Senior Security Engineer (Purple Team)

We are seeking an experienced Senior Security Engineer to join our purple team, balancing both offensive (red team) and defensive (blue team) responsibilities. In this senior role, you will lead security initiatives, mentor junior team members, and work closely with clients to assess, design, and implement comprehensive security solutions.

Responsibilities

Offensive Security (Red Team)

  • Lead and conduct advanced penetration testing across web applications, networks, and cloud environments
  • Develop custom exploitation techniques and tools for complex security assessments
  • Perform in-depth vulnerability research and exploit development

Defensive Security (Blue Team)

  • Design and implement enterprise-level detection and response solutions
  • Architect and oversee the integration of advanced security tools like EDR platforms and SIEM systems
  • Develop and optimize security monitoring strategies and incident response procedures

Leadership and Client Engagement

  • Mentor junior team members and foster a culture of continuous learning
  • Serve as a technical lead in client engagements and pre-sales discussions
  • Develop and present executive-level security reports and recommendations

Cloud and Infrastructure Security

  • Architect secure cloud environments in Azure and AWS, implementing best practices and compliance standards
  • Design and implement complex security controls across hybrid and multi-cloud infrastructures
  • Conduct cloud security assessments and provide expert remediation guidance

Requirements

  • 7+ years of experience in IT security, with a strong background in both offensive and defensive security practices
  • Advanced knowledge of cloud security architectures and best practices in Azure and AWS
  • Expertise in security tools such as Wazuh, EDR solutions, SIEM platforms, and advanced penetration testing frameworks
  • Proven experience leading security projects and mentoring junior team members
  • Strong understanding of compliance frameworks (e.g., ISO 27001, NIST, PCI DSS)
  • Excellent problem-solving skills and the ability to adapt quickly to new technologies
  • Superior communication skills in English and Vietnamese for high-level client interactions and technical presentations
  • Relevant industry certifications (e.g., OSCP, CISSP, CEH, AWS Certified Security – Specialty, Azure Security Engineer)

Additional Skills

  • Experience with threat hunting and advanced persistent threat (APT) detection
  • Knowledge of DevSecOps practices and secure CI/CD pipeline implementation
  • Familiarity with containerization security (Docker, Kubernetes)
  • Understanding of machine learning and AI applications in cybersecurity

This senior role offers the opportunity to shape our security services, lead cutting-edge projects, and make a significant impact on our clients’ security postures. The ideal candidate will be passionate about cybersecurity, have a proven track record of leadership, and thrive in a dynamic, challenging environment.

 

Apply with your CV to: linh.hoang@evvolabs.com

Industry: IT Services and IT Consulting
Employment Type: Full-time

Ứng tuyển ngay