About this role
We are seeking a skilled and motivated Senior Security Engineer - Red Team to join our offensive security team. The ideal candidate will drive the development of advanced red teaming tools and methodologies, conduct comprehensive assessments across on-premises and cloud environments, and simulate sophisticated threat scenarios to identify and mitigate security vulnerabilities. This role requires a deep understanding of offensive security tactics, attack frameworks, and the ability to communicate findings effectively to both technical and executive stakeholders.
Key Responsibilities:
- Developing and refining internal red team scripts, tools, and methodologies to enhance offensive security operations.
- Research, validate, and exploit known attacks, vulnerabilities, and security weaknesses using custom-built or existing tools.
- Conduct thorough Red Team assessments targeting on-premises infrastructure, cloud environments, and enterprise threat landscapes.
- Identify vulnerabilities across software, systems, networks, and business logic through simulated adversarial tactics.
- Design and execute complex threat emulation scenarios incorporating physical, social engineering, and digital attack vectors.
- Produce detailed, accurate, and actionable reports and presentations tailored for both technical teams and executive leadership.
- Collaborate closely with other security teams to support remediation efforts and improve overall security posture.
- Stay current with emerging threats, attack techniques, and security technologies to continuously evolve red team capabilities.
- Conduct Purple Team exercises in collaboration with partner security teams to identify and improve the organization's security posture.
- Minimum 5 years of hands-on offensive security experience, preferably within Red Team or penetration testing roles.
- Strong familiarity with attack frameworks (e.g., MITRE ATT&CK) and corresponding mitigation strategies.
- Proficient with common Command and Control (C2) frameworks such as Sliver, Mythic, and Cobalt Strike.
- Relevant security certifications such as CRTO (Certified Red Team Operator), OSCP (Offensive Security Certified Professional), or equivalent.
- Demonstrated ability to develop custom offensive tools or scripts to support red team operations.
- Excellent communication skills with the ability to convey complex technical findings to diverse audiences.
- Experience with cloud security assessments (AWS, Azure, GCP) is a plus.
- Strong problem-solving skills and a proactive approach to security challenges.
Preferred Skills:
- Knowledge of physical security testing and social engineering tactics.
- Familiarity with scripting languages such as Python, PowerShell, or Bash.
- Experience working in agile or DevSecOps environments.
- Understanding of enterprise network architectures and security controls.
Other facts
About Toyota Tsusho Systems
Our mission is to be the right partner for Global IT transformation.
For over ten years, TTS-US has been successful at utilizing our global IT network by breaking regional, cultural, and language barriers. As a member of the Toyota Group, our resources and collaboration extend world-wide and we are at the forefront of the future of IT: Cybersecurity, Digital Transformation, Infra, Engineering, Connected, and Global Services. As Toyota Group transforms towards evolving into a mobility company, we bring our best practices to North America and our family companies around the globe.
We offer a unique opportunity to be part of a small company where each person’s voice and efforts make a difference, while also delivering major impact as our products and services reach millions of customers. We strive to maintain an intellectually dynamic, and culturally diverse environment where we work as a team and everyone has the opportunity to contribute new ideas to the table.
Come help us reimagine what mobility can be today and years to come!
BENEFITS AND PERKS
• Medical health insurance (including dental and vision)
• Competitive paid time off and company paid holidays
• Comp time for holidays worked
• 401k matching program
• Company profit sharing
• Merit increases and bonus structure
• Professional development and education reimbursement
• …and more!
What you'll do
- The Senior Security Engineer - Red Team will develop advanced red teaming tools and conduct assessments to identify security vulnerabilities. This role involves simulating threat scenarios and collaborating with other security teams to enhance the organization's security posture.
Ready to join Toyota Tsusho Systems?
Take the next step in your career journey