Role: Red Team ConsultantLocation: Remote, with travel to client sites. Some occasional office attendance required for meetings or trainingThanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group.We are on a mission to make society a safer and more secure place. Our people are the ones who make that possible; a global community of talented individuals working together towards a safer future.We aim to create an environment where everyone can reach their full potential. We work together, we are brilliantly creative, we embrace difference and we want you to join in our mission, to make the world safer and more secure.Take a look at our website here to learn more about why we’re one of the leading global Cyber Security and Risk Mitigation business… https://www.nccgroup.com/uk/The Opportunity: The successful candidate will be involved in each aspect of the attack chain from social engineering and initial access, evading best-in-class EDR products, through lateral movement and achieving objectives set by the client.Operational Security and safety of target environments is of paramount importance, the successful candidate will have extensive experience of managing operational risk and communicating with client stakeholders on the risks and mitigations for all Red Team activity.Additionally, the successful candidate will be well versed in capability development and the creation of tools to automate activity or exploit weaknesses identified in the environment.Finally, the successful candidate will have a high-standard of written English for reports and presentations, as well as the ability to brief both technical and C-Level audiences on their activities and findings.Key Accountabilities:Simulate Adversarial Attacks: Design, plan, and execute realistic cyber-attack scenarios to identify vulnerabilities and weaknesses within our target organization's infrastructure, applications, and processes. We operate against high-maturity clients across a number of internationally recognised regulatory frameworks.Report and Advise: Clearly convey findings, vulnerabilities, and potential risks to stakeholders, offering actionable technical recommendations, procedural and defensive improvements. The ability to write attack narratives to enable non-technical readers to understand the actions performed.Engage and Collaborate: Ability to work as part of a team on large engagements and individually for smaller ones. Forging strong relationships with colleagues, client contacts and C-Level teams, security departments, and other stakeholders to drive maximum value.Continuous Learning: Keep abreast of the latest adversarial techniques, tools, and trends in Red Teaming and more general global cybersecurity. Sharing knowledge from successful techniques as well as evaluating and introducing new methodologies where appropriate.Mentoring and Training: Act as a resource for junior team members and other departments, imparting knowledge on current threat vectors and best practices for defence.You’ll stand out if you haveDemonstrable experience in advanced red teaming (ideally 3-5 years experience)Demonstrable experience in regulatory schemes globally (CBEST/TIBER/CORIE/AASE/iCAST/FEER).Comprehensive understanding the majority of the following domains:Cloud platforms and their security mechanismsMicrosoft Active DirectoryOffice 365 SecurityEDR/EPP BypassesEmail Gateways and FiltersWeb Gateways and ProxiesMacOS Client EnvironmentsExceptional written and verbal communication skills, tailored to a diverse audience.Proactive, team-oriented, and adept at problem-solving.Familiarity with the UK's cybersecurity regulations, standards, and best practices.CREST CCT-INF or CREST CCSAS or CREST CCSAMAt NCC, we put clients first, working together as one team to exceed expectations and add value. We empower each other, take responsibility, communicate openly, and embrace new ideas. With a proactive approach and a commitment to continuous learning, we adapt to change, solve problems, and keep customers at the heart of everything we do.What we offer Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Learning & Development: We are committed to your personal development and progression with our comprehensive learning and development programs. Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme.