2 of 2 Remote Red Team Jobs in Gloucester

deep technical knowledge, operational maturity, and experience applying security best practices across a fast-moving cloud infrastructure. What You'll Do SOC Leadership & Threat Detection Lead and mentor a team of SOC analysts and engineers, ensuring high-quality coverage across all GCP workloads. Establish and maintain 24/7 detection and response capabilities, fine-tuning alerting rules and monitoring … across cloud workloads, Kubernetes clusters, APIs, and user activity. Integrate external threat intelligence feeds, aligning TTPs with the MITRE ATT&CK framework. Drive continuous improvement by conducting regular purple team exercises and scenario-based tabletop tests. Cloud Security Engineering Work hands-on with GCP security controls, including: Security Command Center VPC Service Controls IAM (Identity & Access Management) Cloud Logging … Architecture in a cloud-native environment. Familiarity with OPA/Gatekeeper, Kubernetes Admission Controllers. Background in red teaming or adversary simulation (MITRE Caldera, Atomic Red Team). Experience working with BigQuery, Data Loss Prevention (DLP) tools, and Key Management Systems (KMS). Why This Role? Work directly with engineering, DevSecOps, and compliance leadership. Lead cybersecurity More ❯

to provide root cause analysis of complex, non-standard analytic findings and anomaly-based detections for which a playbook does not exist. Mentor and share knowledge with the wider team as and when it becomes prudent. Contribute and facilitate collaboration through the SOC Knowledge Repository and associated systems, autonomously creating new knowledge and updating existing items. Working outside the … HMG community to build/develop relationships with external SOCs and cyber security researchers, identify analytics, tradecraft and threat intelligence that may benefit the Blue Team, including both communicating suggestions for funding/prioritisation to technical lead, and working as lead implementor when required. Development of new complex and anomaly-based KQL analytics, and associated playbooks that result in … Research potential vulnerabilities which could lead to environment compromise. Produce proof-of-concept exploit code capable of demonstrating exploitation of the identified vulnerabilities. Emulate adversary TTPs for purposes of team training and detection capability evaluation Review findings of red team/Pentest activities and derive new improvements to detection rules Provide forensic support, and threat-emulation More ❯