Senior Red Team Operator | Pharma (Hybrid)

We are seeking a Red Team Operator to emulate advanced adversaries, outsmart blue teams, and push the boundaries of cyber defense. This is your chance to operate where creativity, technical mastery, and relentless curiosity are the norm. You will be offering services to a multinational pharmaceutical company in the cybersecurity team.

• Adversary Simulation: Plan and execute full‑spectrum Red Team operations—initial access, lateral movement, privilege escalation, and data exfiltration—mirroring real‑world threat actors.
• Attack Development: Build and deploy custom tools, payloads, and resilient C2 infrastructure to pressure‑test modern defenses.
• Critical Engagements: Target the organization’s most sensitive assets with advanced offensive techniques across on‑prem, cloud, and hybrid environments.
• Scenario Design: Collaborate with internal Red and White Teams to craft attack scenarios that challenge defenders and expose meaningful gaps.
• Reporting: Deliver crisp, actionable technical reports and executive summaries that tie findings to business risk and remediation priorities.
• Remediation Partnership: Advise engineering/operations on closing gaps, validating fixes, and raising the security bar.
• Continuous Innovation: Research emerging vectors, develop novel tradecraft, and mentor junior operators.
• Stakeholder Engagement: Present results to technical and executive audiences; participate in governance and remediation sessions.
• Security Initiatives: Support cybersecurity research and uplift projects when not executing Red Team ops.

• Experience: 4+ years in Red Team operations with a track record of high‑impact engagements in complex, regulated environments.
• Technical Mastery: Hands‑on with offensive security frameworks (MITRE ATT&CK, Cobalt Strike, Sliver, Mythic), custom tooling/malware, in‑memory execution, and modern post‑exploitation techniques.
• Programming & Creativity: Skilled in scripting (Python, PowerShell, Go) and engineering unconventional attack paths.
• Stealth & Detection Evasion: Expert at flying under the radar—evading EDR, network sensors, and endpoint controls to minimize detection and keep operations covert.
• Cloud & Identity Offense: Practical experience targeting cloud control planes and identity systems for persistence and escalation.
• Communication: Fluent English; able to brief everyone from SOC analysts to C‑suite.
• Autonomy & Initiative: Operate independently with disciplined OPSEC and strong problem‑solving instincts.
• Passion for Offense: Passionate about emulating real‑world threat actors by continuously researching and developing novel attack paths, identifying unconventional entry points, and devising creative techniques to breach and challenge the toughest security controls.

• 08h-17h from Monday to Friday (flexible)
• 4 days by remote & 1 day on‑site.
• Outside Barcelona (5 times a year for special events)

• Salary package based on your profile.
• Permanent Contract
• Ticket restaurant included in-office hours
• Flexible Retribution Program (medical insurance, public transport ticket and childcare check)
• Discounts on gym network (Urban Sports Club)
• Learning & Development

Our goal is that you are well in every way!