Jobs
Deloitte logoDeloitte

Senior - Penetration Tester

To join Deloitte is to participate in the transformation of leading national and international organisations. At Deloitte we are committed to making an impact on society, our clients and you.

Are you in?

Deloitte Global is the engine of the Deloitte network. Our professionals reach across disciplines and borders to develop and lead global initiatives. We deliver strategic programs and services that unite our organization.

What will your day-to-day be like?

  • Evolve and enhance approach for managing customer requests and queries for technical testing.
  • Support the integration of testing analysis across disciplines to improve testing exercises and improve end product to our customers.
  • Assist in technical scoping of security testing activities.
  • Curate and assessment of vulnerability data (across multiple platforms/tools).
  • Typical security testing activities:
    • SAST/DAST.
    • Software/Web Application/Web Services penetration testing.
    • Network Penetration Testing.
    • Mobile Application Penetration Testing.
    • Thick Client Penetration Testing.
  • Architecture Security Analysis and Threat Modeling as required.
  • Provide technical guidance in supporting member firms in conducting necessary remedial actions and responding to client vulnerability questions or disclosures.
  • Help develop tooling deployment and relevant scanning configurations to enhance practical testing processes.
  • Operate in the wider organization to drive risk reduction goals and in the continuous improvement vulnerability related service.

What do we expect from you?

  • Required:
    • Minimum of 1 years’ experience working in a professional environment preferably as part of an operational security function (Penetration Testing).
    • Bachelor’s degree in a business or cyber security domain or relevant work experience in an appropriate field.
    • Experience in any of the following platforms would be highly beneficial; Burp or OWASP ZAP, Kali Linux, Nmap, Metasploit, Postman, Gobuster, Dirbuster, SQLMap.
    • Experience with OWASP Top Ten.
    • Familiarity with software security weakness and vulnerabilities.
    • Demonstrated experience working with diverse stakeholders, preferably on a global multi-national basis

  • Preferred:

    • Ability to communicate strategic information security topics, policies, and standards as well as risk-related concepts to technical and nontechnical audiences.
    • Threat modeling experience.
    • Scripting experience (Power shell, Python).
    • Sound knowledge of common infrastructure and web application vulnerabilities and common vulnerability categorizations such as OWASP, CVSS.
    • Secure DevOps experience.
    • Knowledge of ticketing and tracking tools such as Service Now – Security Operations.

What do we offer?

  • You will have a hybrid-flexible working model.
  • You will be eligible for a flexible remuneration system, medical service, health insurance, life insurance and accident insurance.
  • You will have a training plan throughout your career.
  • You will develop in a feedback culture where you will be encouraged to learn continuously.
  • If you are interested, you will participate in national and international social action and volunteering programmes.
  • You will enjoy a cultural and sporting offer.

Now the choice is yours! If you think this position is right for you, click 'Apply now' and complete your profile so we can assess your application. If you fit the profile, our recruitment team will contact you to get to know you.

From there we will guide you through our recruitment process and your Deloitte story will begin.

What impact will you make?

Cyber Security Jobs by Category

Full Time jobs

Cyber Security Salaries

Full Time Salary