Salary packaging – to suit your personal and financial circumstances
Flexible work arrangements – work in a way that suits you best
Rewards platform – your hard work won’t go unnoticed at Deloitte
We currently have multiple vacancies across Senior Manager and Manager levels in our Offensive Security team!
About the role
As part of the Deloitte Offensive Security team, you'll be responsible for defining, carrying out, and overseeing penetration testing projects to uncover security vulnerabilities in client IT systems. You will report on identified vulnerabilities and provide remediation recommendations. You will also serve as a subject matter expert, guiding and mentoring team members.
You will respond to client requests, using innovative approaches to meet their needs. Your involvement will span all aspects of security and vulnerability management engagements, including but not limited to:
1. Network and host layer penetration tests and vulnerability assessments
2. Firewall, networking, and security device reviews
3. API assessments
4. Mobile application assessments
5. Red Teaming, targeting technical, physical, and human security controls
6. Source code reviews using manual and automated tools
7. Malware reverse engineering
8. Wireless assessments
9. Presenting findings in closing meetings
10. Reporting and proposal writing
About the team
Positioned first globally in Security Consulting Services for six consecutive years. Deloitte's work in cybersecurity is dynamic and impactful, helping clients predict risks and safeguard their systems while unlocking new opportunities.
About you
We seek experienced Penetration Testers at Senior Analyst, Manager, and Senior Manager levels with:
* Current OSCP or CREST Certified Tester (CCT) in Infrastructure or Web Applications, or similar certification, or the ability to obtain it
* For senior roles, experience in Red Team engagements aligned with frameworks like CORIE, CBEST, or TIBER
* Experience with applications across multiple industries and technical/business assessment skills
* Proficiency in web application penetration testing and reporting
* Innovative, analytical approach, especially with novel devices/environments
* Ability to meet deadlines and prioritize tasks
* Development skills for scripting and automation
* Strong communication skills for technical and non-technical audiences
* Excellent report writing and risk discussion abilities
* Experience with web applications, APIs, microservices, mainframe systems, and endpoint protection
* Knowledge of security appliances and web concepts
* Familiarity with security testing methodologies and tools
* Programming experience in Visual Basic, C/C++, or Java
* Networking knowledge and cloud environment familiarity (Azure, AWS, GCP)
At Deloitte, we focus on meaningful, innovative work, fostering growth and inclusion, and offering flexible working arrangements to support your well-being and career development.
Next Steps
If this role excites you, apply now. You will be assessed against Deloitte Talent Standards, designed for your growth and a consistent employee experience. The preferred candidate will undergo background screening.
#J-18808-Ljbffr