Experience: 5+ years
Job Type: Full-time (Contractual / Freelancing)
Location: Remote
Required Skills: Cyber security, Exploit chains, Cloud/appsec, Malware/social engineering boundaries
Job Summary:
We are engaging Red Team Leads (Offensive Cybersecurity) to contribute expertise to a critical cybersecurity project. In this role, you'll apply your expertise to help train next-generation AI systems. Your work will shape how models learn, reason, and perform through high-quality, real-world input. No prior experience in AI is required, your domain knowledge is what matters.
Scope of Work:
- Develop comprehensive taxonomies for cyber-capability tasks and attack stages relevant to modern threat landscapes.
- Design and validate evaluation frameworks for offensive security, focusing on real-world scenarios involving exploit chains, malware, cloud/appsec, and social engineering.
- Create safe and effective proxy tasks to simulate advanced attack vectors while maintaining strict boundaries and ethical controls.
- Formulate robust scoring rubrics to assess attack sophistication, coverage, and impact across diverse domains.
- Review, critique, and enhance benchmarks for red team operations to ensure alignment with evolving security risks and best practices.
- Produce clear, well-documented methodologies and technical write-ups, communicating complex security concepts to both technical and non-technical audiences.
- Collaborate asynchronously with project stakeholders to iterate on frameworks and incorporate feedback into deliverables.
Preferred Qualifications:
- 5+ years of hands-on experience in offensive cybersecurity, red teaming, exploit development, or vulnerability research (8–20 years preferred for senior contributors).
- Track record as a principal security engineer, exploit developer, cloud red-team lead, malware reverse-engineer, or security researcher specializing in attack chains or social engineering.\
- Deep expertise in cyber attack methodologies, exploit chains, and cloud/application security assessments.
- Strong background in malware analysis, reverse engineering, and/or social engineering tactics and defenses.
- Demonstrated ability to produce clear, actionable written and verbal communication for a variety of audiences.
- Advanced degree, relevant professional security certifications, or equivalent operational experience highly valued.
- Experience building benchmarking or evaluation frameworks in cybersecurity is a plus.