Role: Senior Security Consultant - Red Team

Location: Madrid (Hybrid)

Thank you for checking out our job opening!

We are excited that YOU are interested in joining NCC Group.

The Role

You will be involved in every aspect of the attack chain, from social engineering and initial access to evading advanced EDR products and lateral movement.

Operational security and safety of target environments are critical.

You will leverage your extensive experience managing operational risk and communicating with client stakeholders to mitigate risks during all Red Team activities.

You will lead in capability development and tool creation to automate activities or exploit weaknesses identified in the environment.

You will apply your high standard of written English for reports and presentations, briefing both technical and C-level audiences on your activities and findings.

Key Accountabilities

Design and execute cyber-attack scenarios to identify vulnerabilities, working with high-maturity clients and recognized regulatory frameworks.

Present findings and risks to stakeholders, offer actionable recommendations, and write attack narratives for non-technical readers.

Work independently and as part of a team, building strong relationships with colleagues, clients, C-level teams, and security departments to maximize value.

Stay updated on the latest adversarial techniques, tools, and cybersecurity trends, sharing successful methods and introducing new ones when appropriate.

Mentor and train junior team members and other departments, imparting knowledge on current threat vectors and best practices for defense.

What We're Looking For

Demonstrable experience in advanced red teaming.

Experience working with global regulatory schemes (CBEST, TIBER, CORIE, AASE, iCAST, FEER).

A Comprehensive Understanding Of Domains Such As

Cloud platforms and security mechanisms

Microsoft Active Directory & Office 365 Security

EDR/EPP bypass techniques

Email Gateways and Filters

Web Gateways and Proxies

MacOS client environments

Proactive, team-oriented, and adept at problem-solving.

Familiarity with Spain's cybersecurity regulations, standards, and best practices.

CREST certifications (CCT-INF, CCSAS, or CCSAM) are a plus.

About NCC Group

We are passionate about helping our customers protect their brand, value, and reputation against evolving threats.

We invest in our people and our business.

We foster an environment where all colleagues feel safe to be authentic, share personal experiences, and represent diversity.

We ensure equal opportunity for everyone to succeed.

Learn more about us at

NCC Group

Benefits

Competitive salary and package

Lifestyle and wellness benefits

A hybrid role promoting work-life balance

Additional perks to support your daily life

Application Process

We review all applications and will contact you if your skills and experience match our needs.

If you don't hear from us within 10 days, your CV may be kept on file for future opportunities.

Please check our careers page regularly.

If you prefer us not to retain your details, email

All data is handled per our Privacy Policy.

We support diversity and flexibility; let us know if you need accommodations during the process.

Note

This role requires background clearance due to the nature of our work.

Applicants must be willing to undergo vetting.

#J-18808-Ljbffr