Job Title: Specialist/Sr. Specialist, Red Team
No Relocation Assistance Offered
Job Number #165948 - Mumbai, Maharashtra, India
Who We Are
Colgate-Palmolive Company is a global consumer products company operating in over 200 countries specializing in Oral Care, Personal Care, Home Care, Skin Care, and Pet Nutrition. Our products are trusted in more households than any other brand in the world, making us a household name!
Join Colgate-Palmolive, a caring, innovative growth company reimagining a healthier future for people, their pets, and our planet. Guided by our core values—Caring, Inclusive, and Courageous—we foster a culture that inspires our people to achieve common goals. Together, let's build a brighter, healthier future for all.
The Experience:
Join Colgate-Palmolive at an exciting time of technological evolution! Our innovative Global Information Security team is dedicated to enhancing our information security landscape and driving growth in this ever-changing environment.
What role will you play as a member of Colgate Palmolive’s Information Technology team?
We are seeking a skilled and experienced Offensive Security Specialist to join our team. As an integral part of our team, you will conduct penetration testing and simulate realistic security attack scenarios to identify vulnerabilities in our applications, systems, and infrastructure.
With a focus on offensive security strategies, you will develop and use security tools to emulate known and potential attack groups. Your role will require strong scripting abilities for automation and tool development. You’ll play a crucial part in designing and implementing innovative security solutions across our global footprint.
Who are you…
You are a function expert:
This position is for an individual contributor responsible for the following:
- Conduct realistic offensive security exercises, planning and implementing engagements with a team of skilled hackers.
- Develop and maintain tools and infrastructure to support Red Team exercises.
- Document and present findings to technical audiences and senior leadership, including our Chief Information Security Officer and Chief Information Officer.
- Engage in purple team engagements with our Security Operations Center, simulating various threat levels.
- Research attack techniques and tools to improve engagement success.
- Provide debriefs post-engagement to guide improvement efforts.
You connect the dots:
- Your expertise in offensive security connects vulnerabilities with opportunities for enhanced security.
- Demonstrate your skills in scripting languages and systems knowledge to align technical configurations with security goals and successful vulnerability management.
You are a collaborator:
- Work closely with security and IT teams to develop robust, defense-in-depth controls.
- Collaborate to continuously improve security tactics and procedures, ensuring an integrated approach to global security management.
You are an innovator:
- Spearhead innovative security initiatives, pushing the boundaries of offensive security capabilities.
- Apply your offensive security approach to design new techniques and methodologies that anticipate future threats.
What you’ll need… (Required):
- Bachelor's degree.
- Minimum 3+ years in penetration testing, red teaming, or vulnerability research.
- Proficiency in scripting languages (e.g., Python, Ruby, PowerShell, or Bash)
- Experience with Windows and Linux operating systems.
- At least one entry-level penetration testing certification such as OSCP, OSWA, CPTS, eJPT, CRTP, or PNPT.
- Solid networking knowledge, including Identity and Access Management and Active Directory.
- Experience identifying and remediating OWASP top 10 security flaws.
- Practical experience setting up and applying command and control (C2) frameworks for executing red team operations, including managing communications and coordinating attacks.
What you’ll need… (Preferred):
- Advanced certifications such as OSED, OSEE, OSCE3, or Red Team Ops II (CRTO II)
- Experience with cloud environments and containerization technologies (e.g., Docker, Kubernetes).
- A CVE disclosure, bug bounty, or open-source community contributions
- Strong system administration skills, including hypervisors
- High curiosity and continuous eagerness to learn beyond immediate security disciplines.
Our Commitment to Diversity, Equity & Inclusion
Achieving our purpose starts with our people — ensuring our workforce represents the people and communities we serve —and creating an environment where our people feel they belong; where we can be our authentic selves, feel treated with respect and have the support of leadership to impact the business in a meaningful way.
Equal Opportunity Employer
Colgate is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity, sexual orientation, national origin, ethnicity, age, disability, marital status, veteran status (United States positions), or any other characteristic protected by law.
Reasonable accommodation during the application process is available for persons with disabilities. Please complete this request form should you require accommodation.
#LI-Hybrid
Job Segment:
Open Source, Information Security, Linux, Equity, Technology, Research, Finance