General Information

Country
India
Department
IM SECURITY
Date
Wednesday, March 19, 2025
Working time
Full-time
Ref#
20034992
Job Level
Executive Manager
Job Type
Experienced
Job Field
IM SECURITY
Seniority Level
Mid-Senior Level

Description & Requirements

About Xerox Holdings Corporation
For more than 100 years, Xerox has continually redefined the workplace experience. Harnessing our leadership position in office and production print technology, we’ve expanded into software and services to sustainably power today’s workforce. From the office to industrial environments, our differentiated business solutions and financial services are designed to make every day work better for clients — no matter where that work is being done. Today, Xerox scientists and engineers are continuing our legacy of innovation with disruptive technologies in digital transformation, augmented reality, robotic process automation, additive manufacturing, Industrial Internet of Things and cleantech. Learn more at www.xerox.com and explore our commitment to diversity and inclusion.

The Senior Red Team Engineer is accountable for enhancing Xerox’s security by proactively identifying and addressing vulnerabilities through advanced penetration testing and threat simulations. 

 

Designation:Senior Red Team EngineerOffensive Security 

 

 

Qualification (Mandatory): Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or related field. 

 

 

Professional Certifications: 

Preferred– OSCP, OSCE, OSWP, GPEN, GWAPT, OSWE, OSEP, OSED, OSEE, GXPN or equivalent. 

 

 

Timings: 1 PM to 10 PM(IST) 

 

 

Location:Bangalore, Kochi, Gurgaon, Remote 

 

 

Primary Responsibilities: 

  • Conduct advanced Red Team operations to simulate real-world cyberattacks and identify vulnerabilities in systems, networks, and applications across on-prem and cloud infrastructure. 
  • Perform penetration testing on applications/products (Web, Mobile, Thick client applications, Devices etc.) to identify security vulnerabilities. 
  • Develop and execute attack strategies, leveraging the latest tools, tactics, and techniques. 
  • Collaborate with Blue Teams to enhance detection and response capabilities. 
  • Create custom tools and scripts to automate attack techniques and improve operational efficiency. 
  • Prepare detailed reports on findings, including vulnerabilities, attack paths, and recommendations for mitigation. Work with cross-functional teams to align and prioritize remediation efforts. 
  • Stay updated on emerging threats, vulnerabilities, and security trends to adapt Red Team strategies accordingly. 
  • Provide mentorship and guidance to junior team members. 
  • Work closely with stakeholders to ensure alignment of Red Team activities with organizational security goals. 

 
 

Knowledge and Technical Skills Required: 

  • 8+ years of offensive security experience 
  • In-depth understanding of the MITRE ATT&CK framework and its application in Red Team operations. 
  • Expertise in performing penetration tests on web, mobile, APIs, IoT and thick-clientapplications. 
  • Proficiency in penetration testing and C2 tools such as Metasploit, Cobalt Strike/Empire, Burp Suite, and others. 
  • Strong knowledge of Windows, Linux, and MacOS internals, including native tools and scripting. 
  • Expertise in network protocols, web application security, and cloud security. 
  • Familiarity with exploit development and reverse engineering. 
  • Advanced skills in exploiting cloud environments such as AWS, Azure, and Google Cloud Platform, including IAM misconfigurations and container vulnerabilities. 
  • Advanced understanding of Active Directory exploitation techniques, including Kerberos attacks and privilege escalation. 
  • Familiarity with cryptographic algorithms and their potential weaknesses for exploitation. 
  • Proficiency with at least one of the following programming languages desired: Java, .Net, C#, C, C++ 
  • Ability to write and understand scripts in languages like Python, PowerShell, Bash, or Ruby.  
Soft Skills Required: 


  • Strong interpersonal skills as well as excellent written and verbal communication skills 
  • Uncompromising personal and professional integrity and ethics. 
  • Clear articulation of complex technical concepts to both technical and non-technical stakeholders. 
  • Creative and analytical thinking to navigate challenges and develop innovative solutions. 
  • Evaluating situations logically to make informed decisions and anticipate potential risks. 
  • Prioritizing tasks and managing deadlines efficiently while managing stakeholders. 

#L1 -REMOTE
#L1-SS3

< Go back