Principal Consultant - Red Team/CREST RTM/RTS (Spider Labs)

LevelBlue reduces risk and builds lasting resilience so organizations can innovate and advance their mission with confidence. As the world’s most analyst-recognized and largest pure-play managed security services provider, LevelBlue elevates client outcomes that matter: stronger defense, faster response, and sustained business continuity. LevelBlue combines AI-powered security operations, advanced threat intelligence, and elite human expertise to provide the most comprehensive portfolio of strategic advisory, managed security, offensive security, and incident response services.

The Principal Security Consultant role offers an exciting opportunity to work within the world-renowned and truly global SpiderLabs team. The team currently has security consultants throughout North America, Latin and Central America, Europe, Africa, Australia, and Asia. As a Red Team Leader you will deliver red-team engagements and adversary simulation exercises for enterprise clients across the EMEA region. You will lead technical execution (including custom tooling and malware research) and collaborate with client stakeholders. This is a senior technical leader hands-on role: you will perform research, be hands on keyboard and mentor others. A more managerial focused role could also be considered for the right candidate. Candidates should be well versed in leading red teaming engagements as well as the softer side of consultancy. Consultants must be able to balance workload, work effectively, and jointly with colleagues within the ever-growing team worldwide.

Specific Responsibilities:

• Lead end-to-end red-team engagements (scoping, execution, debrief and remediation tracking) for enterprise clients in EMEA simulating advanced adversaries.
• Build, secure, and operate various C2 channels as required by the engagement.
• Perform exploit development, research and weaponization.
• Lead client interactions: present technical findings and executive summaries and deliver remediation roadmaps.
• Mentor junior red teamers, perform code reviews, and contribute to team playbooks and tooling frameworks.

Qualifications:

• Active CCRTS or CCRTM qualification is essential for this role (formerly known as CCSAS or CCSAM, respectively).
• 5+ years of professional red team experience with demonstrable delivery of client engagements across enterprise environments.
• Proven experience delivering multi-week red team / adversary emulation engagements to clients (end-to-end).
• Have experience in developing your own, and enhancing existing offensive security tools, ideally in .NET, C or C++.
• Solid understanding of Windows internals and Active Directory; good knowledge of Linux/macOS internals.
• Excellent English language communication skills.
• Ability to present at conferences.
• Is a highly autonomous worker, able to operate with little to no supervision.
• Strong team player and technical innovator with an ability to build and leverage relationships on an inter and intradepartmental basis.
• Ability to create and maintain methodologies and process definitions.
• Experience developing, delivering and managing large consulting engagements.

Education:

• A high school diploma or equivalent is required; a college or university degree is a plus.
• Industry certifications preferred: OSCP, OSCE, OSEE, GXPN, and/or GPEN, CRTO.

This role is open to candidates legally authorized to work in the United Kingdom. At LevelBlue, we support flexible work and bring people together in person for key moments based on role, team, and business needs. LevelBlue is committed to a culture of respect, inclusion, and equal opportunity. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other status protected under applicable law.