Senior Penetration Tester

KPMG is one of the most trusted and respected global professional services firms. Through depth of expertise, clarity of insight and strength of purpose we help our clients solve complex challenges, steer change, strengthen, transition and grow.Cyber Security Consulting is a multi-disciplinary team that operates in an exciting and constantly changing environment. Our specialist team offer a broad range of services to support our clients by helping manage and respond to constantly evolving cyber threats:— Strategy and governance: cyber maturity assessments, third party risk services, Virtual CISO on Demand, compliance assessments (e.g. PCI DSS, ISO 27001, SOC 2), security strategy development, security framework development, privacy assessments, security metrics and reporting.— Transformation: security program delivery, security architecture design and review, identity and access management, Governance, Risk and Compliance (GRC), security operations services.— Cyber defence: penetration testing, vulnerability assessments, pre/post implementation controls reviews, cloud security services, disaster recovery and business continuity, insider threat services, security analytics, IoT security services.— Cyber response: threat hunting, cyber response maturity assessments, incident response, threat intelligence.

The opportunity:

• As part of the Cyber Security Services team, the Senior Penetration Tester will contribute to the business through delivering a variety of penetration testing engagements, red team testing, threat hunting and vulnerability assessments, along with a range of other similar technical security testing engagements. 

Day to day you will:

• Plan, manage and deliver a range of technical security testing engagements to a variety of public and private sector clients.
• Provide advice to clients that is technically sound and aligned with clients' needs.
• Demonstrate excellent project management skills, promote teamwork and individual accountability.
• Coach, develop and support other team members.
• Produce clear and well-presented reports and other deliverables.

What you'll bring to our team:

• 5+ years’ relevant IT security advisory experience.
• A broad range of technical security testing skills, covering such areas as web app penetration testing, infrastructure penetration testing, code review, red/blue team testing and vulnerability assessments.
• A relevant tertiary qualification.
• Relevant professional qualifications e.g. OSCP, OSCE, CREST Registered Penetration Tester preferred.
• Demonstrated ability in the delivery of penetration tests and other technical security testing.

Life at KPMG We offer rewarding careers to talented individuals and a range of benefits to help provide holistic support for your work life, whatever your circumstance. As a KPMG employee, we will offer you:—   Hybrid Working – a mix of working in the office and at home to enhance your work/life balance—   Flexible leave options, including the ability to purchase additional annual leave—   Access to ‘Whanau@KPMG’ – 18 weeks’ paid flexible leave for all new parents - primary and secondary carers—   Unlimited access to LinkedIn Learning, with bespoke learning pathways for all employees.—   Discounts on a range of lifestyle goods and services.—   Opportunity to join any of our Inclusion, Diversity and Equity networks as a participant and ally.—   Opportunity to join our Social club and enjoy activities such as cooking classes, painting, quiz nights and more. We believe that diversity of background and experience strengthens relationships and delivers meaningful benefits to our people, clients and communities. Our goal is to be recognised as an employer of choice for all, irrespective of gender, ethnicity, generation, flexible work status, family circumstances, sexual orientation or disability. Further info can be found on our websiteWe are a 2022 Circle Back Initiative Employer – we commit to respond to every applicant.