Offensive Security Tester – Red Team in London

As a global critical financial infrastructure, the protection of Euroclear information and assets is fundamental to the company’s business. Security is at the core of our services, firmly embedded in the management systems and processes of the company. You will be joining our CISO division in charge of putting in place the required controls to adequately and effectively protect our information assets.

You will join the Offensive Security Center who manage and coordinate:

• Penetration testing
• Red team Exercises
• Purple team Exercises
• Static Code Analysis
• Vulnerability Management

As a member of the Red Team, you will play a crucial role in safeguarding our organization's digital assets by simulating real-world cyber-attacks and identifying vulnerabilities in our systems. This proactive approach to security ensures that we stay ahead of potential threats and continuously improve our defences.

The main responsibilities:

• Plan & coordinate red team tests with internal stakeholders
• Plan & coordinate red team tests with external providers
• Plan red team testing and security assessments to identify weaknesses in our network, applications, and infrastructure.
• Develop and execute advanced attack simulations to assess the effectiveness of our security controls.
• Collaborate with the Blue Team to remediate identified vulnerabilities and enhance our security posture.
• Analyse test outcomes or security incidents and provide detailed reports on findings, including recommendations for mitigation.
• Stay up to date with the latest cyber threats, attack techniques, and security trends.
• Participate in red team/blue team exercises to sharpen skills and promote a culture of continuous improvement.
• Present & discuss the results to all relevant stakeholders (technical and non-technical)
• Advise (senior) stakeholders, such as project leads, developers, and analysts on how to remediate and prevent any detected issues
• Contribute to the execution of the security strategy roadmap

In this role you will encounter the full spectrum of the attack chain, ranging from web applications to binary exploitation and infrastructure. As an offensive security tester, you will be supported by an experienced team who will assist, coach, and guide you where needed.

In summary, the ideal candidate needs to understand the red team testing process and practices, have a strong interest in offensive security, and a willingness to obtain certifications.

Technical skills:

• Proven experience in penetration testing, red teaming, or offensive security operations.
• Strong understanding of networking principles, protocols, and security practices.
• Proficiency in Unix and Windows operating systems.
• Excellent problem-solving skills and the ability to think like an attacker.
• Professional certifications such as OSCP, CEH, or similar are highly desirable.
• Ability to work independently and manage multiple projects simultaneously.
• Outstanding communication skills in English, both verbal and written.
• Ethical approach to security and a commitment to maintaining confidentiality.
• Experience with Breach and attack simulation is an advantage.
• Be an ethical team player who communicates in an open, respectful and constructive way with her/his customers and peers, both verbally and in writing.
• You will take ownership and ensure that organizational quality standards are met.
• Be a very good communicator in English, both verbal and written, and able to discuss and defend the security interests with individuals and groups of senior businesspeople as well as deep technical IT experts.
• Be able to work independently, responsibly and professionally with highly confidential information.