Offensive RnD Lead

At DNV Cyber, Red and Blue Teaming and NSD Unit is specializing in red teaming, purple teaming, and adversary simulation frameworks such as TIBER and DORA TLPT. Our mission is to innovate and develop cutting-edge tools and technologies that realistically simulate adversaries, their techniques, tactics, and procedures (TTPs), ensuring our clients stay ahead of evolving threats. We’re seeking an Offensive RnD Lead to lead these efforts and drive strategic excellence.

The Offensive RnD Lead is a senior role tasked with technology-driven offensive cybersecurity development focus. This position blends deep technical expertise in ethical hacking and adversary simulation with strategic vision to develop next-generation tools and lead projects, including the EDF AIDA program. 

Your main task is to lead our offensive technology research and development programs and innovate the next things to come in adversary simulations. In addition, you will have an opportunity to work with some very security-minded colleagues and clients.

This role operates within the cybersecurity industry, with development activities centered on:

• Red teaming and purple teaming operations.
• Adversary simulations, including TIBER (Threat Intelligence-Based Ethical Red Teaming) and DORA TLPT (Digital Operational Resilience Act Threat-Led Penetration Testing).
• Tool and technology development to innovate realistic adversary simulation techniques, tactics, and procedures.

Key Responsibilities:

• Strategy Development: Define and execute an offensive cybersecurity roadmap to simulate advanced adversaries and enhance client resilience.
• EDF AIDA Program Leadership: Act as a Work Package Leader within the European Defence Fund (EDF) Artificial Intelligence-based Data Analysis (AIDA) program, coordinating with international partners, and meeting program milestones.
• Tool & Technology Innovation: Lead the design and development of cutting-edge offensive security tools and frameworks to simulate realistic adversary TTPs, advancing red teaming, purple teaming, and simulations like TIBER and DORA TLPT.
• Threat Simulation: Conduct advanced vulnerability assessments and exploit development across Windows and Linux systems, leveraging frameworks like MITRE ATT&CK and D3FEND.
• Collaboration: Work with purple teams, defensive units, and customers to align offensive strategies with broader cybersecurity goals.
• Research & Development: Drive innovation by staying ahead of emerging threats, tools, and techniques in adversary simulation.
• Reporting: Deliver detailed technical reports and strategic updates to customers.

Visit our website to get to know more about us!

Primary Location: Espoo, Finland. However, for the right candidate, we are open to considering other DNV office locations within Finland.

Posting Deadline: 30/06/2025.

A security background check will be a part of the recruitment process.

We have recently embarked on an exciting journey – formerly known as Nixu, now combined forces with DNV and Applied Risk, with the goal of creating a leading European cyber security services business.

At DNV Cyber, we are passionate about cybersecurity and take pride in the way we are impacting the society we live in. We encourage you to excel professionally through knowledge sharing and demanding cases. At DNV Cyber, you'll have 500 colleagues who share an interest in cyber security with you.

At DNV Cyber, you will have the opportunity to work on a variety of cases and customers from various industries. You will be working in an international environment with global opportunities to advance in your career. With us, you will be surrounded by the most talented people in the cyber security field. We encourage you to keep challenging yourself by exploring new areas of expertise.

Join us on an exciting adventure of growth, meaningful work, and shaping the future through cyber security!

 DNV is an Equal Opportunity Employer and gives consideration for employment to qualified applicants without regard to gender, religion, race, national or ethnic origin, cultural background, social group, disability, sexual orientation, gender identity, marital status, age or political opinion. Diversity is fundamental to our culture and we invite you to be part of this diversity.

Required Qualifications:

• Experience:  Proven experience as a penetration tester and hands-on expertise in ethical hacking; experience in offensive security or adversary simulation roles.
• Technical Expertise: 
  • Deep understanding of cybersecurity principles and strong technical skills.
  • Familiarity with MITRE ATT&CK and D3FEND frameworks.
  • Proficiency with offensive security tools such as Nessus, Metasploit, and Command and Control frameworks.
  • Ability to identify vulnerabilities in both Windows and Linux systems.
  • Experience in exploit development and EDR (Endpoint Detection and Response) bypassing techniques.
• Communication: Excellent reporting and communication skills in English, with the ability to adapt messaging for diverse audiences.
• Consultant Skills (Essential for Success): 
  • Communication Skills: Tailor messages effectively to different situations and stakeholders.
  • Listening Skills: Understand client needs and empathize to build trust.
  • Relaxed Attitude: Adapt to requirements and ways of working. 
• Constant Learning Attitude: Constant learning attitude; not afraid to take on new challenges.

Preferred Qualifications:

• Security certifications in penetration testing or red teaming e.g. OSCP, OSCE

About The Accelerator
We rapidly nurture successful businesses and services that will shape the future of assurance. The Accelerator operates a portfolio of units undergoing significant growth, chiefly through acquisitions and partnerships. The Accelerator acts as a greenhouse for a strategically selected portfolio of businesses, each of which serves different industries and markets. The portfolio benefits from dedicated support to rapidly grow through organic means, as well as through acquisitions and partnerships. Three business units were housed in the Accelerator in 2022: Cyber Security, Digital Health, and Inspection.