Red Team Senior Manager

About The Role

Red Team Senior Manager – Hybrid

We’re the world’s leading provider of secure financial messaging services. We are the way the world moves value – across borders, through cities and overseas. No other organisation can address the scale, precision, pace and trust that this demands, and we’re proud to support the global economy.

We’re unique too. We were established to find a better way for the global financial community to move value – a reliable, safe and secure approach that the community can trust, completely. We’re always striving to be better and are constantly evolving in an ever-changing landscape, without undermining that trust. Nearly five decades on, our vibrant community reflects the complexity and diversity of the financial ecosystem. We innovate diligently, test exhaustively, then implement fast. In a connected and exciting era, our mission has never been more relevant.

We are looking for a Senior Manager to lead our Red Team, a group of highly skilled and experienced professionals who provide Red Team testing for the Swift environment. As the manager, you will be responsible for defining the vision, strategy, and roadmap for Red Team Operations, pen tests as well as overseeing the delivery of high-quality and mission driven security assessments. You will also lead the team, ensure regular training, and promote a culture of creativity, teamwork, and excellence.

What To Expect

In this role you will:

• Develop and implement the Red Team strategy, roadmap, and budget, aligning with the Global Security organization and company objectives
• Plan / Build collaborative testing scenarios with other key collaborators and partners (Blue and Purple) to improve overall security
• Simulate real-world attacks to identify vulnerabilities and potential angles of attack
• Lead all aspects of the scoping, planning, execution, and reporting of Red Team and Purple Team engagements, ensuring compliance with contractual obligations, ethical guidelines, and legal requirements
• Review and perform in-depth analysis of test results and oversee reporting that describes findings, exploitation procedures, risks and recommendations
• Partner closely with the Information Security Risk Management team on findings and risk assessment requirements
• Provide technical leadership and advise our internal customers on attack and penetration test engagements
• Lead offensive efforts such as measuring performance quality, establishing goals and objectives for the team, and planning resources
• Ensure the team delivers high-quality and impactful engagements that meet or exceed our company’s expectations aligned to industry standards
• Lead and manage the staff, including hiring, performance management, career development, and retention
• Establish and maintain strong relationships with internal and external partners, including senior management, risk officers, product and engineering teams
• Convey complex technical security concepts to technical and non-technical audiences including executives
• Lead penetration testing projects which include network, cloud, wireless, web application, and infrastructure penetration testing

What will make you successful?

We are seeking professionals with:

• Bachelor's Degree or higher in Cybersecurity, Computer Science, Engineering, Information Systems, or related field
• Minimum of 8 years of experience in cybersecurity, with at least 5 years of experience in leading and managing cybersecurity or offensive security teams
• Expert knowledge and hands-on experience in various aspects of offensive security, such as penetration testing, vulnerability assessment, exploit development, malware analysis, reverse engineering, and threat intelligence
• Strong leadership, communication, and interpersonal skills, with the ability to inspire, motivate, and mentor a diverse and dedicated team
• Excellent customer service, project management, and problem-solving skills, with the ability to deliver high-quality and impactful results under pressure and tight deadlines
• Proven track record of developing and executing successful roadmaps, and budgets, and achieving the goals and objectives that drive overall risk reduction
• Certifications such as OSCP, OSCE, OSWE, GPEN, GXPN, or equivalent are highly desirable.