Senior Purple Team Analyst

ABOUT IQ-EQ 

We’re a leading investor services group offering end-to-end services in administration, accounting, reporting, and regulatory and compliance needs of the investment sector worldwide.  We employ a global workforce of 5,800+ people across 25 jurisdictions and have assets under administration (AUA) exceeding US$750 billion. We work with 13 of the world’s top 15 private equity firms. 

Our services are underpinned by a group-wide commitment to ESG and best-in-class technology, including a global data platform and innovative proprietary tools supported by in-house experts. 

 Above all, what makes us different is our people. Operating as trusted partners to our clients, we deliver intelligent solutions through a combination of technical expertise and strong relationships based on deep client understanding. 

We’re driven by our group purpose, to power people and possibilities. 

The Purple Team Analyst is a key member of the Group Information Security function. This role operates directly under the Group Information Security Senior Manager and works at the intersection of offensive and defensive security. 

The analyst is responsible for coordinating and executing hands-on red teaming, penetration testing, threat-driven security engineering, and validating defensive controls against real-world adversary techniques. The role requires strong expertise in Windows forensic analysis, including the ability to conduct full forensic acquisitions and investigations. The Purple Team Analyst must be able to build complete forensic timelines, interpret artefacts, and leverage offensive security knowledge to identify attacker behaviours, uncover persistence mechanisms, and reconstruct intrusion paths. 

This is a high-impact, hands-on role suited to a practitioner who thrives operating at the intersection of attack and defence, someone who thinks like an adversary, investigates like a forensic examiner, and communicates findings with the clarity of a trusted advisor.

Key Responsibilities

• You’ll execute and support offensive security activities, including red team operations, adversary emulation, and targeted penetration testing using frameworks such as MITRE ATT&CK.
• You’ll develop and maintain offensive tooling and payloads, identifying, exploiting, and documenting security vulnerabilities across infrastructure, applications, and cloud environments.
• You’ll coordinate and lead forensic investigations (primarily eDiscovery), conducting in-depth analysis of Windows artefacts and building detailed forensic timelines to reconstruct attacker activity.
• You’ll apply offensive security expertise to interpret forensic evidence, identifying lateral movement, privilege escalation, and persistence techniques, and producing clear, defensible reports for legal, regulatory, and audit purposes.
• You’ll collaborate closely with Red, Blue, and IT teams to enhance incident response readiness, contribute to tabletop exercises and threat scenarios, and promote security-first behaviours, with approximately 75% focus on offensive security and 25% on forensic and incident support.

Required Experience & Skills

• You bring 4–8+ years of hands-on experience in Red Team, Purple Team, penetration testing, or security engineering, with deep understanding of adversary tactics, attack chains, lateral movement, and privilege escalation.
• You have strong technical expertise across SIEM/XDR platforms (Sentinel preferred), MITRE ATT&CK–based control validation, offensive tooling, scripting (PowerShell, Python, Bash), digital forensics, and cloud security (Azure strongly preferred).
• You communicate clearly and effectively, producing high-quality documentation, applying strong analytical and problem-solving skills, collaborating across Red, Blue, and IT teams, and maintaining a security-first mindset with high integrity.
• You ideally hold recognized certifications such as OSCP/OSCE/OSEP, GIAC (e.g., GPEN, GCFA, GCIH), Microsoft Security, or CREST (CRT/CCT), and can clearly explain penetration testing work you personally executed.
• You will help strengthen the organisation’s global security posture by leading impactful offensive and purple team operations in a collaborative, well-tooled environment with strong senior leadership visibility, continuous learning, and certification sponsorship (pure SOC or theory-only profiles are not a fit).

At IQ-EQ we want you to reach your full potential. We offer an inclusive and diverse environment to support your career aspirations. With a strong emphasis on continuous learning and a holistic approach to your professional and personal development. We also offer opportunities across our service lines and our international network of offices.