Offensive Security Engineer – Red Team

About the role

PlexTrac is looking for an Offensive Security Engineer to join its remote‑first Red Team. You will think like an attacker, uncover weaknesses across cloud, network, and application layers, and work closely with engineering to remediate findings.

Key responsibilities

• Plan and execute Red Team engagements across AWS, GCP, Azure, internal networks, web applications, and the SaaS product.
• Simulate realistic attack chains—from initial access to data exfiltration—using current threat‑actor techniques.
• Conduct assumed‑breach, purple‑team, and objective‑based exercises.
• Assess cloud attack surfaces such as IAM roles, storage misconfigurations, serverless functions, containers, and CI/CD pipelines.
• Test Active Directory and hybrid identity environments for advanced attack paths.
• Perform web and API testing for authentication flaws, authorization bypasses, and business‑logic vulnerabilities.
• Build, customize, and maintain offensive tools, scripts, and C2 infrastructure.
• Develop and manage Red Team infrastructure including attack servers, redirectors, and phishing platforms.
• Write detailed reports documenting attack paths, evidence, business impact, and remediation steps.
• Present findings to technical teams, leadership, and non‑technical stakeholders.
• Track remediation progress and validate that fixes close identified gaps.
• Help define the scope, methodology, and maturity of the Red Team program as it scales.
• Mentor junior team members and share knowledge across the security organization.

Required profile

• Hands‑on experience planning and executing Red Team engagements.
• Ability to produce clear, actionable technical reports.
• Experience collaborating with engineering and blue‑team counterparts.
• Willingness to mentor junior staff and contribute to security standards.

Required skills

• AWS, GCP, Azure cloud platforms
• IAM role and policy management
• Active Directory and hybrid identity security
• Web application and API security testing
• Serverless, container, and CI/CD pipeline security
• Offensive tooling, scripting, and C2 infrastructure
• Phishing platform development
• Red‑team methodologies and attack chain simulation