Top Benefits
About the role
Location: Open to locations within proximity of a CGI office
Clearance: Have or able to obtain Federal level security Clearance-Enhanced Reliability
We are seeking a highly skilled and motivated Red & Blue Team Specialist to join our Cybersecurity team. The ideal candidate will possess deep expertise in offensive security testing (Red Team) and the ability to collaborate with defensive teams (Blue Team) to enhance organizational resilience through Purple Team engagements. This role will focus on adversary emulation, threat simulation, detection engineering, and continuous improvement of security controls.
Your future duties and responsibilities
Red Teaming (Offensive Security):
Conduct full-scope Red Team exercises including phishing, social engineering, physical security, and advanced network exploitation.
Simulate real-world adversary tactics, techniques, and procedures (TTPs) based on frameworks such as MITRE ATT&CK.
Perform penetration testing of applications, networks, and cloud environments.
Develop custom exploits, scripts, and tooling to support offensive operations.
Blue Teaming (Defensive Security):
Monitor, detect, and respond to cyber threats using SIEM, EDR/XDR, and threat intelligence tools.
Perform log analysis, malware investigation, and incident triage for suspected security events.
Collaborate with the Red Team to validate detection use cases and improve SOC processes.
Develop, fine-tune, and implement detection rules, playbooks, and response procedures.
Conduct threat hunting based on adversary emulation and IOC/IOA intelligence.
Research & Continuous Improvement:
Track emerging threats, APT tactics, and vulnerabilities relevant to the organization’s environment.
Develop repeatable testing frameworks and playbooks for Red/Purple Team operations.
Mentor junior team members and contribute to security awareness initiatives.
Required qualifications to be successful in this role
8+ years of experience in cybersecurity with proven exposure to both offensive and defensive security.
Have or able to obtain Federal level security Clearance-Enhanced Reliability
Strong knowledge of penetration testing tools (Cobalt Strike, Metasploit, Burp Suite, BloodHound, etc.) and defensive platforms (Splunk, Microsoft Sentinel, QRadar, Elastic, Defender, etc.).
Proficiency in Active Directory security, lateral movement, and persistence techniques.
Familiarity with incident response, forensics, and malware analysis.
Knowledge of frameworks such as MITRE ATT&CK, NIST CSF, ISO 27001, and cyber kill chain.
Bachelors degree in Information Security, Computer Science or related field and/or equivalent experience
Preferred:
Offensive certifications: OSCP, OSEP, CRTO, GPEN, GXPN.
Defensive certifications: GCIA, GCDA, GCFA, CySA+, SC-200.
Programming/scripting skills in Python, PowerShell, Bash, or Go.
Experience in cloud security (AWS, Azure, GCP).
#LI-AB19
Together, as owners, let’s turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
At CGI, we value the strength that diversity brings and are committed to fostering a workplace where everyone belongs. We collaborate with our clients to build more inclusive communities and empower all CGI partners to thrive. As an equal-opportunity employer, being able to perform your best during the recruitment process is important to us. If you require an accommodation, please inform your recruiter.
To learn more about accessibility at CGI, contact us via email. Please note that this email is strictly for accessibility requests and cannot be used for application status inquiries.
Come join our team—one of the largest IT and business consulting services firms in the world.
About CGI
Insights you can act on to achieve trusted outcomes.
We are insights-driven and outcomes-focused to help accelerate returns on your investments. Across 21 industry sectors and 400 locations worldwide, we provide comprehensive, scalable and sustainable IT and business consulting services that are informed globally and delivered locally.
We value your opinions and welcome your comments and questions on our posts here on LinkedIn. Please keep a polite, professional and constructive tone. We remove comments containing objectionable language and derogatory views. We do not allow content that is unrelated to the subject, and we remove discriminatory and racist comments as well as spam and advertising.
