Adversary Emulation & Defense Engineer

About Inmar

Inmar is dedicated to strengthening its ability to defend against emerging cyber threats by bridging offensive and defensive security disciplines.

Job Summary

The Adversary Emulation & Defense Engineer plays a critical role in designing and executing collaborative, threat-informed adversary emulations that unite offensive (red) and defensive (blue) capabilities.

Key Responsibilities

• Plan, lead, and document purple-team exercises emulating prioritized adversary TTPs across the full attack lifecycle.
• Build adversary-emulation plans and safe automation in production-like environments using Atomic Red Team, CALDERA, and custom scripts.
• Engineer, tune, and validate detections and controls across SIEM/analytics, endpoint configurations, identity protections, and network security.
• Translate findings into actionable backlog items with clear owners, timelines, and acceptance criteria.
• Run regular hands-on workshops where attackers demo evasion paths and defenders showcase detections and response playbooks.
• Build reporting dashboards tracking ATT&CK coverage, detection latency, and MTTD/MTTC to measure control effectiveness.

Requirements

• Bachelors in Information Security or related field, or equivalent practical experience.
• 4-6 years in offensive security and either detection engineering, incident response, or SOC with hands-on experience across offensive and defensive domains.

Additional Responsibilities

• Performs other duties as assigned.
• Complies with all policies and standards.