Job Description

Job Requisition ID: 41403

• Exciting role as part of the Deloitte Global Technology team
• Work within a forward thinking, dynamic and innovative business environment
• Mentoring, coaching and leadership programs to help you make an impact that matters

What will your typical day look like?

This role is responsible for providing penetration testing services through a combination of technology and manual ingenuity as part of the Global cyber services organisation for member firms.

Responsibilities of this role include:

• Assisting in technical scoping of security testing activities
• Executing security testing
• Web Application Penetration Testing
• Web Services / Application Programming Interface (API) Penetration Testing
• Network Penetration Testing
• Mobile Application Penetration Testing
• Thick Client Penetration Testing
• Conducting focused research when not deployed on an active project
• Provide consultative guidance to customers on findings identified in a clear and actionable fashion both in writing and verbally.
• Enhancing and updating testing methodologies, processes and standards documentation
• Maintaining proficiency of knowledge through ongoing training paths
• Proficient at analyzing and understanding complex architecture designs.
• Ability to effectively communicate what services and capabilities our group can facilitate to our clients and responsibilities here.

About the team

Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.

Enough about us, let’s talk about you.

Required:

• Experience using common testing tools like Burp, OWASP ZAP, Metasploit, Postman, Swagger, NMAP, Qualys, SQLMap
• Experienced with Kali Linux or other dedicated Penetration Testing OS PlatformAdvance mobile penetration testing, Application Penetration Testing and architectural security principles
• Familiarity with software security weakness and vulnerabilities
• Working knowledge of one scripting language and familiarity with at least one software programming language and framework
• Demonstrated experience working with diverse stakeholders, preferably on a global multi-national basis
• Ability to manage concurrent initiatives and use effective judgment in prioritization and time management
• Strong written and verbal communication skills

Preferred:

• Certified Ethical Hacker (CEH) Certification
• Offensive Certified Security Professional (OSCP) Certification
• Any GIAC Certification (GSEC, GWAB, GPEN, GMOB, GCPN)
• OWASP Application Security Top 10
• OWASP API Security Top 10
• OWASP Thick Client Top 10
• OWASP LLM Top 10
• MITRE ATT&CK Framework
• Cloud Service testing
• Reverse Engineering
• Static Application Software Testing (SAST)
• Dynamic Application Testing (DAST)
• Experience of Agentic development and its application to support penetration testing

Why Deloitte?  

At Deloitte, we focus our energy on interesting and impactful work. We’re always learning, innovating and setting the standard; making a positive difference to our clients and our society. We putcoaching at the heart of what we do, helping our people grow their careers in any direction – whether it be up, moving into something new, or even moving across the world.

We embrace diversity, equity and inclusion. We have a diverse collection of people from different backgrounds, with different experiences, gender identities, abilities and thinking styles. What binds us together is a shared commitment to value everyone’s perspective and to cultivate inclusion; so that our work environment is a safe space we can all belong. 

We value in-person connection with our clients and our colleagues. We offer several ways for you to work flexibly so that you can serve your clients, stay connected with your team, and manage your personal priorities.

We help you live and work well. To support your personal and professional life, we offer a range of  perks and benefits, including retail discounts, wellbeing leave, paid volunteering days, twelve flexible working options, market-leading parental leave and return to work support package. 

Next Steps

Sound like the sort of role for you? Apply now, we’d love to hear from you!

#LI-Hybrid