Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and manage Red Team operations, ensuring high-quality engagements and client satisfaction.
- Company: Join a forward-thinking cybersecurity firm dedicated to innovative security solutions.
- Benefits: Enjoy remote work flexibility, competitive salary, and opportunities for professional growth.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technology and talented teams.
- Qualifications: Extensive experience in Red Team operations and strong technical knowledge required.
- Other info: Dynamic remote work environment with a focus on continuous learning and development.
The predicted salary is between 54000 - 84000 ÂŁ per year.
To lead, oversee, and quality assure the execution of Red Team engagements end-to-end from scoping & planning, through execution, reporting, to debrief and capability development. Ensure that all operations are safe, legal, technically robust, aligned with threat intelligence, compliance frameworks, and deliver high value to customers. Also act as a subject-matter expert and manager for both operations and sales / client-facing aspects of Red Team services.
Essential Duties and Responsibilities
- Engagement & Project Management
- Lead multiple concurrent Red Team engagements across industries.
- Define, negotiate and document scope, objectives, rules of engagement, deliverables, constraints, escalation & approval pathways.
- Oversee milestone planning e.g. kick-offs, stand-ups, wash-ups, strategic debriefs.
- Track engagement progress vs objectives, adjust as needed (scope creep, technical roadblocks, changing risk posture).
- Technical Leadership & Oversight
- Assess and manage technical risk ensuring that any red team activity minimises risk to customer operations, data, systems.
- Real-time decision making during operations around TTP deployment, bypass of defenses, managing detections or unexpected discovery.
- Review and approve attack plans, threat modelling, intelligence.
- Ensure operators employ strong operational security (OpSec), safe tradecraft, evidence collection, clean up post-engagement.
- Maintain up-to-date knowledge of Red Team tools, adversary TTPs, defensive controls, detection systems.
- Legal, Compliance & Ethical Oversight
- Ensure engagements comply with relevant legislation (Computer Misuse / cybercrime laws, data protection / privacy laws, cross-border implications).
- Ensure proper RoE, Authorisation, NDAs etc are in place.
- Ethical boundaries are defined and respected (non-disruptive vs destructive operations, safety, privacy).
- Ensure client teams (Blue, White, Leadership) are appropriately engaged / informed while preserving operational effectiveness.
- Ensure verifiable trail of evidence, documentation of decisions.
- Ingest threat intelligence (both internal and external) to design realistic adversary scenarios.
- Analyse likely threat actors relevant to the client’s sector, geography, technology stack.
- Ensure mapping of TTPs to enterprise defensive controls so that bypass or detection assumptions are realistic.
- Define high-level & detailed attack scenarios, get buy-in from stakeholders.
- Quality Assurance, Reporting & Debrief
- Approve final reports, attack paths and recommendations.
- Ensure reports are actionable, mapped to risks, business impact, prioritisation and are defensible.
- Lead strategic debriefs with clients showing what worked, what was detected and what needs improvement.
- Post engagement “wash-up” with lessons learned, replay / walkthrough and remediation tracking.
- Research, Development & Knowledge Sharing
- Mentor Red Team operators in skills, tradecraft and OpSec.
- Drive internal research, new tools, detection evasion, environment emulation in cloud, OT etc.
- Keep up with CREST (and other) certification standards / best practices.
- Build / maintain knowledge base of TTPs, failed vs successful techniques and case studies.
- Input into training, playbooks, standard operating procedures (SOPs).
- Maintain and evolve capability libraries (TTPs, tooling, tradecraft, detection evasion).
- Dedicated time will be provided for this.
- Assist in scoping and proposal of Red Team engagements for prospects.
- Help clients understand trade-offs (cost, risk, duration, impact).
- Help articulate the value of Red Team exercises vs other security activities (pen testing, bug bounty etc.).
- Governance & Stakeholder Management
- Part of “White Team” / engagement control group so monitoring risk, ensuring escalation and maintaining safety boundaries.
- Liaise with clients’ internal stakeholders, Security, Legal, Compliance, Business Risk, IT / DevOps / Ops / Cloud teams.
- Escalate issues when engagements encounter risk, detection, or adverse business impact.
- Manage communications & approval flows using Attack Approval Chains and Comms Channels.
