Job Description
Company: Suncap Technology
Location: Washington, US
Lead Penetration Tester / Red Team Operator
We are seeking an experienced and highly skilled Lead Penetration Tester to plan, execute, and oversee Red Team exercises simulating advanced real-world adversaries. This individual will lead engagements designed to test organizational defenses, measure detection/response capabilities, and deliver actionable improvements to security posture. The role requires deep technical expertise, advanced offensive security skills, and the ability to create custom exploits aligned to specific vulnerabilities and scenarios.
Key Responsibilities
• Lead Red Team Engagements
• Define scope, objectives, and desired outcomes for red team exercises in coordination with stakeholders.
• Emulate threat actor tactics, techniques, and procedures (TTPs) mapped to MITRE Telecommunication&CK and tailored to the client environment.
• Exploit Development & Attack Simulation
• Research and identify exploitable vulnerabilities across systems, networks, applications, and users.
• Design and develop custom exploits, payloads, and tools to achieve exercise objectives when off-the-shelf techniques are insufficient.
• Execute advanced attack chains, including initial access, lateral movement, privilege escalation, persistence, and data exfiltration.
• Collaboration & Reporting
• Work closely with blue teams and SOCs in purple-team mode to validate detection and response capabilities.
• Deliver detailed technical reports and executive-level summaries, including findings, risk implications, and prioritized recommendations.
• Mentor and guide junior team members during engagements.
• Continuous Research & Innovation
• Stay current on emerging exploits, vulnerabilities, and adversary tradecraft.
• Contribute to internal tooling, methodology improvements, and exploit frameworks.
• Participate in threat intelligence integration to design realistic adversary scenarios.
Required Qualifications
• 5+ years of hands-on penetration testing, red teaming, or offensive security experience.
• Demonstrated expertise in custom exploit development (e.g., buffer overflows, memory corruption, web app exploits, privilege escalation).
• Strong knowledge of offensive security tools (Cobalt Strike, Metasploit, Sliver, etc.), scripting (Python, PowerShell, Bash), and low-level languages (C/C++, Assembly).
• Deep understanding of Windows, Linux, Active Directory, cloud platforms (AWS, Azure, GCP), and modern enterprise environments.
• Experience with adversary emulation frameworks (MITRE Telecommunication&CK, Atomic Red Team, CALDERA, etc.).
• Strong communication skills with the ability to translate technical findings into business impact.
• Certifications such as OSCE, OSEE, OSEP, GXPN, or equivalent highly desirable.
Preferred Skills
• Background in malware development, evasion techniques, or red team operations against hardened environments.
• Familiarity with EDR bypass, C2 infrastructure design, and persistence techniques.
• Prior experience leading multi-phase engagements with both technical teams and executives.
• Contribution to open-source security projects or exploit development communities.
Source: Jobilize