Skip to content
EnglishNederlands

Red Team Operator

  • Hybrid
    • Utrecht, Utrecht, Netherlands
  • Red Team

Job description

About Northwave

Our mission is clear: to enable businesses to operate securely. With over 275 dedicated specialists, Northwave works daily on innovative cybersecurity solutions that truly help organizations move forward. We operate from our headquarters in Utrecht and offices in Germany, Sweden, and Belgium.
Northwave brings together ethical hacking, behavioral psychology, and top-level security management. We respond to threats—and anticipate them—through 24/7 managed security services and tailored specialist solutions.
Joining Northwave means stepping into an environment where innovation and results go hand in hand. Whether you excel in technical testing or strategic client communication, you’ll have the freedom to help shape the future of digital security and make a real impact.

Our Red Team 

Northwave’s Red Team lives for hacking. Our team consists of 20+ hackers from all over the world, with diverse backgrounds and expertise. We focus solely on challenging pentests and realistic red teaming operations that enhance the digital resilience of organizations across Europe.
We collaborate with our Blue Team, Threat Intelligence, Reverse Engineering, and CERT to create realistic, high-value attack scenarios. In addition to our mature services, we are a highly regarded TIBER and ART provider, making our work consistently exciting and cutting-edge.

The Role 

As a Red Team Operator, you design and execute attack scenarios that genuinely help clients improve. You train Blue Teams during Purple Teaming sessions and confidently present your findings—whether to technical teams or executive leadership.
Your toolkit includes OSINT, custom tooling, malware development, social engineering, privilege escalation, and command & control techniques. You’ll work independently and as part of a team on offensive operations and contribute to the ongoing development of our TTPs.
You’ll also have opportunities to share your knowledge—both within the team and at conferences, workshops, and events.

How we work

Everything starts with an intake session: what are the crown jewels? Together with the client, we develop realistic attack scenarios and formalize agreements in a Rules of Engagement document. We then jump straight into action using techniques such as OSINT, custom malware development, spear phishing, and vulnerability exploitation.

What we offer

  • A salary aligned with the challenges of red teaming and your experience

  • Lease car or travel reimbursement

  • MacBook and iPhone

  • 25 vacation days

  • A solid pension plan

  • The possibility to work hybrid

  • Complex and challenging red team projects for major clients

  • A people-focused working environment

  • Training budget for OSCP, OSEP, CRTO, or equivalent certifications

  • Access to leading (international) cybersecurity conferences

  • A workplace with more than 275 passionate colleagues

  • Fun events and plenty of room for your own initiatives

Job requirements

Must-haves

  • At least 3 years of experience in red teaming and/or infrastructure penetration testing

  • Proven experience with Active Directory attacks (LDAP enumeration, ACL abuse, Kerberoasting, etc.)

  • Hands-on knowledge of C2 platforms such as Cobalt Strike, Mythic, Sliver, or Outflank Security Tooling

  • Strong consultancy skills: you listen, ask the right questions, and can present and report clearly

  • Capable of running operations independently and working effectively in a team

Nice-to-haves

  • Experience with adversary simulation

  • Familiarity with TIBER or ART engagements is a strong plus, but not required

  • Cloud knowledge, especially of Azure or AWS

  • A technical background at bachelor's or master's level, or equivalent through experience

Finally
If you're available to start soon, we're excited to welcome you on board quickly—and of course, that comes with appropriate recognition.
Not sure if your profile matches the role perfectly, but still feel excited about it? Don’t hesitate to reach out. We’d love to explore together whether there’s a match.

Interested?

What is important to you in your next step? We are happy to start a conversation. Apply directly or contact our recruiter Bastiaan first.

bastiaan.rolloos@northwave-cybersecurity.com

+31 6 45 880 490

or

Hybrid
  • Utrecht, Utrecht, Netherlands
Red Team

How we hire

Our hiring process is thorough, to ensure we make the right decision and to help you to decide if we're the right fit for you. Depending on the position and general conditions, steps may vary in individual cases - if you have any questions, please feel free to ask!

Your Application and Screening phase

After submitting your application, you will receive an automatic confirmation of receipt from us.

We review your application and give you feedback. This process takes some time but we try to give you feedback as quickly as possible.

First Interview - Getting to know you

In the first online meeting, let our recruiter learn about you and your story to check a potential fit. This is also a chance for you to ask first questions about the role and company.

Second Interview - Learning more about your skills

In this one site meeting, your future Leader takes a deeper dive into your experience and what you could bring to the team. You can expect questions on how knowledgeable you are in the business or technology area. For technical positions, you can expect a technical test. Further, you have the chance to meet the team and ask questions.

Job Offer and Onboarding

Congratulations, you made it to the very last stage! Here we have already decided to make you part of the Northwave team. We are sending you a job offer. We hope you also choose us! If so, Welcome to the Northwave family. We are ready to start with your Onboarding!

Northwave Cyber Security logoHomepage