Purple Team / Offensive Security Specialist (K/M)

Currently supporting an international organization in the financial services sector in developing the Cybersecurity Research & Offensive Security team. The role is responsible for conducting advanced attack simulations, collaborating with security teams, and continuously testing and strengthening detection mechanisms.

• Experience in penetration testing, offensive security, or red/purple team operations
• Very good knowledge of modern attack techniques and adversary behaviors
• Experience bypassing security mechanisms such as EDR, DLP, firewalls, IDS/IPS, and web proxies
• Practical experience in vulnerability identification and exploitation
• Experience working with security tools and automation
• Knowledge of malware techniques including obfuscation, persistence, and data exfiltration
• Ability to clearly communicate technical risks to both technical teams and business stakeholders
• Experience working in collaborative environments across different security teams

Nice to have:

• Experience in attack simulation or adversary emulation
• Knowledge of exploit development or reverse engineering
• Experience with large infrastructure or cloud environments
• Industry certifications such as Offensive Security Certified Professional (OSCP), Offensive Security Experienced Penetration Tester (OSEP), Certified Red Team Operator (CRTO)

Responsibilities:

• Planning and executing Purple Team engagements simulating realistic attack scenarios and advanced adversary behaviors
• Reproducing and analyzing attack paths identified during Red Team exercises and other security tests
• Creating and executing Tactics, Techniques and Procedures (TTPs) based on the MITRE ATT&CK framework
• Close collaboration with Red Team, Threat Intelligence, and Security Operations teams to verify detection effectiveness
• Conducting advanced penetration tests and attack simulations on infrastructure, applications, and cloud environments
• Researching and developing new offensive techniques and threat simulation tools
• Collaborating with stakeholders to define test scope, objectives, and execution methods while minimizing operational risk
• Preparing recommendations to improve detection, monitoring, and incident response mechanisms