CRIMSON
7

Jobs

.

Jobs

We’re looking for experienced red team specialists with a strong purple-team mindset. You’ll find more details below. This position is based in Belgium, and we’re open to discussing remote work from elsewhere.

Senior Security Engineer (Red & Purple Team)

Position: Senior Security Engineer (Red & Purple Team)
Location: Belgium, we also accept EU applicants. No candidates outside EU  Belgium, we also accept EU applicants. No candidates outside EU

About Us
At Crimson7, we provide advanced cybersecurity solutions through our research lab. Our focus on Attack Intelligence and Security Operations helps organizations tackle evolving threats.

Through deep understanding of attack techniques, we learn how to both reproduce and detect them. Our mission is to provide bespoke technical expertise and adversary-focused security, intelligence, tools and technology to clients and partners.

Offensive security research is key for our business, it enriches intelligence and resilience capabilities, enables continuous validation, response and threat hunting. We are looking for an Offensive Security tools developer and malware researcher.


Key Responsibilities
  • Conduct and execute Red Team activities across the entire kill-chain.
  • Investigate threat intelligence feeds, understand TTPs and be capable of extracting actor’s tradecrafts from attacks and trends; reverse engineering artefacts from known breaches.
  • Conduct Purple Teams in collaboration with clients’ analysts, including developing the TTPs yourself and the corresponding Detection rules.
  • Understand how to deliver value, being proactive and going beyond the engagement deliverables, be ready to engage on a premium advisory/expert role on a continuous relation.
  • Take ownership of projects and deliverables.
  • Conduct research and analysis using in-house as well as external resources, be ready to scout the internet to acquire new knowledge, self-train, spread; you’ll be a team worker.
  • Contribute to the corporate brand, by being active in the community, eventually prepare and submit papers to conferences in collaboration with the rest of the Research team.
Required Skills & Experience
  • Minimum 2 years hands-on experience of conducting similar type of engagements in a Red/Purple team role or similar
  • Strong ambition and the practical skills to dive into blue-team work, detection engineering and threat hunting. We firmly believe a great Red Teamer must also have strong detection engineering skills.
  • You are not afraid of building your own lab environment or developing scripts and tools
  • Possess adaptability and flexibility, understand that Crimson7 doesn’t have the typical corporate setup. Show an enthusiastic personality and be ready to develop fast in a constantly evolving role.
  • Familiar with the following security concepts on top of ethical hacking: Security Operations, SoC triaging, incident investigation and root cause analysis, malware reverse engineering, networking and secure networking/firewalling, zero trust, authentication and identity security, cloud security, application security.
  • Familiar with Microsoft security stack with special focus on MDE, MDI, Sentinel Azure AD/Entra.
  • Must be able to explain cyber security concepts in terms that can be understood by people not familiar with cyber security
  • Good written and verbal communication skills.
  • Fluency in speaking and writing English is required. Fluency in any of the Belgian native languages like Dutch or French are a plus.
Nice to have
  • Industry Certifications in the space of ethical hacking OFFSEC are appreciated for this role.
  • IT operations experience is a plus.
  • IT architecture in cloud environments like AWS and Azure experience/certification is a plus
  • Knowledge or experience with Microsoft Sentinel/Automation is a plus
  • Incident Response experience is a plus.
  • Experience in Threat Hunting is highly appreciated.
Contact us via mail: joey @ crimson7.io