Offensive Security Red Teamer

About Us

HALOCK is a cybersecurity consulting firm dedicated to helping our clients strengthen their security posture. We offer a comprehensive suite of services, including penetration testing, security assessments, and advisory services. As a small firm, we pride ourselves on our collaborative environment, technical excellence, and commitment to client success.

 

Job Description

Job Title

Red Team Tester

Location

Remote; Chicago/Milwaukee preferred

Pay Range

$100-160k depending on experience.

 

Why HALOCK?

"The world isn't run by weapons anymore, or energy, or money.
It's run by little ones and zeroes, little bits of data. It's all just electrons."

 

At HALOCK Security Labs, we're building the kind of Offensive Security team that red teamers believe in.

These aren't tool-heavy, checkbox pentests. Our testers think and act like adversaries – endpoint evasion, privilege escalation, moving laterally, and chaining attacks until we hit business-critical objectives. We write reports, sure, but they're narrative-driven… The full story from entry to impact, showing the path taken and the attacker mindset, and conveying the risks in a way that the client understands.

Automated tools, BAS platforms, and AI agents can tell you where the low-hanging fruit is. What they can't do is think like an adversary, turning a series of small flaws into full-on breaches. That takes curious, disciplined, relentless humans… Hackers. We do pentests the way real attackers do, but with one purpose – to make our clients stronger, safer, and prepared for the real thing.

 

Who You Are

Adversarial Thinker

  • You see systems the way an attacker would, not a series of ports and boxes, but a path of technical hurdles and puzzles that get you to the real objective.
  • You're comfortable with open-world testing… Endpoint evasion, escalation, and lateral movement, not just running the tool that the section of the book or training tells you to run.
  • You'd rather chain three lows and mediums into reaching the business-impacting objective than sinking days into chasing a single high RCE.

Storyteller

  • You write and speak well, telling the story from entry to impact in a report and on a debrief call, describing how each move got you closer to the objective.
  • You know how to make a risk felt by a client – technical and non-technical alike.

Breaker and Builder

  • Tools are great, but you know when to drop Burp and write your own script.
  • You're curious about the stuff that doesn't have a Metasploit module yet. You read blogs, watch talks, and take part in your local InfoSec community events.
  • You can demonstrate an interest in at least one specialty (cloud, identity, appsec, social, physical, exploit dev, etc.).

Continuous Learner

  • You dive into research, tinker with new TTPs, and share what you learn. And you try to bring something new to each engagement.
  • You've been in CTFs, cons, or write-ups… Or you have near-term plans to do so.
  • You bring focus and intensity to the workday, but know when to recharge so you stay sharp for the tough challenge.

Teammate

  • You collaborate, pressure-test each other's ideas, and celebrate shared wins.
  • You'll take feedback, give feedback, and make the team better every time.
  • You want to be part of a group you trust to have your back and to push you forward.

Qualifications

  • Consulting experience preferred, so if you don't have it, be prepared to demonstrate how you make up for the gaps.
  • Strong on either network or appsec, and passable on the other.
  • Strong professionalism and speaking/writing skills, without overreliance on LLMs and with a willingness to get on video calls.

Things We Like

  • Can demonstrate and discuss previous persistence on real-world tests chaining small findings into showing real impact.
  • Have written tools, scripts, or PoCs when off-the-shelf options weren't enough.
  • Experience with EDR evasion and C2 frameworks.
  • Been part of CTFs, cons, local meetups, or have published write-ups.
  • Certifications (Offensive Security, Zeropoint Security, SEKTOR7, etc.).
  • Some level of scripting/coding proficiency.

 

What We Offer

  • A collaborative and supportive work environment.
  • Competitive salary and benefits package.
  • Opportunities for professional development and growth.
  • Exposure to a diverse range of clients and challenging projects.

 

To Apply

Interested candidates are invited to submit their résumé and a cover letter detailing why they are a good fit for this role to [email protected] .
  • HALOCK is an Equal Opportunity Employer. We are committed to creating an inclusive environment for all employees.
  • All candidates invited to interview will be required to sign strict confidentiality and non-disclosure agreements.
  • Full background checks are performed, with consent, on all successful candidates before employment offers can be extended.
  • We are unable to sponsor H1 candidates at this time.
  • No 3rd parties please. Individuals only need apply.