Bestkaam Logo
Back to Jobs
Softcell Technologies Global Pvt. Ltd.

Red Team Analyst

Actively Reviewing

Softcell Technologies Global Pvt. Ltd.

Mumbai Full-Time 2–4 yrs exp Posted 8 hours ago  · Apply by Sep 14, 2026

We are seeking a skilled Red Team Engineer to simulate real-world cyber adversaries and assess the organization’s detection and response capabilities. The role involves planning and executing adversary emulation, breach & attack simulations, and advanced penetration testing to identify security gaps across people, process, and technology.


Key Responsibilities

Red Team Operations

  • Conduct red team engagements simulating real-world threat actors and attack scenarios.
  • Perform external and internal reconnaissance, OSINT, and attack surface mapping.
  • Execute initial access techniques, including:
  • Phishing and social engineering
  • Credential attacks
  • Exploitation of exposed services and web vulnerabilities
  • Perform post-exploitation activities such as:
  • Privilege escalation
  • Lateral movement
  • Persistence
  • Credential harvesting

Adversary Emulation

  • Emulate threat actor behavior using the MITRE ATT&CK framework.
  • Design and execute attack chains across endpoints, Active Directory, networks, applications, and cloud environments.
  • Maintain strict OPSEC during red team engagements to avoid detection unless intended.

Tooling & Infrastructure

  • Use and manage red team tools and frameworks such as:
  • Metasploit, Nmap, Burp Suite, CrackMapExec, BloodHound
  • C2 frameworks (e.g., Cobalt Strike, Sliver, Mythic)
  • Assist in setting up attack infrastructure (domains, redirectors, phishing frameworks, payload hosting).
  • Perform basic evasion techniques against AV/EDR/XDR solutions.

Reporting & Collaboration

  • Document findings, attack paths, and evidence in a clear and structured manner.
  • Prepare red team reports, including:
  • Executive summary
  • Attack narrative & kill chain
  • MITRE technique mapping
  • Risk impact and recommendations
  • Support remediation validation and re-testing activities.


Required Qualifications

Education

  • Bachelor’s degree in Computer Science, Information Security, or a related field (preferred).

Experience

  • 1–3 years of experience in red teaming, penetration testing, or offensive security.
  • Hands-on experience with network, web, Active Directory, and endpoint attacks.


Technical Skills (Required)

  • Strong understanding of:
  • TCP/IP, DNS, HTTP/S
  • Windows & Linux internals
  • Active Directory fundamentals
  • Knowledge of:
  • OWASP Top 10 vulnerabilities
  • Authentication and authorization flaws
  • Familiarity with:
  • MITRE ATT&CK framework
  • Red Team methodologies and engagement rules


Nice to Have / Preferred

  • Experience with:
  • Active Directory attacks (Kerberoasting, AS-REP Roasting, Pass-the-Hash)
  • Phishing simulation campaigns
  • Cloud security testing (AWS/Azure misconfigurations)
  • Scripting skills in Python, Bash, or PowerShell
  • Exposure to EDR/XDR evasion techniques
  • Experience in Red Team


Certifications (Preferred, Not Mandatory)

  • CRTO (Certified Red Team Operator)
  • OSCP
  • CRTE / CRTP