Role Title: Offensive Security Delivery LeadCL: 7Key Responsibilities:Lead and execute Red Team / Purple Team / Simulated Attack engagements.Manage the safe, compliant, and effective technical delivery of testing for regulatory frameworks.Provide expert SME input for clients, scoping new simulated attack projects, as well as development of our simulated attack service offering.Manage delivery of penetration testing projects including attend scoping calls with the clients, provide estimates, entry criteria and approach for the specific penetration testing and adversarial simulation projects. Attend close out meetings and executive debrief to ensure risks are understood by both technical and non-technical audiences.Help cultivate the technical skills of more junior colleagues, as well as contribute to the technical capability development of our tools and systems for delivery of simulated attack exercises.Form strong, trusting relationships with clients at a senior level, as well as with internal stakeholders (CALs/SALs/MU Security Leads).Manage all Offensive Security sales processes such as business development, RFP responses, scoping and pricing, contract negotiation, and delivery processes.Work with peer teams such as Incident Response, Detection and Response, and Threat Intelligence to develop cross team services.Direct delivery in key engagements such as CORIE red teams and major client engagements in new regions.Identify new opportunities and provide thought leadership to teams and clients, such as in red teaming, OT testing, AI testing.Experience ideal for this role:Red Team / Simulated Attack testing experience - either consultancy or in-house.Knowledge and prior experience of delivering CBEST, TIBER, iCAST, CORIE or similar assessments an advantage.Experience in blue team, purple team or defensive security roles is also beneficial.Key Skills and Experience Requirements:Strong technical security background, with pen testing experience a must have.Strong interpersonal skills and passion to help clients to solve their problems.Strong project management skills.Ability to influence internal stakeholders and external clients. Presentation skills to C-level clients in sales and delivery.Business skills in pricing, managing KPIs, profit/loss etc.Prior experience in a consultancy role would be advantageous, but not essential.Prior experience working across multiple APAC countries would be ideal.NV1 Security Clearance preferred or ability to gain one.Qualifications:Minimum of 5 years of experience in offensive security, including red teaming and penetration testing.Strong knowledge of security testing tools and methodologies.Proven experience in leading security projects and teams.Excellent problem-solving and analytical skills.Strong communication and interpersonal skills.Preferred Certifications:Offensive Security Certified Professional (OSCP)Offensive Security Certified Expert (OSCE)Offensive Security Experienced Penetration Tester (OSEP)Certified Red Team Leader (CRTL) / Certified Red Team Operator (CRTO)Desirable Frameworks:Familiarity with Cyber Operational Resilience Intelligence-led Exercises (CORIE)Knowledge of MITRE ATT&CK frameworkUnderstanding of NIST Cybersecurity FrameworkExperience with OWASP Testing Guides (Web/Mobile/API)What's in it for you?Gain exposure to diverse industries and advanced security architectures, as you lead sophisticated simulated cyber-attacks against our globally renowned clients, employing the very latest threat actor tools and techniques.Work closely with top-tier security experts in our threat intelligence and incident response teams, strengthening your already strong offensive security skills and pushing the boundaries of cybersecurity innovation.Engage in ongoing training & certifications to stay at the forefront of the cyber security landscape, equipped with the latest tools and methodologies.Contribute to enhancing the cybersecurity resilience of some of the world's largest organisations, leaving a lasting impact on their security.Opportunity to attend sponsored trainings and briefings such as BlackHat, RSA, AISA Cybercon.