Senior Red Team Expert

Sygnia is the foremost global cyber readiness and response team, applying creative approaches and battle-tested solutions to help organizations beat attackers and stay secure. Combining deep digital combat expertise, enterprise security specialists, and leading-edge, purpose-built technology, Sygnia enables companies to proactively build cyber resilience and defeat attacks within their networks. Sygnia is a trusted advisor and service provider to technology and security teams, executives, and boards of leading organizations worldwide. Sygnia supports clients at each stage of their security journey, bringing frontline experience and technological acumen to help them be unstoppable in the face of cyber threats.

The company draws on top talent from the ranks of elite military technology units and from across the cyber industry. Described by Forbes as a "cyber security delta force," Sygnia applies technological expertise, data analytics, and a business-driven mindset to cyber security, enabling organizations to excel in the age of cyber.

We are looking for talented hackers to join our unique Adversarial Tactics Department. As a Red Team Expert ,you will work with clients to build their resiliency, i.e their capability to prevent and to sustain attacks. You will also be involved in IR engagements with companies that were attacked by adversaries, learn new TTPs and apply those in Red and Purple team engagements.

Your responsibility as a Cyber consultant is to bring the “attacker’s perspective” to engagements. You will help design, create and execute Adversary Simulation exercises, and perform attacks against client services, platforms and infrastructure. This will include, among other things, identifying vulnerabilities through simulated external and internal attacks, validating and enhancing an organization’s ability to respond and recover from targeted attacks and persistent adversaries.

Requirements:

• 5+ years of Red Teaming or Adversarial Simulation Experie
• nce.Experience conducting internal and external penetration testing.
• Experience designing and/or executing phishing campaigns.
• Experience in social engineering.
• Experience with EDR/XDR evasion and bypass techniques.
• Deep familiarity with Active Directory attacks and defenses.
• Extensive experience in penetration testing methodologies and tools.
• Deep technical understanding of a broad technology set and the ability to learn new information at a rapid pace.
• Proven presentation skills.
• Developing, extending, or modifying exploits, shellcode or exploit tools.
• Willingness to travel abroad.

Advantages:

• Background in application security.
• Experience developing tools in one or more of the following: C/C++, Bash, C#, Python, Java, or PowerShell.
• Experience with cloud penetration testing (AWS, Azure, Google Cloud Platform).
• Fluent English (written and spoken).