Location: Open to locations within proximity of a CGI office
Clearance: Have or able to obtain Federal level security Clearance-Enhanced Reliability
We are seeking a highly skilled and motivated Red & Blue Team Specialist to join our Cybersecurity team. The ideal candidate will possess deep expertise in offensive security testing (Red Team) and the ability to collaborate with defensive teams (Blue Team) to enhance organizational resilience through Purple Team engagements. This role will focus on adversary emulation, threat simulation, detection engineering, and continuous improvement of security controls.
Red Teaming (Offensive Security):
Conduct full-scope Red Team exercises including phishing, social engineering, physical security, and advanced network exploitation.
Simulate real-world adversary tactics, techniques, and procedures (TTPs) based on frameworks such as MITRE ATT&CK.
Perform penetration testing of applications, networks, and cloud environments.
Develop custom exploits, scripts, and tooling to support offensive operations.
Blue Teaming (Defensive Security):
Monitor, detect, and respond to cyber threats using SIEM, EDR/XDR, and threat intelligence tools.
Perform log analysis, malware investigation, and incident triage for suspected security events.
Collaborate with the Red Team to validate detection use cases and improve SOC processes.
Develop, fine-tune, and implement detection rules, playbooks, and response procedures.
Conduct threat hunting based on adversary emulation and IOC/IOA intelligence.
Research & Continuous Improvement:
Track emerging threats, APT tactics, and vulnerabilities relevant to the organization’s environment.
Develop repeatable testing frameworks and playbooks for Red/Purple Team operations.
Mentor junior team members and contribute to security awareness initiatives.
8+ years of experience in cybersecurity with proven exposure to both offensive and defensive security.
Have or able to obtain Federal level security Clearance-Enhanced Reliability
Strong knowledge of penetration testing tools (Cobalt Strike, Metasploit, Burp Suite, BloodHound, etc.) and defensive platforms (Splunk, Microsoft Sentinel, QRadar, Elastic, Defender, etc.).
Proficiency in Active Directory security, lateral movement, and persistence techniques.
Familiarity with incident response, forensics, and malware analysis.
Knowledge of frameworks such as MITRE ATT&CK, NIST CSF, ISO 27001, and cyber kill chain.
Bachelors degree in Information Security, Computer Science or related field and/or equivalent experience
Preferred:
Offensive certifications: OSCP, OSEP, CRTO, GPEN, GXPN.
Defensive certifications: GCIA, GCDA, GCFA, CySA+, SC-200.
Programming/scripting skills in Python, PowerShell, Bash, or Go.
Experience in cloud security (AWS, Azure, GCP).
#LI-AB19
Together, as owners, let’s turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
At CGI, we value the strength that diversity brings and are committed to fostering a workplace where everyone belongs. We collaborate with our clients to build more inclusive communities and empower all CGI partners to thrive. As an equal-opportunity employer, being able to perform your best during the recruitment process is important to us. If you require an accommodation, please inform your recruiter.
To learn more about accessibility at CGI, contact us via email. Please note that this email is strictly for accessibility requests and cannot be used for application status inquiries.
Come join our team—one of the largest IT and business consulting services firms in the world.