SSS Grameen Services

This is a remote position.

Client: SS

Ref/Code: XXX

The Client requires the consultant/service provider to conduct an exercise and simulate cyber-attacks to help it better understand and improve its cyber security posture by understanding the operational impact of potential threats.

Advanced Attack Simulation Service (Red Teaming) includes the following domains and their sub-domains

The objectives of the simulation are to obtain the following:

— obtain a username and password or gain access to a system Internal or the ability to modify the portal or obtaining a system administrator account (AD) or accessing the user deployment server or accessing the powers of the system.. (AD ) or obtain an administrator account

— The supplier must follow a clear framework and methodology eg Saudi Central Bank methodology for advanced attack simulation.

— In the event of access to one of the endpoints, the supplier must inform the authority team of this.

— The supplier must comply with informing the authority team in the event of damage to technical resources when simulating advanced attacks.

— The supplier must simulate advanced attacks to verify that the loopholes are closed discovered after confirmation by the authority team within the agreed working days

— The supplier must start simulating advanced attacks within 5 working days from the date of receiving the request from the authority

— The supplier must commit to submitting the results of simulation of advanced attacks within a minimum of 10 working days from the date of the test.

— The supplier must submit a daily summary of the simulation work.

— The supplier must submit a detailed report on simulating advanced attacks, including the steps taken, screenshots, and recommendations that raise the level of cyber security.


The final report must also include, but not be limited to:

(Executive Summary) / (Scope) / • (Risk Rating) / (Statistics) / • (Key Weaknesses Identified) / • Brief results / • (methodology) / • (Findings and Remediation) / • Results / • Observation with trusted remediation


Note: The consultant/service provider must start simulating advanced attacks within 5 working days from the date of receiving the request from the authority

– onsite/remote


– critical infrastructure client

– OSCP or above

– Bug Hunters or top class Red Teaming Expertise

SSS Grameen Services

You must sign in to apply for this position.

Recruitment Activities

The activities will help you to apply remote jobs high efficiency, do onlne remote job interview and discuss remote job informations

Filter by tag: