Do you want to lead high-impact offensive security engagements, help customers validate their detection and response capabilities, and coach a team of skilled Red Teamers? Do you enjoy combining hands-on technical expertise with people leadership, customer engagement, and service development? Then you might be the Red Team Manager we are looking for.

At NVISO, we care deeply about our employees, our customers, and the quality of our work. We are a European cybersecurity company with a strong technical culture and a clear mission: to help organizations prevent, detect, and respond to cyber threats. As a Red Team Manager, you will play a key role in shaping and growing our Red Team capability while ensuring high-quality delivery across complex offensive security engagements.

Tasks

As a Red Team Manager, you will be responsible for leading a team of Red Team consultants and overseeing the successful delivery of advanced offensive security engagements. Your responsibilities will include:

• Leading Red Team operations by combining hands-on offensive security expertise with strong operational oversight
• Mentor and coach Red Team consultants in their technical growth, professional development, and day-to-day delivery excellence
• Managing the planning, staffing, and execution of Red Team operations, adversary simulation exercises, and assumed breach engagements
• Acting as an escalation point for complex technical, operational, and customer-related challenges
• Ensuring high-quality delivery of reports, findings, and executive readouts
• Supporting pre-sales activities, including scoping, solution design, and customer presentations
• Building trusted relationships with customers and advising them on realistic threat scenarios, attack paths, and security improvement opportunities
• Contributing to the development and continuous improvement of NVISO’s Red Team methodologies, tooling, and service offerings
• Collaborating with other service lines such as Detection Engineering, Incident Response, Threat Intelligence, and Security Architecture
• Helping define strategic priorities for the Red Team and translating them into concrete initiatives
• Ensuring engagements are executed in line with legal, ethical, and operational requirements

Depending on your profile and interests, you may also remain involved in hands-on operations, such as:

• Infrastructure, cloud, and application-based intrusion simulation
• Command and control infrastructure design and operational support
• Initial access simulation and post-exploitation tradecraft
• Evasion of defensive controls and testing of detection and response maturity
• Purple teaming and collaborative exercises with blue teams
• Research into adversary techniques, tools, and procedures
• Covert physical breaches
• Attack simulations in OT networks

Requirements

We are looking for someone who combines strong offensive security knowledge with leadership capabilities and a pragmatic customer mindset.

You have:

• You hold citizenship in one of the 32 NATO member states;
• Several years of experience in offensive security, with a strong focus on Red Teaming, adversary simulation, or advanced penetration testing
• Experience leading projects, teams, or technical workstreams in a consulting or cybersecurity environment
• Strong knowledge of attacker tactics, techniques, and procedures across different stages of the intrusion lifecycle
• Experience with enterprise environments, including Active Directory, Windows, Linux, cloud platforms, and modern identity infrastructure
• A solid understanding of operational security, detection evasion, privilege escalation, lateral movement, and post-exploitation tradecraft
• Experience communicating technical findings to both technical and executive stakeholders
• A structured and quality-driven way of working
• A collaborative mindset and the ability to support and grow others
• Professional proficiency in German and English

Ideally, you also have:

• Experience managing or mentoring offensive security consultants
• Experience with purple team exercises and detection validation
• Familiarity with cloud Red Teaming in Microsoft Azure, AWS, or Google Cloud
• Scripting or development experience in languages such as Python, PowerShell, or C#
• Relevant certifications such as CRTO, CRTE, OSEP, OSCP, or equivalent
• Experience contributing to tooling, internal research, or conference content
• Practical experience with TIBER/TLPT

Benefits

At NVISO, we care. We are committed to offering you a highly competitive remuneration package including financial and non-financial components:

• Working and learning from the best people in the European cyber security industry. We have multiple SANS Instructors working at NVISO, our staff has presented at popular hacking conferences (BlackHat, BruCON, OWASP, etc) and all of our technical staff can acquire deep technical security certifications (GSE, GXPN, GREM, GCFA, OSCP, etc);
• An entrepreneurial and agile company, where you will be stimulated and supported in driving new initiatives (either through internal innovation or by improving our service offering), without losing sight of having fun!
• Regular team-building and fun events with legendary off-site events once a year. The location of the next team building is one of the most closely guarded secrets at NVISO… We can however disclose that we’ve visited Lisbon, Dubai and Malta over the past few years;
• Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team, whose role is to ensure your well-being and helps you grow in your career!
• A training budget of 10,000 EUR plus 10 days paid time off rolling over two years;
• Flexible working hours and home office possibilities (incl. working abroad options within the EU);
• Reimbursement of Deutschlandticket + BahnCard 50 1st Class;
• Business Bike Leasing;
• Company Pension Scheme;
• 30 holidays.

Disclaimer on the Use of AI Tools in the Application Process

Please be aware that the creation and submission of application documents (e.g. CV, cover letter, case studies, etc.) using AI-powered tools is only permitted to a limited extent.

Our expectations:

Application documents must authentically reflect your own qualifications, personality, and motivation.

The use of AI for supportive purposes (e.g. spell-checking, improving wording) is acceptable.

Fully generated application documents created by AI without personal adaptation or review are not permitted.

Under no circumstances may NVISO information, data, or documents be uploaded to or processed by external AI tools.

We reserve the right to exclude applications from the selection and interview process that are clearly created primarily or exclusively by AI and show no recognizable personal input.

The purpose of this policy is to ensure a fair and transparent recruitment process and to obtain an authentic impression of our applicants.