Senior - Penetration Tester
Madrid, España
Deloitte
Insights zu unseren Diensleistungen im Bereich Audit, Consulting, Financial Advisory, Risk Adivisory und Tax sowie unseren zahlreichen Industrien.
¿Can you imagine participating in the transformation of leading national and international organizations?
At Deloitte, we are committed to making an impact on society, our clients, and you.
Deloitte Global is the engine of the Deloitte network. Our professionals reach across disciplines and borders to develop and lead global initiatives. We deliver strategic programs and services that unite our organization.
As part of the Global Cybersecurity team, responsibilities will be to work with customers to deliver technical assessments against a broad range of services. You will use your strong communication skills to provide consultative guidance to customers on findings identified, how to effectively engage services and the available capabilities.
What is the challenge?
- Evolve and enhance approach for managing customer requests and queries for technical testing.
- Support the integration of testing analysis across disciplines to improve testing exercises and improve end product to our customers.
- Curate and assessment of vulnerability data (across multiple platforms/tools).
- Perform security testing activities:
- Software/Web Application/Web Services penetration testing.
- Network Penetration Testing.
- Mobile Application Penetration Testing.
- Thick Client Penetration Testing.
- Architecture Security Analysis and Threat Modeling as required.
- Provide technical guidance in supporting member firms in conducting necessary remedial actions and responding to client vulnerability questions or disclosures.
- Help develop tooling deployment and relevant scanning configurations to enhance practical testing processes.
- Operate in the wider organization to drive risk reduction goals and in the continuous improvement vulnerability related service.
How do we imagine you?
Required:
- Bachelor’s degree or equivalent diploma in a business or cyber security domain; or Candidates with relevant work experience in an appropriate field.
- Minimum of 4 years of experience working in a professional environment preferably as part of an operational security function (Penetration Testing).
- Experience in any of the following platforms would be highly beneficial: Burp or OWASP ZAP, Kali Linux, Nmap, Metasploit, Postman, Gobuster, Dirbuster, SQLMap.
- Experience with OWASP Top Ten.
- Familiarity with software security weakness and vulnerabilities.
- Demonstrated experience working with diverse stakeholders, preferably on a global multi-national basis.
- You will work mainly in English so a high level of this language is expected.
Preferred:
- Ability to communicate strategic information security topics, policies, and standards as well as risk-related concepts to technical and nontechnical audiences.
- Threat modeling experience.
- Scripting experience (Power shell, Python).
- Sound knowledge of common infrastructure and web application vulnerabilities and common vulnerability categorizations such as OWASP, CVSS.
- Secure DevOps experience.
- Knowledge of ticketing/tracking tools such as Service Now – Security Operations.
How is it to work at Deloitte?
�� High-impact projects where you will have a long journey and learning experience
☯️ A hybrid-flexible daily routine: you will have flexible hours and a good balance between remote work and teamwork in our offices or our clients’ offices
⚽ Good atmosphere inside and outside the office: you will enjoy several team buildings per year, cultural and sports activities... and much more!
��♀️ Comprehensive well-being: take care of yourself with our physical, mental, and financial health program... and with a medical team in the offices!
�� Social impact: You can sign up for a large number of national and international volunteer opportunities and pro-bono projects where you can put your time and talent at the service of those who need it most
��️Culture of feedback and continuous learning: you will grow in an inclusive environment where equal opportunities and your personalized training plan will boost your development. Can you already see yourself at the Deloitte University in Paris?
�� Exclusive benefits for being part of Deloitte: you will be able to enjoy a wide catalog of benefits and a complete flexible compensation plan
If you like what you read, here are your next steps:
- Apply for the position by clicking on 'Submit application now' and complete your profile
- If you are a good fit for the role, our talent team will contact you to get to know you better
Start the process! We will guide you through the different stages until your incorporation.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CVSS DevOps Kali Linux Metasploit Nmap OWASP Pentesting PostMan Python Scripting Security analysis Vulnerabilities
Perks/benefits: Career development Flex hours Health care Startup environment
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.