Infrastructure/ Red Teaming Security Consultant
Airswift have partnered with a Cyber Security Consultancy in Dubai that specialise in the Banking and government sector. They are working with a key enterprise client that re expanding their ai capabilities.
Responsibilities
1. Review the configuration and hardening of cloud environments, operating systems, networks, directory/identity services, and security tooling against benchmarks and internal standards.
2. Perform attack-path analysis — chaining misconfigurations, excessive privilege, and control gaps into realistic compromise scenarios.
3. Conduct privilege-escalation, lateral-movement, and segmentation-bypass assessments across hybrid environments.
4. Build lightweight automation to scale recurring configuration and control reviews.
5. Plan and run full-scope red team and attack-simulation engagements, mapped to recognized adversary tactics and techniques.
6. Develop and adapt tradecraft, payloads, and tooling to safely exercise defenses, including evasion of preventive and detective controls.
7. Emulate the realistic kill chain — initial access, execution, persistence, privilege escalation, lateral movement, and objective completion.
8. Work in a purple-team mode with detection and response teams to measure and improve coverage.
9. Re-validate fixes and track issues through to closure.
10. Document attack narratives, evidence, and impact clearly; provide prioritized, actionable remediation.