ZipRecruiter

Log In

1

Red Team Security Jobs (NOW HIRING)

Astranis

Red Team Security Engineer

San Francisco, CA · On-site

Red Team Security Engineer Astranis is looking for a Red Team Security Engineer who thinks like an adversary and views security as an art form. Our ideal candidate thrives on the challenge of finding ...

Astranis

Red Team Security Engineer

San Francisco, CA · On-site

$130K - $205K/yr

Red Team Security Engineer Astranis is looking for a Red Team Security Engineer who thinks like an adversary and views security as an art form. Our ideal candidate thrives on the challenge of finding ...

next page

Showing results 1-20

All JobsRed Team Security Jobs

Red Team Security information

See salary details

$8

$30

$83

How much do red team security jobs pay per hour?

As of Jun 17, 2026, the average hourly pay for red team security in the United States is $30.81, according to ZipRecruiter salary data. Most workers in this role earn between $17.31 and $36.06 per hour, depending on experience, location, and employer.

What is Red Team Security?

Red Team Security refers to a group of cybersecurity professionals who simulate real-world attacks on an organization’s systems, networks, and personnel to identify vulnerabilities and test defenses. Their goal is to mimic the tactics, techniques, and procedures of actual adversaries, providing valuable insights into potential weaknesses. Red team assessments help organizations strengthen their security posture by revealing gaps that might otherwise go unnoticed during routine security checks.

What are some common challenges faced by professionals in Red Team Security roles, and how can they be addressed?

Red Team Security professionals often face challenges such as staying up-to-date with rapidly evolving cyber threats, maintaining confidentiality during simulated attacks, and effectively communicating findings to non-technical stakeholders. To address these challenges, ongoing training and certifications are essential, as is fostering strong collaboration with Blue Team counterparts. Additionally, developing clear, actionable reporting skills ensures that technical assessments translate into meaningful improvements for the organization's security posture.

What are red team jobs?

Red team jobs involve simulating cyberattacks to test an organization's security defenses. Professionals in these roles use tools like penetration testing and vulnerability assessment to identify weaknesses, often requiring skills in networking, scripting, and security frameworks. Certifications such as OSCP or CEH are common in this field.

How much are red teamers paid?

Red team security professionals typically earn between $70,000 and $150,000 annually, depending on experience, certifications, and location. Senior or specialized roles with certifications like OSCP or CISSP can command higher salaries, especially in high-demand markets.

What are the key skills and qualifications needed to thrive as a Red Team Security professional, and why are they important?

To thrive as a Red Team Security professional, you need expertise in penetration testing, vulnerability assessment, and a strong understanding of networks and operating systems, often supported by certifications like OSCP or CEH. Proficiency with tools such as Metasploit, Burp Suite, and Nmap, as well as scripting languages like Python or PowerShell, is typically required. Critical thinking, creativity, and excellent communication skills help Red Teamers simulate real-world threats and convey findings effectively to stakeholders. These skills and qualities are crucial for identifying security gaps, improving organizational defenses, and ensuring robust incident response.

How to get a job as a red teamer?

To become a red teamer, develop strong skills in penetration testing, network security, and scripting languages like Python or Bash. Obtain relevant certifications such as OSCP or CREST, gain experience through hands-on labs or bug bounty programs, and stay updated on cybersecurity trends and attack techniques.

What is the difference between Red Team Security vs Penetration Tester?

AspectRed Team SecurityPenetration Tester
CertificationsOSCP, CEH, CISSPOSCP, CEH, GPEN
Work EnvironmentSimulated real-world attacks, often in a controlled environmentVulnerability assessments and targeted testing
Employer & Industry UsageUsed by security teams to test defenses against advanced threatsCommonly hired by organizations to identify security weaknesses

Red Team Security involves simulating comprehensive, real-world cyber attacks to test an organization's defenses, often working in a controlled environment with advanced tactics. Penetration Testers focus on identifying vulnerabilities through targeted testing, typically with a narrower scope. Both roles require similar certifications and are integral to cybersecurity, but Red Team Security emphasizes strategic, adversarial simulations, while Penetration Testing concentrates on technical vulnerability discovery.

What is a red team in security?

A red team in security is a group of cybersecurity professionals who simulate real-world attacks to test an organization's defenses. They use tools like penetration testing and social engineering to identify vulnerabilities, helping organizations improve their security posture. Red team exercises often require knowledge of attack techniques, threat intelligence, and may involve certifications such as OSCP or CREST.
More about Red Team Security jobs
What cities are hiring for Red Team Security jobs? Cities with the most Red Team Security job openings:
What states have the most Red Team Security jobs? States with the most job openings for Red Team Security jobs include:
What job categories do people searching Red Team Security jobs look for? The top searched job categories for Red Team Security jobs are:
Red Team Security jobs near you
Red Team Security Engineer

Red Team Security Engineer

Astranis

San Francisco, CA • On-site

Other

Posted 22 days ago

Job description

Red Team Security Engineer

Astranis is looking for a Red Team Security Engineer who thinks like an adversary and views security as an art form. Our ideal candidate thrives on the challenge of finding novel ways to bypass defenses and has a natural talent for uncovering hidden attack paths. We need a creative, persistent, and resourceful individual who can emulate real-world threat actors, testing our resilience from every angle-cyber, physical, and human. This role is for the hacker at heart, dedicated to making our defenses stronger by proving where they can be broken.

Role

  • Actively devise and execute sophisticated, multi-stage attack campaigns that emulate the tactics, techniques, and procedures (TTPs) of relevant threat actors.
  • Identify and exploit vulnerabilities across the organization's digital and physical landscapes, including networks, applications, facilities, and personnel.
  • Conduct covert red team operations, including network penetration testing, application security assessments, social engineering, and physical security breach simulations.
  • Lead and participate in purple team exercises, working collaboratively with the blue team to analyze attack paths, test detection capabilities, and improve incident response playbooks in real-time.
  • Assess the effectiveness of remediation efforts by re-testing identified vulnerabilities and attack paths after fixes have been implemented.
  • Develop custom tooling and scripts to automate and enhance attack simulations.
  • Create detailed post-engagement reports that clearly document findings, articulate business risk, and provide actionable recommendations for improving security posture.
  • Act as the resident subject matter expert on offensive security and threat actor methodologies.

Requirements

  • 3+ years of experience in an offensive security role (e.g., Red Teaming, Penetration Testing).
  • Proven experience in planning and executing covert red team operations from reconnaissance to objective completion.
  • A deep understanding of attacker TTPs and frameworks like MITRE ATT&CK.
  • Proficient in at least one scripting language, such as Python, for tooling and automation.
  • Hands-on experience with common offensive security tools (e.g., Cobalt Strike, Metasploit, Burp Suite, custom implants).
  • Strong analytical and problem-solving skills with a creative and unconventional mindset.
  • Ability to work both independently and collaboratively in a team environment.
  • Excellent written and oral communication skills, with the ability to articulate complex technical risks to both technical and non-technical audiences.
  • Don't meet all the requirements? Not a problem. Please apply anyway.

Bonus

  • Any relevant certifications such as OSCP, OSCE, or OSEP.
  • Experience with physical security assessments or social engineering campaigns.
  • Previous experience building and running a red team program.

Apply