Senior Consultant‑ Financial Services – Offensive Security – Advanced Security Centre 2 days ago Be among the first 25 applicants
Get AI-powered advice on this job and more exclusive features.
At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help build a better working world.
What’s in it for you?
Our EY Advanced Security Centre (ASC) is a well-established, dedicated and vibrant offensive security team. Our vision is to bring the strongest, most diverse and highly skilled team to the market. We strive to be the market leaders in security testing services, ready to tackle any challenge that comes our way. We are looking for people looking to kick‑start their career in offensive security or people looking to tackle some of the biggest challenges our clients are facing in the market. There is flexibility to be based in either Sydney or Melbourne.
The ASC provides the following services to our clients:
Web, Web services, mobile and thick client penetration testing
Internal/External network penetration testing
Red Team/Purple Team assessments
Social Engineering assessments
Application Security Consulting and Secure Code Review
Cloud security assessments
Wireless assessments
Security configuration reviews
What We’re Looking For
For Senior Consultants, a minimum of 3+ years cybersecurity experience, with a majority being offensive security related (e.g. penetration testing or application security experience), beyond the use of automated tools. Show us that you know what’s happening behind the tooling.
For Consultants with less than 3 years’ experience, show what you already know, how you’ve been learning – show us that you will continue to develop on the job!
Solid project management and interpersonal skills.
A commitment to build and grow your technical cybersecurity career to the next level.
Experience in web and mobile application security testing and specialization in one other domain would be favourable (thick application, red team/purple team or internal/external network).
Demonstrable proficiency of at least 2 following security assessment methodologies:
Web, Web services, mobile and thick client penetration testing
Internal/External network penetration testing
Application Security consulting and secure code review
Wireless assessments
Social engineering/red team assessments
Demonstrable technical understanding or certifications of at least 2 of following domains:
Common web technologies and frameworks
Application architecture
Cloud experience
Networking and Network protocols
DevOps methodology and pipelines
Relevant (or be willing and able to pursue) professional certifications such as OSCP, SANS, CREST, PJPT, PNPT, PWPT, PJWT, CPTS, etc.
What We Can Offer You
Explore how a career at EY is yours to build at www.ey.com/au/careerdevelopment
Discover how, when and where you can work at www.ey.com/au/flexibility
Learn about our commitment to DE&I; at www.ey.com/au/diversity-inclusiveness
Discover the various ways our benefits can cater to your needs, across wellness, financial wellbeing, and family‑friendly policies which include 26 weeks gender neutral paid parental leave at www.ey.com/au/benefits
We offer a competitive salary which is open to negotiation pending on skills and experience.
We encourage any support and adjustments you need to be your best and participate equitably in our recruitment process. The salary range for this role is between AUD 80,000 to AUD 120,000 inclusive of superannuation.
#J-18808-Ljbffr