
Lead Consultant, Security Testing and Red Team
4 days ago
**Requirements**:
- Familiar with cyber security principles, policies, and industry best practices.
- Experienced in consulting, including internal and client-facing experiences.
- Possess relevant cybersecurity certifications or accredited experience from CTF.
- Ability to travel overseas when required.
- Familiar with system administration on various operating systems flavors (Linux and Windows).
- Familiar with programming/scripting languages such as.NET, Python, Bash, and PowerShell.
- Good understanding of Active Directory and Windows environment.
**Preferred Qualifications/Skills**:
- Experienced with tools such as Bloodhound, TinyShell, and the likes.
- Cyber Security Certifications (e.g. OSCP, SEC564, SEC660, CREST).
- Minimum of 5 to 8 years in the role of Penetration Tester.
- Ability to think unconventionally, disruptively, and like an adversary.
- He/She is expected to lead multiple engagements, orchestrating and supporting his teams to deliver on agreed objectives. The lead will be expected to work in challenging environments and deliver under pressure while maintaining good working relationships with customers.
- The role focuses on competence in technical delivery but requires an aptitude for consultancy and management. He/she will be required to manage and mentor the pentest team.
**Duties & Responsibilities**:
- Plan and execute complex Penetration tests.
- Lead Project Delivery in planning and arranging pentest activities, assigning personnel, and managing workloads.
- Deliver both technical and management engagement presentations.
- Maintain a good working knowledge of threat actors and their Tactics, Techniques, and Procedures (TTP’s).
- Co-ordinated delivery of risk workshops, Threat Intelligence handover, and project set up meetings with customers.
- Create robust and coherent test plans, or provide quality assurance of any test plans.
- Maintain proficient knowledge of regulatory frameworks, laws and their legal implications, operational security, and their impacts on the team.
- Support the sales team in the procurement of pentest services.
- Responding to RFP's and other proposals.
- Presales to support the effective communication of the pentest service and set appropriate expectations.
- Onsite presentation of pentest service to executive-level audiences.
- Regular training provided to the sales team to upskill the knowledge of the pentest service and current terminology.
- Reporting: Create high-quality and thorough technical and management reports, which are appropriately directed to their intended audience.
- Providing Quality Assurance services, confirming either the relevant technical or management quality, as well as the report being coherent and written to a high standard.
- Coach and mentor pentest members, providing support to all aspects of the job, technical, procedural, and social.
- Maintain the pentest methodology and supporting documentation/processes.
- Strong leadership, managing a team of testers, assigning workload, and utilizing the different skillsets to achieve objectives.
- Maintain a focus on client objectives and have the ability to manage time and client expectations.
- Develop brand reputation across the industry, this could be in the form of training, workshops, conference talks, or blogs.
**Skills/Experience Required**:
- 5 years of experience in leading and technical delivery of complex pentest engagements.
- Strong technical, social, and presentation skills.
- Strong influence, negotiation, and relationship management skills.
- Good written and speaking English skills.
- Analytical/problem-solving skills.
- Ability to lead, teach, present, and inspire the wider team.
- Highly proficient with multiple C2 frameworks and capable of modifying or creating tooling to overcome technical challenges.
- Offensive Security OSCP, OSCE & CREST CCSAM, CCSAS, or equivalent level of IT security-related certification/knowledge.
- Knowledge and experience in scripting or programming languages (ex. Python, Perl, Ruby, PowerShell, C, C#, Java) in order to develop custom scripts or tools.
- Knowledge of adversary tactics and threat modeling.
- Understanding of the global regulatory landscape for technology and cyber risk.
-
Red Team Cyber Security Consulting
1 week ago
Singapore KPMG - Singapore Full timeAt KPMG, your long-term future is every bit as important to us as it is to you. That's why our aim is to give you experiences that will stay with you for a lifetime. Whether it's great training and development, working across functional sectors, mobility opportunities or corporate responsibility volunteering activities - you'll gain a wealth of experiences...
-
Security Consultant
3 days ago
Singapore RED SENTRY PTE LTD Full time**Job Description of Security Consultant** Faced with ever-increasing threats to IT security, organizations need to maintain a vigilant approach to protect their systems and data, and a Security Lead plays a key role in this process. Red Sentry is hiring a Security Consultant to start the Cyber Security Services offerings and are responsible for a number of...
-
Cyber Security
4 days ago
Singapore JJ Consulting Services Full timeOur Client is an established Financial Institution in Singapore, who is seeking to recruit a Cyber Security - Red Teaming Lead. **Cyber Security - Red Teaming Lead** **Job Function** The role is responsible for defining and maintaining corporate-wide information security governance and adequate controls to ensure information assets are protected. This...
-
Singapore Ensign InfoSecurity Full timeEnsign is hiring ! Responsibilities security misconfigurations and vulnerabilities ethically by joining us as a Pentester. Your role involves learning new and existing technologies like Mobile, Mainframe and loT, and conducting security assessments to sieve out security issues that are hard to find, then transforming the security issues into actionable...
-
Red Team Engineer, Security Assurance
4 days ago
Singapore BYTEDANCE PTE. LTD. Full time**About the Company** Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create content. **Why...
-
Red Team Engineer, Security Assurance
2 weeks ago
Singapore ByteDance Full timeResponsibilities Propose, plan, and execute Red Team Operations to determine if infrastructure components, systems and applications meet confidentiality, integrity, authentication, availability, authorisation, and nonrepudiation standards based on realistic threats to the organization. Maintain a deep understanding of ByteDance Enterprise Products, how they...
-
Vice President, Red Team
3 days ago
Singapore MUFG Bank, Ltd., Singapore Office Full time**Do you want your voice heard and your actions to count?** Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term...
-
Singapore KPMG Singapore Full timeRed Team Cyber Security, Associate/ Senior Associate KPMG in Singapore is part of a global organization of independent professional services firms providing Audit, Tax and Advisory services. We operate in 143 countries and territories with more than 273,000 partners and employees working in member firms around the world. Each KPMG firm is a legally distinct...
-
Assistant Vice President, Red Team
4 weeks ago
Singapore MUFG Full timeAs a Global Red Team Operator at the AVP level, you will play a key role in executing advanced adversary simulation exercises that test and improve MUFG's global security posture. This role is ideal for professionals with a strong foundation in offensive security and a demonstrated ability to plan and execute Red Team operations. You will collaborate with...
-
Associate Principal Consultant
6 days ago
Singapore Red Hat Full time $120,000 - $180,000 per yearJob Summary:We are seeking a consultant/engineer to lead the deployment and configuration of Red Hat OpenStack Services on OpenShift (RHOSO) . This role involves setting up the supporting infrastructure, deploying and validating OpenShift and OpenStack clusters, performing acceptance testing, and providing documentation and knowledge transfer. The consultant...