Coalfire Logo

Coalfire

Senior Consultant, Adversary Services (Red Team)

Posted 11 Days Ago
Be an Early Applicant
Remote
Hiring Remotely in United States
152K-189K Annually
Senior level
Remote
Hiring Remotely in United States
152K-189K Annually
Senior level
Lead and execute covert red team, adversary emulation, and purple team engagements. Develop custom tradecraft, C2 infrastructure, exploits, and evasion techniques; simulate threat actor TTPs across on-prem, cloud, and hybrid environments. Advise clients, produce MITRE-aligned reporting, contribute tooling and research, and present thought leadership to improve detection and response.
The summary above was generated by AI
About Coalfire

Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world.

But that’s not who we are – that’s just what we do.
 
We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.

Position Summary:

We are seeking an exceptionally skilled and experienced Senior Consultant to join our team. This role leads covert red team, adversary simulation, purple team, and other targeted offensive security engagements that help clients measure detection, response, and resilience against realistic threats. You will simulate real-world threat actors, identify novel vulnerabilities and misconfigurations, build bespoke tradecraft and tooling, and deliver clear guidance that helps clients meaningfully improve their defensive posture. You will play a critical role in shaping our capabilities and ensuring that the Adversary Services team is recognized as one of the leading teams in the offensive security industry.

What You'll Do

    • Lead red team, adversary emulation, and purple team engagements for clients across a range of industries and environments, recommending appropriate remediation measures, with reporting aligned to MITRE ATT&CK and other relevant frameworks.
    • Detection and response evasion, creation of novel tactics and exploits, simulation of threat actor TTPs, and the evolution of sophisticated command and control (C2) infrastructure.
    • Act as a trusted advisor to our clients on security matters, providing insights and recommendations to inform strategic decision-making.
    • Develop and execute on sophisticated offensive cybersecurity tradecraft to gain initial access, establish persistence, escalate privileges, move laterally, and evade detection and response controls.
    • Stay current with emerging security threats and trends, and proactively identify areas of improvement to enhance our security posture.
    • Develop and maintain custom exploit code, scripts, and tools to automate and streamline adversary services activities.
    • Contribute to internal tradecraft, reusable tooling, testing methodologies, and team knowledge sharing.
    • Support thought leadership through research, internal training, blog content, conference presentations, or customer workshops.
    •  
       

What You'll Bring

    • 5+ years of experience in penetration testing, adversary services/red teaming, and purple teaming, with a minimum of 2+ years leading covert Red Team engagements.
    • Significant experience creating and delivering specialized testing for customers on the latest threat actor TTPs and capabilities, including advanced persistent threats (APTs), ransomware, and insider threats.
    • Experience presenting thought leadership, including talks at security conferences, blogs, or in other forums.
    • Deep technical expertise in adversary services-related tradecraft, including development and management of command and control infrastructure, custom development of leading C2 toolsets (e.g. Cobalt Strike, Sliver, Mythic), and stewardship of evasion techniques to maximize effectiveness.
    • Extensive experience conducting adversary services engagements across a variety of platforms and environments, including on-premise, cloud, and hybrid environments.
    • Excellent communication and collaboration skills, with the ability to effectively convey complex technical concepts to both technical and non-technical audiences.
    • Experience in all components of the attack chain, including OSINT, social engineering (e.g. phishing, vishing), custom payload creation, C2 infrastructure, lateral movement, privilege escalation, and impact objectives.
    • Technical knowledge of programming and scripting languages (e.g. Python, Ruby, Go) to develop and modify custom evasion tooling and infrastructure.
    • Ability to thrive in a fast-paced, dynamic environment, and adapt quickly to changing priorities and requirements.
    • Ability to foster a positive work environment and attitude, with a “team first” mentality.

Bonus Points

  • Relevant certifications such as CRTO, CRTO II, AT:RTO, OSEP, or related

Why You’ll Want to Join Us

At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.

Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.

At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, contact our Human Resources team at [email protected].

Similar Jobs

13 Minutes Ago
Remote or Hybrid
104K-186K Annually
Senior level
104K-186K Annually
Senior level
Artificial Intelligence • Big Data • Healthtech • Software • Biotech
Lead the external brand refresh and storytelling for SOPHiA GENETICS: evolve website and corporate collateral, craft clear messaging and visuals for technical topics, support PR and executive communications, and contribute to internal storytelling and high-impact presentations.
43 Minutes Ago
Remote or Hybrid
USA
Mid level
Mid level
Machine Learning • Payments • Security • Software • Financial Services
Lead technical design and development of software solutions; propose and document designs; resolve complex problems; provide technical guidance, review code/testing/documentation; apply modern methodologies and tools to advance business initiatives.
43 Minutes Ago
Remote or Hybrid
USA
100K-223K Annually
Senior level
100K-223K Annually
Senior level
Machine Learning • Payments • Security • Software • Financial Services
Lead and mature detection and incident response lifecycle, run day-to-day SOC operations, manage on‑call readiness, drive SIEM detections and automation, coordinate cross‑team responses, maintain playbooks and run readiness exercises, mentor analysts, and ensure regulatory and post‑incident improvements.
Top Skills: Cloud SecurityEdrElasticEndpoint SecurityFedrampHipaaIdentity And Access ManagementIds/IpsIso 27035JIRAMitre Att&CkNist 800-61Pci DssServicenowSIEMSoc 2SplunkThreat Intelligence

What you need to know about the Los Angeles Tech Scene

Los Angeles is a global leader in entertainment, so it’s no surprise that many of the biggest players in streaming, digital media and game development call the city home. But the city boasts plenty of non-entertainment innovation as well, with tech companies spanning verticals like AI, fintech, e-commerce and biotech. With major universities like Caltech, UCLA, USC and the nearby UC Irvine, the city has a steady supply of top-flight tech and engineering talent — not counting the graduates flocking to Los Angeles from across the world to enjoy its beaches, culture and year-round temperate climate.

Key Facts About Los Angeles Tech

  • Number of Tech Workers: 375,800; 5.5% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Snap, Netflix, SpaceX, Disney, Google
  • Key Industries: Artificial intelligence, adtech, media, software, game development
  • Funding Landscape: $11.6 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Strong Ventures, Fifth Wall, Upfront Ventures, Mucker Capital, Kittyhawk Ventures
  • Research Centers and Universities: California Institute of Technology, UCLA, University of Southern California, UC Irvine, Pepperdine, California Institute for Immunology and Immunotherapy, Center for Quantum Science and Engineering

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account