

Why This Role?
You won't just be running tests, you'll be standing up the Red Team program itself. This is a chance to lead, shape the playbook, build tools, and operate in real-world threat scenarios with high visibility and impact.

If you're ready to take on a mission that challenges your skills and rewards your leadership, let's connect.

Equal Employment Opportunity Statement:
We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, or veteran status.


Or refer someone