MissionHires is supporting our partner to hire a Red Team Consultant (Attack & Penetration) for up to 12 months on-site engagement with a major bank in Mexico City (CDMX). This role focuses on end-to-end red team operations—recon, design, execution, and reporting—evaluating internal networks, servers, detection/response, and real-world adversary simulation. Must be a Mexican national able to work on-site Monday–Friday, 8:00 AM–5:00 PM. Daily rate: $400 USD. Responsibilities Conduct intelligence-driven reconnaissance to identify realistic threat pathways and targets Design and plan adversary emulation scenarios aligned to banking threat models Execute red team operations including initial access, lateral movement, privilege escalation, and data exfiltration Exploit web application vulnerabilities and deploy C2, web shells, and ransomware simulations (as scoped) Test internal network and server infrastructure; assess detection and response effectiveness against stealth techniques Perform vulnerability assessments, penetration tests, wireless security assessments, and physical/social engineering activities as required Simulate real-world attacks without prior knowledge of assets or architecture (black-box approach where applicable) Collaborate in daily stand-ups (10–15 min) and weekly syncs (30–60 min) for progress, next steps, and escalation Document findings, evidence, and remediation guidance; map outcomes to success indicators (“flags”) Adhere to rules of engagement, compliance requirements, and safety controls during testing Requirements Mexican national; based in or able to work on-site in Mexico City (CDMX) Monday–Friday, 8:00 AM–5:00 PM Proven experience in red teaming, adversary emulation, and offensive security within enterprise environments (financial sector experience preferred) Hands‑on expertise with lateral movement, privilege escalation, data exfiltration, and stealth tradecraft (e.g., OPSEC, EDR evasion) Demonstrated ability to exploit web application vulnerabilities and operate C2 frameworks, web shells, and ransomware simulations Strong knowledge of Windows and Linux server operations, Active Directory, virtualization platforms, and internal network infrastructures Capability to conduct vulnerability assessments, penetration tests, wireless assessments, physical security tests, and social engineering Experience operating under strict rules of engagement with measurable success indicators (flags) such as data extraction/modification, service manipulation, inter-system operation injection, and virtualization control Clear, concise reporting and stakeholder communication in Spanish; ability to present findings and remediation steps Availability for up to 12‑month contract with daily and weekly status sessions Rate acceptance: $400 USD daily #J-18808-Ljbffr
Attack & Penetration Consultant (Red Team Consultant) - Ciudad De México, Cdmx
MISSIONHIRES
Ciudad De México, Ciudad De México
Publicado hace 4 días
Denunciar empleo