Principal Red Team Specialist

Company Overview

Bridewell is a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world’s most trusted organisations. We are the trusted partner for operators of essential services and provide end‑to‑end cyber security capabilities that help our clients overcome their security challenges, allowing them to operate safely and securely. Bridewell holds the Gold level Investors in People award.

Position Summary

We are looking for a passionate technology‑focused individual with an honest and empathic approach to customer conversations. The successful candidate will be an experienced Red Team Lead with solid involvement in leading and delivering offensive security engagements such as threat‑led penetration testing (TLPT), adversary simulation, adversary emulation, purple teaming and social engineering. This is an excellent opportunity for a highly motivated Red Team Lead to continue their development and work on a range of exciting projects.

Responsibilities

• Lead complex red team engagements covering the whole engagement lifecycle – scoping, project initiation, delivery, reporting and post‑engagement debrief.
• Demonstrate advanced knowledge of attack methodologies, including privilege escalation, lateral movement, persistence and exfiltration techniques.
• Prepare comprehensive reports detailing red team findings, including identified vulnerabilities, successful exploits and recommendations for remediation.
• Support the sales team with pre‑sales and assist with technical input into tenders and proposals.
• Conduct research and participate in knowledge‑sharing activities to enhance the organisation’s offensive security capabilities.
• Actively collaborate with Bridewell’s Blue Team to share knowledge and techniques.
• Work with teams across the business, providing the latest technical knowledge to collaborate on interesting client projects.
• Stay up to date with the latest attack techniques, vulnerability trends and industry best practices.
• Showcase Bridewell’s capabilities in public speaking, webinars and other marketing initiatives.
• Continuously develop technical skills and expertise through training and certifications.
• Perform R&D to improve capability, development of payloads.
• Line manage, mentor, coach and upskill team members.

Qualifications

• Minimum of 6 years of experience in a dedicated red teaming role.
• Highly proficient in performing a variety of offensive security engagements such as adversary simulation, threat emulation, purple teaming and infrastructure assessments.
• Experience performing regulated Threat‑Led Penetration Testing (TLPT), especially within Financial Services (CBEST, TIBER‑EU frameworks).
• Hold industry recognised qualifications such as CREST CCT, CCSAS/CCRTS and CCSAM/CCRTM (or actively working towards).
• Proficiency in programming or scripting (Python, Bash, PowerShell, C, C#).
• Demonstrable experience in threat simulations, phishing, social engineering and physical security.
• Advanced C2 frameworks knowledge (Cobalt Strike / Outflank OST).
• Blue team and defensive knowledge.
• Experience with Cloud red teaming and identity‑based attacks.
• Aware of the Mitre ATT&CK framework and how it can be used to learn an adversary’s tactics and techniques and focus incident response.
• Adept at infrastructure deployment, including Infrastructure as Code (IaC) – Terraform, Ansible.
• Malware development.
• Proficiency across a range of operating systems (Windows, Linux, macOS).

Benefits

• 25 Days Holiday – plus buy and sell options.
• Flexible Working (around core office hours).
• Performance Incentive Bonus.
• Company Pension.
• Employee Shareholder Scheme.
• Personal Day & Birthday Off – after 1 year of service.
• Family Leave – after 1 year of service.
• Enhanced Maternity based on length of service.
• Dedicated Training Budget.
• Life Assurance.
• Electric Vehicle Scheme & Cycle to Work Scheme.
• Private Healthcare (incl. Gym discounts and vision care).

Location and Travel

Bridewell operates a hybrid and flexible working policy; however, you will be required to travel to different sites on occasion.

Security Clearance

To be eligible for this role you must either hold SC clearance or be eligible and willing to go through security clearance.

Equal Opportunity

Bridewell values diversity in the workplace and is a fair and equal opportunity employer. We are committed to creating an equal and inclusive working environment, with the aim that our employees will be truly representative of all sections of society and each person feels respected and able to give their best.