Cyber Penetration Tester Senior Consultant

Deloitte

Deloitte provides audit, tax, consulting, risk advisory and financial advisory services to public and private clients spanning multiple industries. With a globally connected network of member firms in more than 150 countries and territories, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. Deloitte’s more than 286,000 professionals are committed to becoming the standard of excellence. 

Deloitte has 4 values to make an impact. These are; outstanding value to our clients, commitment to each other, strenght from cultural diversity and integrity. 

We are looking for new ethical hackers for our cyber teams with immediate effect. Are you interested in security and technology and do you want to understand and solve technical security challenges? Does the above job description excite you? Then we would very much like to meet you! Apart from the job description, we expect you to meet the following qualifications: 

• Bachelor’s Degree in Computer Engineering or a related technical discipline, or the equivalent combination of education, 
• Passionate about Cyber security (Open source, Capture the flag, Hacking Conferences, etc),
• Minimum 3 years of experience in Application/Infrastructure Penetration testing,
• Holding certifications like OSCP, OSWE, GPEN, GWAPT, CEH etc
  
• Analytical and problem-solving mindset,
• Knowledge of programming languages (Python, .Net, Go, Java is a plus),
• Excellent communication skills (oral, written and listening),
• Strong team player,
• You find it a positive challenge to work in a high performance culture,
• The ability to work under pressure of time and the ambition to further develop yourself,
• Strong ethics and understanding of ethics in cybersecurity, 
• You are also willing to travel,
• Preferred Technology Experience With The Following: Kali Linux, Metasploit, Mimikatz, Powershell Empire, SET, Responder, Impacket, Nessus, Qualys, Nexpose, VAS, OWASP ZAP, W3af, Vega, Wapiti, Burp proxy, Grendal, Fortify, Checkmarx, bettercap, Pineapple, Rubber ducky, Kismet, Aircrack, netstumbler, hostapd, freeradius, Veil Evasion, Shelter Evasion, Scuba, SQLninja, Havij, SQLmap, nmap, Nipper, Wireshark, tcpdump, hashcat, John the Ripper, Medusa, Cain, rainbow tables.  

Function:

As a Senior Consultant you are no stranger to out of the box thinking. You are interested in testing web and mobile applications, IT infrastructure and hardware & SCADA systems in order to expose vulnerabilities. You will work in a team of ethical hackers and will both implement security solutions and advise our clients on improvements within the area of IT security.

Activities:

As an ethical hacker you work within the growing team of ethical hackers with a passion for testing and identifying vulnerabilities. You work for our clients to carry out the following activities: 

• ·Source Code Analysis · 
•  Incident Response & Digital Forensics · 
•  Hardening 
•  Infrastructure and Web application security testing; · 
•  Mobile application security testing; 

What is most important to us is that you are a team player with an affinity for technology and most of all that you are willing to learn. As an ethical hacker we will offer you a job where you can not only use your technical knowledge and experience, but where above all you will expand it. You will work our team which shares affinity and experience for security technology. We value that you keep developing yourself and that your activities within the team continue to challenge and enjoy you. That our cyber team keeps growing every year is a testament to the good atmosphere and satisfaction within our team. In consultation with your manager you will determine your own training program. Examples of frequently chosen training and certifications programmes are GPEN, OSCP, OSCE, LPT, eCPPT, but we also offer a wide variety of internal trainings.