Offensive Security Engineer

Ovise has partnered with an industry-leading cybersecurity consultancy looking for a seasoned Offensive Security Engineer to help safeguard their systems through proactive and advanced attack simulations. You will be responsible for testing their infrastructure, identifying vulnerabilities, and working with teams to fix security gaps before attackers can exploit them.

Key Responsibilities

• Perform comprehensive penetration testing on networks, applications, and cloud infrastructure
• Develop and conduct advanced attack simulations to mimic real-world threats, including phishing campaigns, lateral movement, and privilege escalation
• Identify and exploit vulnerabilities across a variety of platforms, systems, and technologies to assess risk
• Automate repetitive attack techniques using tools like Cobalt Strike, Metasploit, or custom scripts
• Engage in adversary emulation using frameworks such as MITRE ATT&CK to simulate advanced persistent threats (APTs)
• Conduct post-exploitation analysis, developing reports and presenting findings to technical and executive teams
• Assist in the development of security countermeasures based on vulnerabilities discovered during engagements
• Collaborate closely with Blue Teams to conduct Purple Team exercises, providing insights to improve detection and defense strategies.

Qualification

• Proven experience in offensive security roles such as red teaming, penetration testing, or ethical hacking.
• Expertise in tools like Cobalt Strike, Metasploit, Burp Suite, Nmap, and Kali Linux.
• Strong understanding of adversary tactics, techniques, and procedures (TTPs), including how attackers infiltrate, pivot, and exfiltrate data.
• Knowledge of scripting languages like Python, Bash, or PowerShell for automating testing tasks.
• Experience with cloud environments (AWS, Azure, GCP) and their specific security challenges.
• Familiarity with vulnerability management frameworks (OSSTMM, OWASP).
• Relevant certifications such as OSCP, OSCE, CEH, CISSP, or similar are preferred