Senior Red Team Engineer

What You’ll be Doing…

The Flutter UKI Cyber Security Team is a wide security team, with +100 people, covering a large spectrum of security areas of expertise. Its goal is to ensure that proper security controls are protecting the businesses against threats. The
successful candidate will be part of the Security Testing team.

The Red Team Engineer acts as a proactive Infosec staff member with an offensive mindset, focused on identifying and demonstrating realistic high impact attack scenarios. They design and execute real cyber-attacks against multiple
targets with the purpose of achieving pre-defined goals. They also prepare technical and business-oriented reports describing the performed exercises, their results and mitigation recommendations. These need to be easily understood
by technical and non-technical teams and have different format and content accordingly to the stakeholders. Soft skills to handle different stakeholders with different seniority levels are crucial to the role.

Additionally, the role involves a collaborative approach with multiple teams, supporting the mitigation procedures by
helping owners to understand the identified vulnerabilities and design the best mitigation plans.

In sum, a successful candidate must master attacking techniques against different technologies such as Active Directory,
Azure and AWS, to name a few. The offensive mindset should be present in the day-to-day tasks, staying up to date with new vulnerabilities and attacking techniques. You’ll be leading properly defined and planned red team exercises for
several months, while simulating real threat actor activities. Thus, responsibility and autonomy are fundamental to this
role.

What We’re Looking For…

• +3 years experience in offensive security roles, namely red team, penetration testing, security research, bug bounty hunting or similar.
• Motivation and technical skills to use threat modelling methodologies and Mitre’s ATT&CK framework to design

• Motivation and soft skills to proactively test security controls, engaging with different stakeholders (technical and

• Experience and ability to elaborate self-explanatory red team reports, with high quality level, and present them

• Wide security knowledge to provide recommendations to the development and infrastructure teams on

• Motivation and proactivity to keep up with the latest offensive techniques and vulnerabilities, promoting self-

We’d love to see…

• Good written and verbal communication skills – English language mandatory;

• Low ego, a team player who strives to maximize team and departmental performance;
• Agility, resolves and/or escalates issues in a timely fashion;
• Collaboration, shares knowledge and is interested in expanding other team members security skills and mindset;
• Responsibility, capable of focusing and work proactively without supervision.

This is what you should have. What do we have, you ask? Well...you can check our amazing perks & benefits right here! 

So ... are you in? 

Equal opportunities

At Blip, we are committed to creating a diverse and inclusive workplace. We strongly encourage people from all backgrounds, ways of thinking, and working to apply.

We are committed to including everyone regardless of their race, disability, age, gender identity, sexual orientation, and religion. 

Everyone brings different perspectives and experiences; you don’t have to meet all the requirements listed to apply for this role.

If you need any adjustments to apply for the position and to ensure this role aligns with your needs, please send an email to accommodations@blip.pt.

We will only respond to inquiries related to disabilities.