Red Team Lead Engineer

Who we are looking for

As a senior member of the Red Team within the cybersecurity organization, the Red Team Lead Engineer will guide and execute adversaryemulation activities, threatinformed security testing, and controlled offensive security operations. The Lead Engineer is responsible for ensuring all testing activities align with organizational standards, authorization requirements, and applicable regulatory expectations, and that they are conducted safely within approved scopes and environments.

Why this role is important to us

The Red Team Lead Engineer will design and lead comprehensive, intelligencedriven assessments across enterprise applications, platforms, cloud services, and critical infrastructure. These assessments evaluate both technical security controls and the effectiveness of detection, prevention, and incidentresponse capabilities across the organization.

This role will collaborate with technical subjectmatter experts, security leadership, process and risk stakeholders, cyber threat intelligence analysts, defensive operations teams, and business system owners to ensure testing scenarios accurately represent realistic adversary behaviors and align with enterprise risk priorities. The Lead Engineer is expected to bring deep technical expertise across core security control domains, including identity and access management, data protection, secure software practices, cloud and infrastructure security, endpoint and detection technologies, network security, and vulnerability and threat management. Knowledge of security monitoring, detection engineering, and incidentresponse workflows further supports effective evaluation of organizational defenses.

As a senior role, the Red Team Lead Engineer will also contribute to methodology refinement, scenario development, process improvement, documentation standards, and crossteam coordination, helping advance the maturity and effectiveness of the overall testing program.

What you will be responsible for

• Lead and execute adversaryemulation activities to assess organizational defenses and security control effectiveness.
• Oversee and perform targeted security assessments across applications, infrastructure, cloud platforms, and critical enterprise technologies.
• Guide team members, assign work, and review testing approaches for quality and safety.
• Collaborate with security, technology, and risk stakeholders to design realistic, threatinformed testing scenarios.
• Evaluate detection and response capabilities and drive improvements through coordinated purpleteam efforts.
• Develop and refine testing methodologies, tooling standards, and reporting practices to mature the program.
• Deliver auditready reports and provide guidance on remediation to reduce identified risks.

What we value

These skills will help you succeed in this role

• Advanced proficiency in offensive security techniques and threatinformed testing methodologies.
• Strong understanding of adversary behaviors and attack frameworks to guide scenario design.
• Broad, technical knowledge across networks, operating systems, cloud environments, and core security controls.
• Demonstrated analytical ability to identify core issues, interpret risk, and propose practical, evidencedriven solutions.
• Strong organizational, timemanagement, and prioritization skills in dynamic and highpressure environments.
• Commitment to maintaining awareness of emerging threats, vulnerabilities, and offensive security trends.
• Ability to develop or refine tools and automate tasks using common scripting languages.
• Demonstrated leadership in analyzing complex issues, shaping direction, and guiding team decisionmaking.
• Excellent communication skills with the ability to distill complex technical concepts for diverse audiences.
• High integrity, professionalism, and sound judgment when handling sensitive information and operating under pressure.

Education & Preferred Qualifications

• Bachelor's degree or equivalent advanced security experience.
• 4-6 years leading and/ or conducting penetration testing or redteam activities.
• Broad expertise across networks, operating systems, cloud, and security controls.
• Strong knowledge of threatinformed testing and attack frameworks.
• Experience coordinating with defensive teams to evaluate detections.
• Ability to script and automate tasks using common languages.
• Exceptional communication and reporting skills for diverse audiences.

Salary Range:

$120,000 - $202,500 Annual

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.

Employees are eligible to participate in State Street's comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off in