Read Tea, Lead
Provides strategic leadership for the Red Team and offensive security program, ensuring alignment with organizational risk management objectives.
Key Responsibilities
- Define the strategy and roadmap for offensive and scenario-based security assessments.
- Lead Purple Team strategy and collaboration with SOC leadership.
- Drive organization-wide proactive vulnerability identification initiatives.
- Oversee reduction of VAPT findings and improvement of security maturity.
- Govern information security risk management across all development and operational activities.
- Ensure Red Team performance aligns with SLAs, KPIs, and regulatory requirements.
- Report to senior leadership on security posture, emerging threats, and risk exposure
Qualifications
- Strong experience in:
- Designing enterprise Red Team programs
- Integrating with SOC, CTI, GRC, DevSecOps
- Defining KPIs, SLAs, and maturity models
- Deep understanding of:
- MITRE ATT&CK
- Threat modeling
- ISO 27001 / NIST / regulatory requirements
- SDLC / DevSecOps risk management
Certifications (Strongly Preferred)
- CISSP or CISM (almost mandatory at this level)
- OSCP / CRTO / GPEN / GXPN (at least one advanced offensive cert)
