Senior Red Team Specialist (IT/OT Cybersecurity)

Job Locations
RO-B-Bucharest
Job area
IT & Digital
Employment type
Permanent
Workplace
Hybrid
Experience level
Associate / Mid-Level

Overview

Expleo is a global engineering, technology, and consulting service provider that partners with leading organizations to guide them through their business transformation, helping them achieve operational excellence and future-proof their businesses.

Expleo benefits from more than 50 years of experience developing complex products in automotive and aerospace, optimizing manufacturing processes, and ensuring the quality of information systems. Leveraging its deep sector knowledge and wide-ranging expertise in fields including AI engineering, digitalization, automation, cybersecurity and data science, the group’s mission is to fast-track innovation through each step of the value chain. With a worldwide presence in 30 countries, our global footprint includes excellence centers around the world, including Romania since 1994.

Responsibilities

· Plan and execute red team engagements against enterprise IT and industrial OT environments

· Simulate real-world attack scenarios including:

  • Initial access, lateral movement, privilege escalation
  • Persistence, data exfiltration, and command-and-control

· Conduct adversary emulation based on known threat actors (e.g., MITRE ATT&CK framework)

· Test security controls across IT infrastructure (Active Directory, cloud, endpoints, networks) and OT/ICS systems (SCADA, PLCs, industrial networks)

· Identify vulnerabilities in systems, applications, and network architectures

· Develop and deploy custom tools, scripts, and payloads for offensive operations

· Collaborate with Blue Team / SOC for purple team exercises

· Produce clear, actionable reports with:

  • Attack paths
  • Risk assessments
  • Remediation recommendations

· Contribute to continuous improvement of detection capabilities and security strategies

· Stay current on emerging threats, vulnerabilities, and attack techniques (especially IT/OT convergence risks)

Qualifications

· Strong experience in Red Teaming / Offensive Security / Penetration Testing

· Solid understanding of enterprise IT environments, including:

  • Active Directory attacks
  • Windows/Linux systems
  • Networking (TCP/IP, DNS, VPNs)
  • Cloud platforms (Azure/AWS preferred)

· Experience or strong knowledge of OT/ICS security, including:

  • SCADA systems
  • Industrial protocols (Modbus, OPC, DNP3, etc.)
  • Segmentation and Purdue model

· Familiarity with frameworks:

  • MITRE ATT&CK (Enterprise & ICS)
  • Cyber Kill Chain

· Hands-on experience with tools such as:

  • Cobalt Strike, Metasploit, Burp Suite
  • BloodHound, Mimikatz, Nmap
  • Red team automation frameworks

· Scripting/programming skills (Python, PowerShell, Bash, or similar)

· Strong analytical and problem-solving skill

Desired skills

Experience in critical infrastructure, rail, energy, or manufacturing sectors

· Certifications such as:

  • OSCP / OSCE / OSEP
  • CRTO / CRTP
  • GIAC (GPEN, GXPN, GRID)

· Experience with purple teaming and detection engineering

· Knowledge of security standards and regulations (e.g., IEC 62443, ISO 21434, NIS2, CRA)

· Familiarity with threat intelligence and adversary simulation

Benefits

  • Benefit Platform 
  • Holiday Voucher 
  • Private medical insurance  
  • Performance bonus 
  • Easter and Christmas bonus 
  • Employee referral bonus 
  • Bookster subscription  
  • Work from home options depending on project 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share to social media

Can't find the job of your choice?
Upload your C.V. / Resume here for our recruiters to view.