Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group.
We are on a mission to make society a safer and more secure place. Our people are the ones who make that possible; a global community of talented individuals working together towards a safer future.
The Opportunity:
Role: Red Team Consultant
Location: Manchester/Cheltenham/London/Hybrid with travel to client sites
You will be involved in each aspect of the attack chain from social engineering and initial access, evading best-in-class EDR products, through lateral movement.
Operational security and safety of target environments is of paramount importance; you must rely on your extensive experience of managing operational risk and communicating with client stakeholders to mitigate risks for all Red Team activity.
You will be well leading in capability development and the creation of tools to automate activity or exploit weaknesses identified in the environment.
Last but not least, you will use your high-standard of written English for reports and presentations, as well as briefing both technical and C-Level audiences on their activities and findings.
Your key accountabilities:
* Simulate Adversarial Attacks: Design, plan, and execute realistic cyber-attack scenarios to identify vulnerabilities and weaknesses within our target organization's infrastructure, applications, and processes.
* Report and Advise: Clearly convey findings, vulnerabilities, and potential risks to stakeholders, offering actionable technical recommendations, procedural and defensive improvements.
* Engage and Collaborate: Ability to work as part of a team on large engagements and individually for smaller ones.
* Continuous Learning: Keep abreast of the latest adversarial techniques, tools, and trends in Red Teaming and more general global cybersecurity.
* Mentoring and Training: Act as a resource for junior team members and other departments.
You’ll stand out if you have:
* Demonstrable experience in advanced red teaming.
* Demonstrable experience in regulatory schemes globally (CBEST/TIBER/CORIE/AASE/iCAST/FEER).
* Comprehensive understanding of the majority of the following domains:
o Cloud platforms and their security mechanisms
o Microsoft Active Directory
o Office 365 Security
o EDR/EPP Bypasses
o Email Gateways and Filters
o Web Gateways and Proxies
o MacOS Client Environments
* Proactive attitude, team-oriented, and adept at problem-solving.
* Familiarity with the UK's cybersecurity regulations, standards, and best practices.
* CREST CCT-INF or CREST CCSAS or CREST CCSAM.
Why work with NCC Group?
At NCC we work together as one team to exceed expectations and add value. We empower each other, take responsibility, communicate openly, and embrace new ideas.
What we offer:
Financial & Investment - Pension, Life Assurance, Share Save Scheme, Maternity & Paternity leave
Community & Volunteering Programmes
Lifestyle & Wellness via Perkbox - access to discounts on gym memberships, cinema tickets, shopping and more!
Learning & Development with the goal of personal development and progression.
So, what’s next?
If this sounds like the right opportunity for you, then we would love to hear from you! Click on apply to this job to send us your CV and the relevant member of our global talent team will be in touch with you.
About your application:
We review every application received and will get in touch if your skills and experience match what we’re looking for.
Please note that this role involves mandatory pre-employment background checks due to the nature of the work NCC Group does. To apply, you must be willing and able to undergo the vetting process. This role being advertised will be subject to BS7858 screening as a mandatory requirement.
#J-18808-Ljbffr