Senior Cybersecurity Professional - Offensive Security (Red Team)

Thu, 12 Mar 2026 00:00:01 +0100

About us

modzero is a privately held company specializing in deep technical security assessments, with offices in Switzerland and Germany. We focus on complex security challenges and maintain high technical standards in everything we do. Our team brings together decades of experience across different generations of security professionals. What unites us is a shared curiosity, a strong technical mindset, and the drive to understand how systems fail - and how to secure them.

Your role

Lead and execute advanced offensive security assessments, including complex red team engagements.
Design and develop custom tooling and frameworks to support sophisticated client engagements.
Drive the ongoing development and improvement of our custom red team agent and supporting capabilities.
Shape and maintain our internal red team infrastructure, including environments such as our Active Directory lab.
Perform in-depth penetration tests and technical security assessments across domains including Web, Mobile, Cloud, AI, and Cryptography.
Contribute to the broader security community through original research, blog posts, vulnerability disclosures, and conference presentations.

Your profile

You are an experienced offensive security professional who enjoys tackling complex technical challenges and pushing the boundaries of your expertise. You bring both deep technical knowledge and the curiosity to continuously explore new attack techniques and technologies.

Ideally, you bring

Several years of hands-on experience in offensive security, including conducting red team engagements.
Strong familiarity with command-and-control and post-exploitation frameworks (e.g., Cobalt Strike, Mythic, or similar platforms).
Solid understanding of Active Directory and modern identity and access management environments such as Azure AD / Entra ID.
The ability to develop custom tooling, exploits, or proof-of-concept code (e.g., in Python, PowerShell, or similar languages).
Experience documenting complex technical findings in clear, structured, and reproducible reports.
Strong communication skills in German and English, both written and spoken.
A curious and self-driven mindset with the willingness to explore unfamiliar systems and attack surfaces.

Nice to have

Experience with developing red team tooling or implants, including techniques for evasion and defensive bypass.
Familiarity with modern endpoint detection and response (EDR) systems and methods for detection evasion.
Relevant offensive security certifications (e.g., CRTO, OSED, OSCP, OSEP, or similar).
Experience with physical red teaming techniques (e.g., facility access, hardware implants, or on-site attack scenarios).
Interest in emerging attack surfaces such as AI systems, LLM applications, or agentic workflows.
Experience contributing to security research, vulnerability disclosure, or conference presentations.

What we offer

A permanent full-time position in an independent and privately held security company.
Flexible working arrangements, including remote work and offices in Winterthur and Berlin.
A focused, highly technical environment where you can focus on challenging security work rather than compliance-driven consulting.
A small, experienced team that values collaboration, knowledge sharing, and technical depth.
Opportunities to work on diverse and complex security assessments across a wide range of industries.
Time and support for internal knowledge exchange, research activities, and security publications.
Support for professional development, training, and relevant certifications.

If this sounds like your kind of challenge, we’d love to hear from you!

Send us a short introduction about yourself, your career path so far, your experiences, including any certificates and references (CV).

.orezd - PGP Key ID: 0xEADF873922416024 ⤓

Cybersecurity Professional - Penetration Testing & Security Assessments

Thu, 12 Mar 2026 00:00:00 +0100

About us

Your role

Conduct in-depth penetration tests and technical security assessments across a variety of environments.
Assess the security of web applications, APIs, mobile applications, cloud environments, and infrastructure systems.
Identify vulnerabilities, misconfigurations, and realistic attack paths in complex systems.
Contribute throughout the entire project lifecycle, from technical preparation and scoping to reporting and presenting findings to clients.
Produce clear, structured, and reproducible reports that help clients understand risks and remediation strategies.
Collaborate closely with colleagues to exchange knowledge and contribute to the development of internal methodologies, tools, and lab environments.

Your profile

You are an experienced security professional who enjoys analyzing complex systems and understanding how vulnerabilities can be exploited in realistic scenarios. You combine strong technical skills with a structured and curious approach to security analysis.

Ideally, you bring

Several years of hands-on experience in IT security, including penetration testing or technical security assessments.
Solid knowledge in one or more areas such as web applications, APIs, mobile applications, cloud environments, Active Directory, or network infrastructures.
Experience working with common penetration testing tools and methodologies.
The ability to analyze technical issues precisely and document findings in clear, structured reports.
Experience developing small tools, scripts, or proof-of-concepts (e.g., in Python, PowerShell, or Bash).
Strong communication skills in German and English.

Nice to have

Experience with cloud security, particularly in Microsoft or hybrid environments.
Familiarity with secure code review or deeper technical application analysis.
Interest or experience in areas such as cryptography, AI security, or modern application architectures.
Relevant offensive security certifications (e.g., OSCP, OSEP, CRTO, GPEN, or similar).
Experience interacting directly with clients and presenting technical findings.
Interest in sharing knowledge within the team and continuously developing your technical expertise.

What we offer

A permanent full-time position in an independent and privately held security company.
Flexible working arrangements, including remote work and offices in Winterthur and Berlin.
A focused, highly technical environment where you can focus on challenging security work rather than compliance-driven consulting.
A small, experienced team that values collaboration, knowledge sharing, and technical depth.
Opportunities to work on diverse and complex security assessments across a wide range of industries.
Time and support for internal knowledge exchange, research activities, and security publications.
Support for professional development, training, and relevant certifications.

If this sounds like your kind of challenge, we’d love to hear from you.

Send us a short introduction about yourself, your career path so far, and your experience, including any certifications and references (CV).

.orezd - PGP Key ID: 0xEADF873922416024 ⤓

modzero / Jobs

Senior Cybersecurity Professional - Offensive Security (Red Team)

About us

Your role

Your profile

Ideally, you bring

Nice to have

What we offer

If this sounds like your kind of challenge, we’d love to hear from you!

Cybersecurity Professional - Penetration Testing & Security Assessments

About us

Your role

Your profile

Ideally, you bring

Nice to have

What we offer

If this sounds like your kind of challenge, we’d love to hear from you.