Τίτλος:  Head of Offensive Security (M6)

The Company

Motor Oil Hellas (MOH) is committed to be a leader in the petroleum refining, energy and utilities business thus providing the region that it serves with a reliable and affordable supply of energy. Through its evolution MOH is now considered as one of the major contributors to the domestic economy and a key market player in the region. The extraordinary success that MOH has achieved can be largely attributed to its Personnel. At MOH we strive to develop our people to their highest potential, through continuous education and assignment of challenging projects.

Starting with the role:

Currently we are searching to hire a Head of Offensive Security to oversee offensive security testing of systems, applications, and infrastructure to stay ahead of threats.

During your day you will:

• Lead the design and execution of real-world attack simulations, including ethical hacking, red teaming, and penetration testing, to uncover weaknesses security defenses
• Improve organizational security posture through actionable recommendations that enhance detection, response, and preventive measures
• Monitor and validate security controls, testing the effectiveness of existing measures and incident response processes
• Manage threat intelligence, collaborating with blue teams to anticipate and counter evolving attack techniques
• Drive security innovation by developing new offensive tools, techniques, and methodologies to stay ahead of adversaries

What you need to stand out:

• BSc in computing, or related discipline
• Master’s degree will be considered as an asset
• Minimum 7 years previous experience in a senior offensive security role
• Proven expertise in conducting penetration tests, red/purple teaming
• Experience in designing and lead complex attack simulations and adversary emulation exercises
• Deep understanding and knowledge of offensive security tools, techniques and standards
• Familiar with vulnerability management platforms
• Ability to align offensive operations with real-world threat actor tactics, like MITRE ATT&CK framework
• Certified with CISSP,  OSCP, OSWE,  OSCE,  OSEE, CRTO,  GXPN