Sodexo-Offensive Cyber Security Engineer

Description

Summary: Sodexo is seeking an Offensive Cyber Security Engineer to join its Global Information Cyber Security team, acting as an ethical attacker to identify, validate, and remediate critical risks across global cloud, application, and corporate environments. Highlights: 1. Lead full-scope red team operations, especially in Azure environments 2. Develop custom tools, payloads, and C2 infrastructure 3. Career growth path within 12–24 months **Sodexo is currently hiring a Offensive Cyber Security Engineer to join their amazing team****About the company:** Sodexo is a global leader in quality of life services, founded in France in 1966\. The company operates in over 50 countries, offering a wide range of services that include:On\-site Services: Catering, cleaning, maintenance, and facilities management.Benefits \& Rewards Services: Meal cards, gift cards, mobility solutions, and employee benefits.Personal \& Home Services: Concierge, home care, and childcare (less prominent).Sodexo focuses on improving quality of life for employees, students, patients, and others across various sectors, including corporate offices, schools, healthcare, defense, and remote sites. Sodexo in Portugal Sodexo has been present in Portugal since 1996\. Core Services, Employee Benefits \& Rewards: Well known for offering meal cards like Sodexo Refeição Pass, as well as gift cards and fuel cards.On\-site Services: Catering and facilities management in corporate, healthcare, and educational environments.Key Clients: Includes multinational corporations, public institutions, and local businesses.Mission in Portugal: Helping improve employee well\-being and organizational performance through tailored workplace and benefits solutions. About the role/What you'll do: As an Offensive Cyber Security Engineer, you will join Sodexo’s Global Information Cyber Security team, operating within the internal Security Architecture \& Engineering function. In this highly technical role, you will act as an ethical attacker, continuously identifying, validating, and helping remediate critical risks across Sodexo’s global cloud, application, and corporate environments. Your work blends advanced threat modeling with full‑scope red team operations and real‑world adversary emulation. **Your responsibilities include:**1\. Threat Modeling \& Security Analysis* Lead structured threat modeling using STRIDE, attack trees, MITRE ATT\&CK mapping. * Analyze new features, applications, and architectural changes in collaboration with global/local engineering teams. 2\. Red Team \& Breach Simulation Operations* Plan and execute sophisticated red team engagements and breach \& attack simulation (BAS) campaigns. * Conduct persistent, stealthy operations resembling advanced threat actors. * Execute assume‑breach scenarios across endpoints, cloud workloads, identities, and external attack surfaces. * Perform physical, social engineering, and hybrid attacks when required. **3\. Cloud Migration \& Workload Security*** Assist regions/BU’s in migrating and deploying workloads to Sodexo public cloud environments. * Analyze business and IT requests impacting cloud security and propose mitigation measures. **3\. Adversary Emulation \& Tooling Development*** Run automated and manual adversary emulation using tools like: * Covenant, Sliver, Cobalt Strike, Caldera, Infection Monkey, Stratus Red Team, Atomic Red Team. * Develop custom tools, payloads, and C2 infrastructure to bypass EDR/XDR and cloud\-native detections. **5\. Remediation Guidance \& Detection Engineering Support*** Deliver actionable remediation guidance and collaborate directly with blue teams. * Contribute to detection engineering by producing threat intelligence, detection logic, and attack playbooks. * Track the evolving attack surface and organizational crown jewel exposure. \[Offensive...tion V 0\.3 \| PDF] 6\. Leadership \& Mentorship* Mentor junior offensive security team members. * Raise offensive security awareness across Sodexo. Education \& Experience* BS in Computer Science, Information Security, or equivalent (MS preferred). * 5\+ years of hands‑on offensive security experience (red teaming, penetration testing). * Proven experience leading full‑scope red team operations, **especially in Azure environments** . * Fluent English and French(Plus) Technical Skills* Deep understanding of threat modeling methodologies (STRIDE, attack trees, MITRE ATT\&CK). * Strong scripting/development skills: Python, Go, PowerShell, Bash. * Experience creating/redesigning offensive security tooling. * Proficiency with C2 frameworks: Cobalt Strike, Sliver, Covenant. * Deep knowledge of Kubernetes, IAM, CI/CD security, and modern application architectures. * Strong OSINT, social engineering, and physical security attack capabilities. Soft Skills * Strong interpersonal and communication skills. * Ability to influence and collaborate with stakeholders at all organizational levels. * Strong analytical thinking and problem\-solving mindset. **What They Offer*** Career growth path within 12–24 months. * Performance bonus (up to 2 monthly salaries). * Health insurance for employee \+ family, and life insurance. * 24 days of annual leave. * Access to training platform with 7,000\+ courses.