Purple Team Engineer

Summary

Join CloudWalk's Purple Team as a cybersecurity engineer, bridging offensive (red team) and defensive (blue team) operations to enhance security posture. You will leverage offensive techniques to strengthen defensive capabilities, creating a powerful feedback loop for continuous improvement. This dynamic role requires experience in both offensive and defensive security operations, a strong understanding of attack methodologies, and proficiency in security tooling. Excellent scripting and automation skills are essential, along with strong communication to translate technical findings across teams. The ideal candidate will possess a collaborative mindset and the ability to work across security disciplines. CloudWalk offers the opportunity to be a catalyst in transforming the security program into a proactive, resilient defense system.

Requirements

• Experience in both offensive security (penetration testing, red teaming) and defensive security operations (SOC, incident response)
• Strong understanding of attack methodologies and adversary tactics
• Proficiency in security tooling, SIEM systems, and detection engineering
• Excellent scripting and automation skills (Python, PowerShell, etc.)
• Strong communication skills to effectively translate technical findings across teams
• Collaborative mindset and ability to work across security disciplines

Responsibilities

• Experience in both offensive security (penetration testing, red teaming) and defensive security operations (SOC, incident response)
• Strong understanding of attack methodologies and adversary tactics
• Proficiency in security tooling, SIEM systems, and detection engineering
• Excellent scripting and automation skills (Python, PowerShell, etc.)
• Strong communication skills to effectively translate technical findings across teams
• Collaborative mindset and ability to work across security disciplines

Preferred Qualifications

• Experience implementing purple team methodologies in enterprise environments
• Knowledge of MITRE ATT&CK framework and its practical application
• Experience with threat intelligence integration and threat hunting
• Cloud security expertise across major platforms (AWS, Azure, GCP)