Note that content on this page contains general information regarding CGI’s services and initiatives and should not be considered direct business advice. To engage in a discussion with one of our experts, please make a request through https://www.cgi.com/en/contact-us
Top Benefits
About the role
Location: Open to locations within proximity of a CGI office
Clearance: Have or able to obtain Federal level security Clearance-Enhanced Reliability
We are seeking a highly skilled and motivated Red & Blue Team Specialist to join our Cybersecurity team. The ideal candidate will possess deep expertise in offensive security testing (Red Team) and the ability to collaborate with defensive teams (Blue Team) to enhance organizational resilience through Purple Team engagements. This role will focus on adversary emulation, threat simulation, detection engineering, and continuous improvement of security controls.
Your future duties and responsibilities
Red Teaming (Offensive Security):
Conduct full-scope Red Team exercises including phishing, social engineering, physical security, and advanced network exploitation.
Simulate real-world adversary tactics, techniques, and procedures (TTPs) based on frameworks such as MITRE ATT&CK.
Perform penetration testing of applications, networks, and cloud environments.
Develop custom exploits, scripts, and tooling to support offensive operations.
Blue Teaming (Defensive Security):
Monitor, detect, and respond to cyber threats using SIEM, EDR/XDR, and threat intelligence tools.
Perform log analysis, malware investigation, and incident triage for suspected security events.
Collaborate with the Red Team to validate detection use cases and improve SOC processes.
Develop, fine-tune, and implement detection rules, playbooks, and response procedures.
Conduct threat hunting based on adversary emulation and IOC/IOA intelligence.
Research & Continuous Improvement:
Track emerging threats, APT tactics, and vulnerabilities relevant to the organization’s environment.
Develop repeatable testing frameworks and playbooks for Red/Purple Team operations.
Mentor junior team members and contribute to security awareness initiatives.
Required qualifications to be successful in this role
8+ years of experience in cybersecurity with proven exposure to both offensive and defensive security.
Have or able to obtain Federal level security Clearance-Enhanced Reliability
Strong knowledge of penetration testing tools (Cobalt Strike, Metasploit, Burp Suite, BloodHound, etc.) and defensive platforms (Splunk, Microsoft Sentinel, QRadar, Elastic, Defender, etc.).
Proficiency in Active Directory security, lateral movement, and persistence techniques.
Familiarity with incident response, forensics, and malware analysis.
Knowledge of frameworks such as MITRE ATT&CK, NIST CSF, ISO 27001, and cyber kill chain.
Bachelors degree in Information Security, Computer Science or related field and/or equivalent experience
Preferred:
Offensive certifications: OSCP, OSEP, CRTO, GPEN, GXPN.
Defensive certifications: GCIA, GCDA, GCFA, CySA+, SC-200.
Programming/scripting skills in Python, PowerShell, Bash, or Go.
Experience in cloud security (AWS, Azure, GCP).
#LI-AB19
Together, as owners, let’s turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
At CGI, we value the strength that diversity brings and are committed to fostering a workplace where everyone belongs. We collaborate with our clients to build more inclusive communities and empower all CGI partners to thrive. As an equal-opportunity employer, being able to perform your best during the recruitment process is important to us. If you require an accommodation, please inform your recruiter.
To learn more about accessibility at CGI, contact us via email. Please note that this email is strictly for accessibility requests and cannot be used for application status inquiries.
Come join our team—one of the largest IT and business consulting services firms in the world.
About CGI
Insights you can act on to achieve trusted outcomes.
We are insights-driven and outcomes-focused to help accelerate returns on your investments. Across 21 industry sectors and 400 locations worldwide, we provide comprehensive, scalable and sustainable IT and business consulting services that are informed globally and delivered locally.
We value your opinions and welcome your comments and questions on our posts here on LinkedIn. Please keep a polite, professional and constructive tone. We remove comments containing objectionable language and derogatory views. We do not allow content that is unrelated to the subject, and we remove discriminatory and racist comments as well as spam and advertising.
Note that content on this page contains general information regarding CGI’s services and initiatives and should not be considered direct business advice. To engage in a discussion with one of our experts, please make a request through https://www.cgi.com/en/contact-us