Penetration Tester İş İlanı

Deloitte provides audit, tax, consulting, risk and financial advisory services to public and private clients spanning multiple industries. With a globally connected network of member firms in more than 150 countries and territories, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. Deloitte’s more than 345,000 professionals are committed to becoming the standard of excellence.

Deloitte has 5 values to make an impact. These are; Lead the way, serve with integrity, take care of each other, foster inclusion, collaborate for measurable impact.

What will your typical day look like?

As part of the team, you'll be responsible for shaping, executing penetration testing engagements to identify security weaknesses within client's IT environments, reporting on vulnerabilities and making recommendations for their remediation.

In this role you will be involved in penetration testing engagements:

Web/mobile application assessments

Network and host layer vulnerability assessments

API assessments

About the team

Positioned first globally in Security Consulting Services for the 6th year in a row? Yep, that’s Deloitte. The cyberspace is constantly evolving and so are the threats that it brings. That’s why our work is more meaningful (and exciting!) than ever. Always one step ahead, we predict risks and safeguard our clients through end-to-end solutions. More importantly, we help clients unlock new opportunities through safer and more secure systems and policies.

Enough about us, let’s talk about you.

We are currently looking for Penetration Testers with the below experience and qualification:

• Hold a current OSCP (Offensive Security Certified Professional) in either Infrastructure or Web Applications or similar certification or be in a position and level to pass the exam for the certification.
• The ability to develop scripts or code to automate testing and develop bespoke attacks
• 2-3 years of experience
• Experience of working with applications that perform a wide range of business functions - ideally across multiple industries
• Ability to understand and assess applications from both a technical and business function perspective
• Innovative and analytical in your approach to performing penetration testing, particularly of novel devices and environments
• Capable of working to strict deadlines and prioritising work appropriately
• Good communication skills with an ability to explain complex technical issues to non-technical business clients
• Excellent written skills with demonstrated ability to write reports. Including the ability to discuss findings in a risk perspective with clear remediation advice specific to the client’s environment.
• Solicits feedback to build understanding of own strengths and areas for development
• Understands objectives and desired outcomes for assigned areas of responsibility and sets personal goals accordingly
• Recognizes and explores opportunities for personal impact on clients and for colleagues and communities
  

Experience in one or more of the following:

• Web Applications
• API’s and Microservices
• Application vulnerability assessment
• Mobile platforms (iOS/Android/Windows/etc)
• Infrastructure & Network

Familiarity with Open Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP) and National Institute of Standards and Technology (NIST) Special Publications. Familiarity with penetration testing and vulnerability tools.

Why Deloitte?

At Deloitte, we create positively differentiated work experiences that enable our people to feel valued and achieve their full potential. We value difference and embrace people with diverse backgrounds and thinking styles. Knowing that people work best in a variety of ways, we are happy to discuss alternative arrangements if the working pattern you are looking for is not specifically indicated.