Cloudflare

Manager, Red Team

Cloudflare

full-time

Posted on:

Location Type: Hybrid

Location: AustinTexasUnited States

Visit company website

Explore more

AI Apply
Apply

Job Level

SeniorLead

Tech Stack

Cloud

About the role

  • Lead a team of high-performing global red team and efficacy engineers, providing technical guidance while fostering a culture of curiosity and ethical hacking.
  • Develop and execute on priorities of the security organisation for the red team and efficacy testing team.
  • Manage the execution of full-chain red team operations targeting Cloudflare’s global infrastructure, corporate networks, and product ecosystems.
  • Establish a rigorous framework for testing "Security Efficacy"—measuring exactly how well our products and security tools hold up against malicious adversaries.
  • Foster a highly collaborative relationship with the Blue Team (Detection & Response), Eng and Product teams to ensure findings are translated into immediate defensive improvements.
  • Translate complex technical exploits into risk-based narratives for leadership, helping prioritize engineering resources where they matter most.

Requirements

  • 8+ years in offensive security, with at least 2-3 years in a formal leadership or management capacity.
  • A strong background in manual penetration testing, exploit development, or cloud security.
  • Experience using the MITRE ATT&CK framework to map coverage and identify "blind spots" in defensive telemetry.
  • The ability to explain a complex "0-day" exploit to a non-technical stakeholder while maintaining the respect of a deep-dive engineering team.
  • Knowledge of automated breach and attack simulation (BAS) tools, as well as custom-built frameworks for payload delivery and C2 infrastructure.
Benefits
  • Health insurance
  • 401(k) matching
  • Flexible work hours
  • Paid time off
  • Professional development opportunities
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
offensive securitymanual penetration testingexploit developmentcloud securityautomated breach and attack simulationpayload delivery frameworksC2 infrastructureMITRE ATT&CK frameworksecurity efficacy testing
Soft Skills
leadershiptechnical guidancecollaborationcommunicationcuriosityrisk-based narrative translation