Red Team Engineer

Red Team Engineer – Offensive Security

Location: Dubai (On-site)

Experience: 2–4 Years

Language: Arabic & Fluent English

About the Opportunity

An exciting opportunity has arisen for an ambitious Red Team Engineer to join a rapidly growing cybersecurity consultancy in Dubai. You'll become part of a highly technical offensive security team delivering penetration testing, red team operations, and adversary simulation engagements for enterprise and government clients across the GCC.

This is an ideal role for someone who is passionate about offensive security and wants to work on challenging, real-world engagements while continuing to develop their technical expertise.

Key Responsibilities

• Conduct web application, network, infrastructure, and internal penetration testing engagements
• Execute red team exercises and adversary simulations using recognised frameworks and methodologies
• Identify, exploit, and document security vulnerabilities across diverse client environments
• Produce high-quality technical reports and present findings to both technical and business stakeholders
• Develop and utilise custom scripts and tooling to support offensive security engagements
• Work with PTaaS platforms and contribute to the management of ongoing assessments
• Collaborate with wider security teams to validate detections and improve defensive capabilities
• Stay current with emerging attack techniques, vulnerabilities, and threat actor tactics

What We're Looking For

• 2–4 years of hands-on experience in penetration testing or red team engagements
• Arabic speaker with strong English communication skills
• Experience with tools such as Burp Suite, Metasploit, Nmap, Nessus, Cobalt Strike (or similar)
• Knowledge of Active Directory attack techniques including Kerberoasting, Pass-the-Hash, and BloodHound
• Strong understanding of OWASP Top 10 and web application security testing
• Experience scripting in Python, Bash, or PowerShell
• Ability to manage multiple engagements and work independently while maintaining high ethical standards

Nice to Have

• Certifications such as OSCP, eJPT, PNPT, or CEH
• Experience testing cloud environments (AWS, Azure, or GCP)
• Participation in bug bounty programmes or CTF competitions
• Knowledge of GCC cybersecurity frameworks and regulations
• Exposure to External Attack Surface Management (EASM) or digital risk protection solutions

What's on Offer

• Exposure to high-profile offensive security engagements across the GCC
• Significant opportunities for technical growth and career progression
• Access to leading security tooling and modern penetration testing platforms
• Ongoing training and certification support
• A collaborative environment where your work has genuine impact on clients and the wider security practice

If you're passionate about offensive security and want to work on meaningful engagements in a fast-growing environment, we'd love to hear from you.