Attack & Penetration Consultant (Red Team Consultant) - Ciudad de México, CDMX

MissionHires is supporting our partner to hire a Red Team Consultant (Attack & Penetration) for up to 12 months on-site engagement with a major bank in Mexico City (CDMX). This role focuses on end-to-end red team operations—recon, design, execution, and reporting—evaluating internal networks, servers, detection/response, and real-world adversary simulation. Must be a Mexican national able to work on-site Monday–Friday, 8:00 AM–5:00 PM. Daily rate: $400 USD.

• Conduct intelligence-driven reconnaissance to identify realistic threat pathways and targets
• Design and plan adversary emulation scenarios aligned to banking threat models
• Execute red team operations including initial access, lateral movement, privilege escalation, and data exfiltration
• Exploit web application vulnerabilities and deploy C2, web shells, and ransomware simulations (as scoped)
• Test internal network and server infrastructure; assess detection and response effectiveness against stealth techniques
• Perform vulnerability assessments, penetration tests, wireless security assessments, and physical/social engineering activities as required
• Simulate real-world attacks without prior knowledge of assets or architecture (black-box approach where applicable)
• Collaborate in daily stand-ups (10–15 min) and weekly syncs (30–60 min) for progress, next steps, and escalation
• Document findings, evidence, and remediation guidance; map outcomes to success indicators (“flags”)
• Adhere to rules of engagement, compliance requirements, and safety controls during testing

• Mexican national; based in or able to work on-site in Mexico City (CDMX) Monday–Friday, 8:00 AM–5:00 PM

• Proven experience in red teaming, adversary emulation, and offensive security within enterprise environments (financial sector experience preferred)

• Hands-on expertise with lateral movement, privilege escalation, data exfiltration, and stealth tradecraft (e.g., OPSEC, EDR evasion)

• Demonstrated ability to exploit web application vulnerabilities and operate C2 frameworks, web shells, and ransomware simulations

• Strong knowledge of Windows and Linux server operations, Active Directory, virtualization platforms, and internal network infrastructures

• Capability to conduct vulnerability assessments, penetration tests, wireless assessments, physical security tests, and social engineering

• Experience operating under strict rules of engagement with measurable success indicators (flags) such as data extraction/modification, service manipulation, inter-system operation injection, and virtualization control

• Clear, concise reporting and stakeholder communication in Spanish; ability to present findings and remediation steps

• Availability for up to 12-months contract with daily and weekly status sessions

• Rate acceptance: $400 USD daily

MissionHires is the AI hiring partner of top talent teams. Our platform helps recruiters, agencies, and top companies source, engage with, and evaluate top talent 10 times faster than job boards.

To bridge the gap between companies and passionate talent.