Red Team Lead

Overview: A market leading Investment Banking organization are searching for an experienced Red Team Lead to join the business at VP level and take responsibility for the EMEA region.

• Lead the design, planning, and execution of sophisticated Red Team engagements simulating advanced persistent threats across global enterprise environments
• Develop and refine Tactics, Techniques, and Procedures (TTPs) aligned with MITRE ATT&CK to challenge and validate detection and response mechanisms
• Conduct advanced adversary emulation, lateral movement, privilege escalation, and persistence operations in diverse environments
• Reverse engineer proof-of-concept exploits and assess their relevance and impact within infrastructure
• Partner with Blue Team, Detection Engineering, and Threat Intelligence to validate findings and enhance detection logic and response workflows
• Deliver clear, actionable reporting of findings, attack paths, and remediation strategies to both technical and executive stakeholders
• Lead the development and maintenance of internal Red Team tools, scripts, and infrastructure to support scalable operations
• Mentor and coach junior Red Team members, fostering a culture of continuous learning and technical excellence
• Stay at the forefront of emerging threats, vulnerabilities, and offensive security methodologies to inform team strategy and tooling
• Collaborate with SOC team and selected vendor to plan and execute annual purple team testing
• Lead and manage a team of security professionals and vendor resources to conduct regular risk assessments to identify and exploit vulnerabilities, mis-configurations within EMEA internal & external infrastructure
• Implement and maintain governance of any assessments finding remediation progress and create regular reporting for tech and executives
• Collaborate with other technology teams (i.e. infra, app and etc) to develop and improve defensive strategies and security measures to prevent real-world attacks

• Must have combined 10+ years of experience with information technology and recent experience in information security with an offensive security discipline
• Proven track record of leading Red Team engagements or advanced penetration testing engagements in complex enterprise environments
• Deep familiarity with C2 frameworks (e.g., Cobalt Strike, Mythic, Sliver), evasion techniques, and post-exploitation tooling
• Advanced proficiency in scripting or programming languages (e.g., Python, PowerShell, Bash, C/C++)
• Expert-level understanding of Windows and Linux internals, Active Directory, and enterprise network architecture
• Experience with vulnerability research, exploit development, and threat emulation
• Strong knowledge of security frameworks such as MITRE ATT&CK, NIST-CSF, and OWASP
• Strong ability to analyse and distil complex issues and present succinct updates to management and associated committees
• The ability to create clear documentation relating to Operational Processes and Procedures

• £100k - £125k Basic Salary
• 20% Bonus
• London (Hybrid Working)