- Ensure engagements satisfy frameworks/regulatory/compliance requirements applicable to client e.g. FedRAMP, STAR / CREST STAR, STAR-equivalent, DORA, TIBER, CBEST, AASE, etc. if applicable.
- Education, Experience, Skills, & Abilities
- Extensive experience leading and/or managing Red Team engagements in enterprise environments, preferably across multiple industries (e.g. finance, critical infrastructure, cloud / SaaS / OT).
- Deep technical knowledge of exploitation, post-exploitation, lateral movement, persistence, command & control, evasion, privilege escalation.
- Good knowledge and experience with Blue Team controls e.g. IDS/IPS, SIEM, EDR, NGFW, log analysis, detection engineering, ideally experience in bypassing or evading them safely.
- Solid experience with modern cloud environments (Azure, AWS, GCP), hybrid / on-premise networks, potentially OT/IoT/industrial environments.
- Strong tradecraft / OpSec awareness around how to avoid detection and conduct operations with minimal operational risk.
- Familiarity with CREST / STAR / TIBER etc. and regulatory / compliance requirements in relevant geographies.
- Proven experience in threat intelligence ingestion, scenario design, mapping to relevant threat actors.
- Excellent written and verbal communication skills and able to produce high quality reports, executive summaries, interact with senior leadership, legal, compliance etc.
- Good project / operations management skills with an eye for budgeting, scheduling, resource allocation, interfacing external/internal teams.
- Ability to make real-time decisions under pressure, to balance risk vs reward.
- Certifications (nice-to-have): CREST Certified Simulated Attack Manager / Red Team Manager (CCSAM / CCRTM), CREST Certified Red Team Specialist (CCRTS), etc. Plus, perhaps technical offensive certs.
- Working Conditions: The ideal candidate must be able to complete all physical requirements of the job with or without reasonable accommodation. Sitting and/or standing - Must be able to remain in a stationary position 50% of the time. Carrying and /or lifting - Must be able to carry / move laptop as needed throughout the work day. Environment - remote, work-from-home 100% of the time.
Red Team Operations Manager employer: Working Nomads
Contact Detail:
Working Nomads Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Red Team Operations Manager
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the industry. Attend meetups, webinars, or even online forums. The more people you know, the better your chances of landing that Red Team Operations Manager gig.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your past Red Team engagements, highlighting your successes and what you've learned. This will give potential employers a taste of what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on your technical knowledge and soft skills. Be ready to discuss your approach to risk management and how you handle real-time decision-making during operations. Confidence is key!
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Red Team Operations Manager
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience in leading Red Team engagements. We want to see how your skills align with the job description, so don’t hold back on showcasing your relevant achievements!
Showcase Your Technical Expertise: Since this role requires deep technical knowledge, be sure to include specific examples of your experience with exploitation, lateral movement, and operational security. We love seeing candidates who can demonstrate their understanding of the tools and techniques used in Red Team operations.
Communicate Clearly: Your written communication skills are crucial for this position, so make sure your application is clear and concise. Use straightforward language and structure your documents well. We appreciate a good narrative that tells us about your journey and expertise!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it gives you a chance to explore more about what we do at StudySmarter!
How to prepare for a job interview at Working Nomads
✨Know Your Red Team Inside Out
Before the interview, dive deep into the specifics of Red Team operations. Familiarise yourself with the latest tools, techniques, and procedures (TTPs) used in the industry. Being able to discuss recent engagements or case studies will show your expertise and passion for the role.
✨Master the Art of Communication
As a Red Team Operations Manager, you'll need to communicate complex ideas clearly. Practice explaining technical concepts in simple terms, especially how they relate to client needs. Prepare to discuss how you would present findings to stakeholders, ensuring they understand the value of your work.
✨Demonstrate Project Management Skills
Be ready to showcase your project management experience. Discuss how you've led multiple engagements, managed timelines, and navigated scope changes. Use specific examples to illustrate your ability to keep projects on track while ensuring quality and compliance.
✨Prepare for Ethical Dilemmas
Expect questions about ethical considerations in Red Team operations. Think about scenarios where you had to balance operational effectiveness with legal and ethical boundaries. Be prepared to articulate your approach to maintaining compliance while delivering high-value results for clients.
