Lead Engineer - IT

Job Description:

Position Overview

We are seeking a highly skilled mid-level red team engineer to conduct in depth, stealth-focused offensive security assessments across a diverse enterprise environment. In this role, you will leverage advanced threat emulation tools to simulate realistic attack scenarios, identify critical vulnerabilities, and demonstrate practical exploitation paths. This position demands a creative problem solver who can thrive in challenging environments, maintain an awareness of emerging threats, and adapt to rapidly evolving security landscapes.

Key Responsibilities

1. Conduct Penetration Testing and Ethical Hacking

• Perform network, infrastructure, and application penetration tests to identify vulnerabilities.
• Simulate advanced persistent threat (APT) scenarios to assess and challenge existing security defenses.

2. Vulnerability Research & Exploitation

• Research and develop proof-of-concept exploits for newly identified vulnerabilities.
• Stay current on new tactics, techniques, and procedures used by threat actors.

3. Security Assessments & Reporting

• Prepare detailed assessment reports outlining discovered vulnerabilities, associated risks, and recommended remediation steps.
• Communicate findings and remediation strategies to both technical and non-technical stakeholders.

4. Collaboration & Knowledge Sharing

• Collaborate with security teams and mentor team members in offensive security best practices, new tools, and methodologies.
• Proactively propose enhancements to the organization’s security posture through creative offensive security measures.
• Maintain and advance Red Team tools, scripts, and frameworks.

Required Qualifications

• Education & Experience

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
• 3+ years of hands-on experience in penetration testing, vulnerability assessments, or red team operations.
• Experience with scripting languages (e.g., Python, PowerShell, Bash) for automating tasks.
• Preferred: CEH (Certified Ethical Hacker) or an equivalent offensive security certification such as OSCP, GPEN, eCPPT, PNPT, CRTO or other relevant security certifications will be a plus.

• Technical Skills

• Familiarity with tools such as Metasploit, Burp Suite, Nmap, Wireshark, and other penetration testing frameworks.
• Proficient in configurating and operating Cobalt Strike for C2 infrastructure.
• Solid understanding of various operating systems (Windows, Linux, macOS), network protocols, AD exploitation techniques and cloud environments.
• Knowledge of common vulnerabilities, attack vectors, and remediation strategies (e.g., OWASP Top Ten, MITRE ATT&CK).
• Ability to document findings with clarity for both technical and non-technical audiences

• Soft Skills

• Strong communication skills, with the ability to translate complex technical issues into clear, actionable recommendations.
• Excellent problem-solving and analytical abilities.
• Self-driven, able to work in a fast-paced environment with minimal supervision.

Preferred Shift Timings 5:00 PM to 2:00 PM IST

Location:

This position can be based in any of the following locations:

Current Guardian Colleagues: Please apply through the internal Jobs Hub in Workday