Red Team Manager (mwd)

Do you want to lead high-impact offensive security engagements help customers validate their detection and response capabilities and coach a team of skilled Red Teamers Do you enjoy combining hands-on technical expertise with people leadership customer engagement and service development Then you might be the Red Team Manager we are looking for.

At NVISO we care deeply about our employees our customers and the quality of our work. We are a European cybersecurity company with a strong technical culture and a clear mission: to help organizations prevent detect and respond to cyber threats. As a Red Team Manager you will play a key role in shaping and growing our Red Team capability while ensuring high-quality delivery across complex offensive security engagements.

Tasks

As a Red Team Manager (m/w/d) you will be responsible for leading a team of Red Team consultants and overseeing the successful delivery of advanced offensive security engagements. Your responsibilities will include:

• Leading Red Team operations by combining hands-on offensive security expertise with strong operational oversight
• Mentor and coach Red Team consultants in their technical growth professional development and day-to-day delivery excellence
• Managing the planning staffing and execution of Red Team operations adversary simulation exercises and assumed breach engagements
• Acting as an escalation point for complex technical operational and customer-related challenges
• Ensuring high-quality delivery of reports findings and executive readouts
• Supporting pre-sales activities including scoping solution design and customer presentations
• Building trusted relationships with customers and advising them on realistic threat scenarios attack paths and security improvement opportunities
• Contributing to the development and continuous improvement of NVISOs Red Team methodologies tooling and service offerings
• Collaborating with other service lines such as Detection Engineering Incident Response Threat Intelligence and Security Architecture
• Helping define strategic priorities for the Red Team and translating them into concrete initiatives
• Ensuring engagements are executed in line with legal ethical and operational requirements

Depending on your profile and interests you may also remain involved in hands-on operations such as:

• Infrastructure cloud and application-based intrusion simulation
• Command and control infrastructure design and operational support
• Initial access simulation and post-exploitation tradecraft
• Evasion of defensive controls and testing of detection and response maturity
• Purple teaming and collaborative exercises with blue teams
• Research into adversary techniques tools and procedures
• Covert physical breaches
• Attack simulations in OT networks

Requirements

We are looking for someone who combines strong offensive security knowledge with leadership capabilities and a pragmatic customer mindset.

You have:

• You hold citizenship in one of the 32 NATO member states;
• Several years of experience in offensive security with a strong focus on Red Teaming adversary simulation or advanced penetration testing
• Experience leading projects teams or technical workstreams in a consulting or cybersecurity environment
• Strong knowledge of attacker tactics techniques and procedures across different stages of the intrusion lifecycle
• Experience with enterprise environments including Active Directory Windows Linux cloud platforms and modern identity infrastructure
• A solid understanding of operational security detection evasion privilege escalation lateral movement and post-exploitation tradecraft
• Experience communicating technical findings to both technical and executive stakeholders
• A structured and quality-driven way of working
• A collaborative mindset and the ability to support and grow others
• Professional proficiency in German and English

Ideally you also have:

• Experience managing or mentoring offensive security consultants
• Experience with purple team exercises and detection validation
• Familiarity with cloud Red Teaming in Microsoft Azure AWS or Google Cloud
• Scripting or development experience in languages such as Python PowerShell or C#
• Relevant certifications such as CRTO CRTE OSEP OSCP or equivalent
• Experience contributing to tooling internal research or conference content
• Practical experience with TIBER/TLPT

Benefits

At NVISO we care. We are committed to offering you a highly competitive remuneration package including financial and non-financial components:

• Working and learning from the best people in the European cyber security industry. We have multiple SANS Instructors working at NVISO our staff has presented at popular hacking conferences (BlackHat BruCON OWASP etc) and all of our technical staff can acquire deep technical security certifications (GSE GXPN GREM GCFA OSCP etc);
• An entrepreneurial and agile company where you will be stimulated and supported in driving new initiatives (either through internal innovation or by improving our service offering) without losing sight of having fun!
• Regular team-building and fun events;
• Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team whose role is to ensure your well-being and helps you grow in your career!
• A training budget of 10000 EUR plus 10 days paid time off rolling over two years;
• Annual gross base salary between 90.000 EUR - 110.000 EUR;
• Flexible working hours and home office possibilities (incl. working abroad options within the EU);
• Reimbursement of Deutschlandticket BahnCard 50 1st Class;
• Business Bike Leasing;
• Company Pension Scheme;
• 30 holidays.

Disclaimer on the Use of AI Tools in the Application Process

Please be aware that the creation and submission of application documents (e.g. CV cover letter case studies etc.) using AI-powered tools is only permitted to a limited extent.

Our expectations:

Application documents must authentically reflect your own qualifications personality and motivation.

The use of AI for supportive purposes (e.g. spell-checking improving wording) is acceptable.

Fully generated application documents created by AI without personal adaptation or review are not permitted.

Under no circumstances may NVISO information data or documents be uploaded to or processed by external AI tools.

We reserve the right to exclude applications from the selection and interview process that are clearly created primarily or exclusively by AI and show no recognizable personal input.

The purpose of this policy is to ensure a fair and transparent recruitment process and to obtain an authentic impression of our applicants.