Senior Cybersecurity Professional - Offensive Security (Red Team)About us
modzero is a privately held company specializing in deep technical security assessments, with offices in Switzerland and Germany. We focus on complex security challenges and maintain high technical standards in everything we do.
Our team brings together decades of experience across different generations of security professionals. What unites us is a shared curiosity, a strong technical mindset, and the drive to understand how systems fail - and how to secure them.
Your role
- Lead and execute advanced offensive security assessments, including complex red team engagements.
- Design and develop custom tooling and frameworks to support sophisticated client engagements.
- Drive the ongoing development and improvement of our custom red team agent and supporting capabilities.
- Shape and maintain our internal red team infrastructure, including environments such as our Active Directory lab.
- Perform in-depth penetration tests and technical security assessments across domains including Web, Mobile, Cloud, AI, and Cryptography.
- Contribute to the broader security community through original research, blog posts, vulnerability disclosures, and conference presentations.
Your profile
You are an experienced offensive security professional who enjoys tackling complex technical challenges and pushing the boundaries of your expertise. You bring both deep technical knowledge and the curiosity to continuously explore new attack techniques and technologies.
Ideally, you bring
- Several years of hands-on experience in offensive security, including conducting red team engagements.
- Strong familiarity with command-and-control and post-exploitation frameworks (e.g., Cobalt Strike, Mythic, or similar platforms).
- Solid understanding of Active Directory and modern identity and access management environments such as Azure AD / Entra ID.
- The ability to develop custom tooling, exploits, or proof-of-concept code (e.g., in Python, PowerShell, or similar languages).
- Experience documenting complex technical findings in clear, structured, and reproducible reports.
- Strong communication skills in German and English, both written and spoken.
- A curious and self-driven mindset with the willingness to explore unfamiliar systems and attack surfaces.
Nice to have
- Experience with developing red team tooling or implants, including techniques for evasion and defensive bypass.
- Familiarity with modern endpoint detection and response (EDR) systems and methods for detection evasion.
- Relevant offensive security certifications (e.g., CRTO, OSED, OSCP, OSEP, or similar).
- Experience with physical red teaming techniques (e.g., facility access, hardware implants, or on-site attack scenarios).
- Interest in emerging attack surfaces such as AI systems, LLM applications, or agentic workflows.
- Experience contributing to security research, vulnerability disclosure, or conference presentations.
What we offer
- A permanent full-time position in an independent and privately held security company.
- Flexible working arrangements, including remote work and offices in Winterthur and Berlin.
- A focused, highly technical environment where you can focus on challenging security work rather than compliance-driven consulting.
- A small, experienced team that values collaboration, knowledge sharing, and technical depth.
- Opportunities to work on diverse and complex security assessments across a wide range of industries.
- Time and support for internal knowledge exchange, research activities, and security publications.
- Support for professional development, training, and relevant certifications.
If this sounds like your kind of challenge, we’d love to hear from you!
Send us a short introduction about yourself, your career path so far, your experiences, including any certificates and references (CV).
.orezd
- PGP Key ID: 0xEADF873922416024 ⤓
About us
modzero is a privately held company specializing in deep technical security assessments, with offices in Switzerland and Germany. We focus on complex security challenges and maintain high technical standards in everything we do. Our team brings together decades of experience across different generations of security professionals. What unites us is a shared curiosity, a strong technical mindset, and the drive to understand how systems fail - and how to secure them.
Your role
- Lead and execute advanced offensive security assessments, including complex red team engagements.
- Design and develop custom tooling and frameworks to support sophisticated client engagements.
- Drive the ongoing development and improvement of our custom red team agent and supporting capabilities.
- Shape and maintain our internal red team infrastructure, including environments such as our Active Directory lab.
- Perform in-depth penetration tests and technical security assessments across domains including Web, Mobile, Cloud, AI, and Cryptography.
- Contribute to the broader security community through original research, blog posts, vulnerability disclosures, and conference presentations.
Your profile
You are an experienced offensive security professional who enjoys tackling complex technical challenges and pushing the boundaries of your expertise. You bring both deep technical knowledge and the curiosity to continuously explore new attack techniques and technologies.
Ideally, you bring
- Several years of hands-on experience in offensive security, including conducting red team engagements.
- Strong familiarity with command-and-control and post-exploitation frameworks (e.g., Cobalt Strike, Mythic, or similar platforms).
- Solid understanding of Active Directory and modern identity and access management environments such as Azure AD / Entra ID.
- The ability to develop custom tooling, exploits, or proof-of-concept code (e.g., in Python, PowerShell, or similar languages).
- Experience documenting complex technical findings in clear, structured, and reproducible reports.
- Strong communication skills in German and English, both written and spoken.
- A curious and self-driven mindset with the willingness to explore unfamiliar systems and attack surfaces.
Nice to have
- Experience with developing red team tooling or implants, including techniques for evasion and defensive bypass.
- Familiarity with modern endpoint detection and response (EDR) systems and methods for detection evasion.
- Relevant offensive security certifications (e.g., CRTO, OSED, OSCP, OSEP, or similar).
- Experience with physical red teaming techniques (e.g., facility access, hardware implants, or on-site attack scenarios).
- Interest in emerging attack surfaces such as AI systems, LLM applications, or agentic workflows.
- Experience contributing to security research, vulnerability disclosure, or conference presentations.
What we offer
- A permanent full-time position in an independent and privately held security company.
- Flexible working arrangements, including remote work and offices in Winterthur and Berlin.
- A focused, highly technical environment where you can focus on challenging security work rather than compliance-driven consulting.
- A small, experienced team that values collaboration, knowledge sharing, and technical depth.
- Opportunities to work on diverse and complex security assessments across a wide range of industries.
- Time and support for internal knowledge exchange, research activities, and security publications.
- Support for professional development, training, and relevant certifications.
If this sounds like your kind of challenge, we’d love to hear from you!
Send us a short introduction about yourself, your career path so far, your experiences, including any certificates and references (CV).
.orezd - PGP Key ID: 0xEADF873922416024 ⤓