SafeBreach / Cymulate / AttackIQ / Picus / Cyber / Azure / GCP / MITRE ATT&CK
Breach and Attack Simulation (BAS) Engineer
6 month contract (extensions likely)
Hybrid (Onsite/Remote)
Inside IR35
Superb London based client is seeking a Cyber Security Contractor to support the implementation, configuration, and operationalisation of a Breach and Attack Simulation (BAS) platform.
This role will see you conducting targeted cloud security assessments (Azure, GCP, Kubernetes), and transitioning the tool to Business as Usual (BAU).
You will possess strong technical expertise in BAS platforms, cloud environments, and security operations.
Technical Skills:
- Proven experience with BAS platforms (SafeBreach, Cymulate, AttackIQ, Picus Security).
- Strong understanding of cloud platforms (Azure, GCP, Kubernetes):
- Experience executing simulations across MITRE ATT&CK tactics.
- Security tool integration with SIEM, EDR, and vulnerability management systems.
Experience:
- Hands-on experience in implementing and operationalising BAS tools.
- Demonstrable experience with cloud security assessments and validating cloud security controls.
- Familiarity with endpoint testing (AV/EDR evasion, persistence techniques).
- Experience working with Security Operations Centre (SOC) teams and collaborating on detection improvements.
- Knowledge of MITRE ATT&CK.
- Certifications: AZ-500, Google Professional Cloud Security Engineer, CKS (Certified Kubernetes Security Specialist), or equivalent.
- Experience with scripting and automation (Python, PowerShell).
