Unknown Company is hiring an Associate Director, Adversary Simulation

Humana is looking for an Associate Director, Adversary Simulation to lead offensive security capabilities through strategic management of Red Team operations and Breach & Attack Simulation (BAS) programs. This role combines deep technical expertise in adversarial tactics with proven people management skills to drive organizational security effectiveness through realistic threat simulation.

What You'll Do

• Lead and develop high-performing Red Team and BAS engineering teams.
• Conduct regular 1:1 meetings and provide career development guidance for staff.
• Manage performance through goal setting, feedback, reviews, and professional growth planning.
• Foster a collaborative culture promoting technical excellence and continuous learning.
• Support hiring new team members with appropriate technical and cultural fit.
• Lead Red Team engagement planning, including stakeholder requirements gathering and risk-based prioritization.
• Coordinate with Red Team operators to translate business security concerns into realistic scenarios.
• Provide weekly updates to CTS leadership during execution for alignment and progress tracking.
• Provide strategic oversight of BAS program delivery, focusing on capability maturation and stakeholder alignment.
• Coordinate with stakeholders to align adversary simulation activities with organizational security priorities.
• Ensure the technical quality of all offensive security deliverables, including findings documentation and reports.
• Ensure collaboration between Red Team exercises and BAS simulations to maximize coverage and avoid duplication.
• Drive innovation in adversarial simulation techniques and tooling.
• Develop and execute a program strategy for adversary simulation capabilities aligned with business objectives.
• Manage project timelines and resource allocation across multiple concurrent engagements.
• Coordinate cross-functional collaboration with other CTS teams and organizational stakeholders.
• Establish metrics and KPIs for measuring program effectiveness and team performance.
• Support incident response activities with an adversarial perspective and technical expertise.
• Collaborate with the Enterprise Information Protection (EIP) organization on strategic security initiatives.
• Support communication of recommendations to executive leadership and stakeholders.
• Interface with external partners, including vendors, industry groups, and service providers.
• Support business unit engagement through technical consultation and fielding intake requests.

What We're Looking For

• 3-5 years of management experience leading technical teams in cybersecurity or a related field.
• Proven track record of developing high-performing technical professionals.
• Demonstrated ability to manage complex projects with multiple stakeholders and competing priorities.
• Experience building and scaling technical programs and capabilities.
• 5-7 years of hands-on experience in offensive security, penetration testing, red team operations, or Breach and Attack Simulation (BAS).
• Deep understanding of adversarial tactics, techniques, and procedures (TTPs).
• Proficiency with red team tools, including C2 and Social Engineering frameworks, exploitation tools, and custom payload development.
• Knowledge of enterprise security technologies and architecture patterns, and their potential vulnerabilities and bypasses.
• Understanding of threat intelligence and attack lifecycle methodologies.
• Program management experience coordinating multiple concurrent security assessments or technical projects.
• Resource planning and allocation skills for technical teams and project deliverables.
• Risk management capabilities for complex technical operations.
• Vendor management experience with security service providers and technology partners.

Nice to Have

• Malware development and analysis capabilities.
• Cloud security expertise (AWS, Azure, GCP) with a focus on offensive techniques.
• Active Directory and enterprise infrastructure attack methodologies.
• Scripting and automation skills (Python, PowerShell, Bash) for operational efficiency.
• Professional certifications such as CPTS, OSCP, OSEP, CAPE, CBBH, CWEE, OSWE, CRTP, CRTE, CRTO, or equivalent.
• Advanced certifications like OSCE3, CRTL, CRTM, and OSEE are preferred.
• Continuous learning through industry training and conference participation.
• Enterprise environment experience with large-scale red team operations.
• Regulatory compliance knowledge relevant to adversary simulation (SOX, PCI, HIPAA).
• Consulting or managed services background with client-facing technical communication.
• Cross-functional collaboration with IT, compliance, and business stakeholders.

Technical Stack

• C2 frameworks, Social Engineering frameworks, Exploitation tools, Custom payload development
• Python, PowerShell, Bash
• AWS, Azure, GCP

Team & Environment

You will lead the Red Team and BAS engineering teams, coordinating with the BAS Lead and other team leads, and report to CTS leadership.

Benefits & Compensation

• Base salary range of $156,600 - $215,400 per year.
• Performance-based incentives.
• Comprehensive benefits package including health, dental, vision, and retirement planning.
• Professional development opportunities, including tuition assistance, conference attendance, training, and certification support.
• Flexible work arrangements support work-life balance and professional effectiveness.

Work Mode

This is a fully remote position.

Humana is a caring community committed to putting health first. It is the policy of Humana not to discriminate against any employee or applicant for employment because of race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability or protected veteran status.