Red Team Security Consultant – Offensive Security & Adversary Emulation

Our client is seeking a specialist to execute realistic adversary emulation campaigns and strengthen organizational detection and response capabilities. This role involves conducting advanced red team operations and collaborating with security operations teams to validate use cases and refine telemetry.

• Design and execute large-scale red team campaigns mapped to the MITRE ATT&CK framework.
• Conduct comprehensive reconnaissance and vulnerability analyses across external attack vectors and misconfigured services.
• Develop initial access vectors and exploit chains involving SAML/OAuth, web APIs, and social engineering.
• Execute advanced post-exploitation techniques including privilege escalation, lateral movement, and stealthy data exfiltration.
• Manage C2 and beaconing infrastructure while ensuring operational security and encrypted communication.
• Create and adapt offensive tooling to produce reproducible proof-of-concepts for defensive evaluation.
• Collaborate with blue teams to develop SIEM/EDR detection rules and organize knowledge-sharing sessions.

• You possess practical offensive security experience with a focus on red team assignments and adversary emulation.
• You have experience with Active Directory and Cloud EntraID attack techniques.
• You bring knowledge of cloud-native offensive techniques within Azure, AWS, or GCP environments.
• You have 1+ years of experience as a security consultant within data, infrastructure, or application environments.
• You possess expertise in information security management, including vulnerability analysis and Privileged Access Management (PAM).
• You're experienced in analyzing, optimizing, and documenting security processes and governance.
• You are fluent in Dutch with a C2 level.

Nice to Haves

• Experience creating and validating detection rules and telemetry for SIEM and EDR platforms.
• Deep understanding of the MITRE ATT&CK framework for testing and reporting.
• Knowledge of security frameworks such as ISO27000, COBIT, NIST, OWASP, and CIS Critical Security Controls.
• Professional certifications such as OSCP, OSCE, CRTP, OSEP, CRTO, CISM, CISSP, or CEH.

• Start date: 19/05/2026
• Duration: project until 15/07/2027
• Work regime: Full-time
• Location: Antwerpen
• Contract: open to both permanent employees and freelancers