Senior Offensive Security Consultant (m/f/d)

Line of Service

Advisory

Industry/Sector

Technology

Specialism

Cybersecurity & Privacy

Management Level

Senior Associate

Job Description & Summary

Pwc Luxembourg is hiring a Senior Offensive Security Consultant (m/f/d). What if it was you?  

 

Who we are: We are the largest professional services firm in Luxembourg, providing audit, tax and advisory services including management consulting, transaction, financing and regulatory advice to a wide variety of clients. To make it happen, we count on the expertise of over 3,700 people from more than 94 different countries, who strive every day to reach excellence and team up to solve important problems through innovative solutions. We value diverse and singular career paths, embrace everyone's unique self and encourage our People to fuel their potential in a work environment that is inclusive, stimulating, and motivating.  

 

Your mission: As a Senior Offensive Security Consultant, you will help our clients by attempting to hack them, identifying vulnerabilities before malicious threat actors can exploit them. You will work with a wide range of clients, including banks, European institutions, local bodies, and companies in the financial and operational sectors. Your role will involve tackling a variety of offensive security projects, from short-term engagements to long-term, complex assignments. You'll have the opportunity to make a significant impact on the security posture of our clients, working in dynamic and challenging environments.  

 

Be a part of our team where you will: 

• Participate in and lead penetration tests on web applications, Active Directory, internal networks, and more, providing actionable insights to strengthen security; 

• Contribute to Red and Purple Team operations, working on demanding projects such as TIBER and DORA TLPT to simulate advanced threat scenarios; 

• Drive social engineering initiatives, leading phishing, vishing, and physical penetration testing campaigns, identifying vulnerabilities in human and physical security; 

• Support technical cybersecurity tasks by assisting in building demo environments and carrying out projects to enhance our clients' defences; 

• Produce clear, concise, and technically accurate penetration test reports for both technical and executive audiences; 

• Contribute to the preparation of proposals, delivery of findings, and the debriefing process with technical teams and management; 

• Share your expertise to help improve the team’s skills, contribute to the development of our lab, and work on internal tools that enhance our service offering; 

• Get involved in pre-sales discussions, budgets sizing, project management, and other growth areas depending on your personal career aspirations, or, alternatively, deeply focus on enhancing your technical expertise to become an even greater hacker; 

• Work with a global network, collaborating with colleagues across offices worldwide and contributing to our global cybersecurity expertise; 

• Collaborate with colleagues in a team-oriented environment that emphasises high performance and a healthy work-life balance.  

 

Let’s talk about you. If you …  

• Hold a Master’s degree in Computer Science, Network Engineering, Cybersecurity, Offensive Security, or a related field; 

• Have proven experience in penetration testing and offensive security, with a track record of successfully identifying and exploiting vulnerabilities; 

• Are familiar with security frameworks (OWASP, OSSTMM, TIBER, DORA TLPT, etc.) and have a deep understanding of offensive security methodologies; 

• Possess excellent communication skills: You can articulate technical findings clearly and professionally, both in writing and verbally, in English. Additional languages are a plus; 

• Operate with the highest ethical standards: You understand the importance of confidentiality, integrity, and professionalism in everything you do; 

• Have a growth mindset: You are motivated to learn, teach, and evolve your technical skillset, and enjoy mentoring others; 

• Are able to communicate with a diverse range of audiences: From technical teams to senior management, you can tailor your communication to suit any audience; 

• Are capable of working both independently and collaboratively: Whether working autonomously or as part of a team, you excel at getting the job done.  

In addition, It’s a plus if you…  

• Hold industry-recognized certifications (OSCP, OSEP, OSEE, GPEN, GXPN, CRTO, CRTL, etc.); 

• Have demonstrated contributions to the cybersecurity community, such as through security research, public talks, open-source projects, or published CVEs; 

• Are familiar with the Luxembourg market and with the local regulatory and security landscape.  

…You are the candidate we are looking for!  

  

A final word about us:   

At PwC, we believe diversity is the representation of all the characteristics that make us both alike and unique. Our backgrounds, cultures, nationalities, lifestyles, identities, opinions and beliefs, approaches to solving problems, ways of working, and views of personal and professional success, all add value to the services we deliver to our clients. Our objective is to nurture an inclusive environment where a diversity mindset is ingrained, and inclusion is the norm. We constantly focus on respecting and valuing individual differences.  

  

Ready to grow your potential, reaching excellence together? Apply now! 

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture {+ 8 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date