Director - Offensive Security - Red Team

FICO

2d•$168,000 - $264,000•Remote

About The Position

As Director of Offensive Security, you will serve as a strategic leader shaping FICO's proactive security posture across Red Teaming, Threat Intelligence, and Threat Hunting — with an AI-first mindset embedded into every aspect of the role. You will own the offensive security strategy end-to-end, directing the emulation of sophisticated real-world adversaries to surface hidden risks, rigorously validate defensive controls, and deliver actionable intelligence that drives enterprise-wide security decisions at the highest levels. Sitting at the intersection of external threat landscapes and internal vulnerability, you will translate emerging adversary tactics into meaningful, measurable improvements to FICO's defenses — ensuring the organization maintains a resilient, adaptive security posture against advanced persistent threats (APTs) and the continuously evolving tactics, techniques, and procedures (TTPs) of modern threat actors.

Requirements

In-depth experience in offensive security.
Proven leadership experience managing and developing high performing, cross-functional teams within dynamic, multifaceted management environments.
Hands-on experience as Red Teamer.
Expertise in using AI tools for Red teaming.
Deep understanding of the MITRE ATT&CK framework, cloud security (AWS/Azure/GCP), AI security and operating system internals.
Demonstrated experience utilizing automation and AI to enhance the quality and productivity of offensive teams.
Strong ethical judgment, adaptability in high-pressure crises, and the ability to mentor high-performing technical teams.

Nice To Haves

Advanced industry certifications such as OSCP, OSEP, CRTO, or CISSP are highly preferred.

Responsibilities

Define and execute a long-term roadmap for offensive security that aligns with business objectives and the evolving threat landscape.
Partner with blue teams and engineering to ensure offensive findings are translated into automated detection rules and architectural improvements.
Oversee the planning and safe execution of realistic, multi-stage attack simulations (Red and Purple Team exercises) in FICO environments.
Ensure the Red Team effectively emulates the Tactics, Techniques, and Procedures (TTPs) of relevant threat actors.
Drive the development of custom exploits, attack tools, and automation frameworks to stay ahead of off-the-shelf security controls.
Lead the collection, analysis, and targeted distribution of actionable intelligence regarding emerging cybercrime, espionage, and hacktivism.
Leverage commercial and open-source intelligence feeds to predict how new vulnerabilities might impact the organization's specific architecture.
Manage a hypothesis-driven threat hunting program that identifies "silent failures" in detection logic before they lead to breaches.
Oversee the analysis of massive datasets (EDR, SIEM, cloud logs) to find patterns of behavior indicating advanced persistent threats.
Use hunt findings to continuously tune and improve the efficacy of existing security tools like firewalls, XDR, and SOAR platforms.