Deloitte

Senior Offensive Security Specialist

Deloitte  •  Amsterdam, NL (Onsite)  •  4 hours ago
Apply
AI can make mistakes so check important info. Chat history is never stored.

Job Description

Help improving cyber resilience of our clients by engineering, hacking and emulating real-world threats against challenging IT environments. At Deloitte

  • finding creative ways to exploit the client's applications and infrastructure;
  • applying hacker's mindset to bypass protections and identify cracks within target systems;
  • providing clients with technical recommendations that match their situation and environment;
  • turning security weaknesses into tailored and concrete recommendations which you will present to clients and provide hands-on support to help clients with improving their security posture
  • performing offensive research on new technologies and developing methodologies to evaluate the security of the setup and configuration;
  • sharing your research within the Deloitte Global Offensive Security community and with the broader security community, for example writing blogs, speaking at conferences, or publishing code.

Qualifications

You have a passion for offensive security, finding creative ways to break into highly secured environments identifying ways around defenses. Moreover, in case you run into new types of environments or technologies you are able to develop new tools and techniques to reach your objective. For the role of Senior Offensive Security specialist, you also have:

  • a Computer Science degree or similar;
  • a passion for offensive security and a drive to stay up-to-date with current exploits, attack techniques and new vulnerabilities;
  • experience with the protocols at the various layers of the OSI model, think of: ARP, PPP, IPsec, IP, TCP, UDP, ICMP, TLS, SOCKS, ASCII, UTF-8, Base64, CRC, HTTP, QUIC, SMB, etc.;
  • experience with web application security testing, using Burp exploiting SQL injection, file inclusion and HTTP request smuggling vulnerabilities, including experience with scripting to automate repetitive tasks;
  • experience with complex infrastructures, both from an engineering and offensive perspective, evaluating possible entry points at the different layers of the protocol stack and exploiting those to get a foothold in the client's network and laterally move;
  • experience evaluating the security of Windows and Linux operating systems and [Azure] Active Directory environments identifying possible escalation paths and security misconfigurations;
  • relevant security certifications are preferred, some examples: OSCP, OSEP, OSWE, eCPTX, eWPTX, GXPN, etc.;
  • excellent communication skills and fluency in written and spoken English.

Additional Information

As a Senior Offensive Security Specialist, you will work in a highly skilled team to perform challenging security tests for our international clients. Using your offensive and engineering skills you will exploit our clients’ networks, perform tactical network exploitation (TNE) and provide hands-on support to strengthen the client’s security posture. To sharpen your skills, you will join the periodic Deloitte Global Offensive Security community knowledge exchange sessions, follow trainings and perform research on the latest techniques and tools.

Deloitte

About Deloitte

Deloitte drives progress. Our firms around the world help clients become leaders wherever they choose to compete. Deloitte invests in outstanding people of diverse talents and backgrounds and empowers them to achieve more than they could elsewhere. Our work combines advice with action and integrity. We believe that when our clients and society are stronger, so are we.

Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited (“DTTL”), its global network of member firms, and their related entities. DTTL (also referred to as “Deloitte Global”) and each of its member firms are legally separate and independent entities. DTTL does not provide services to clients. Please see www.deloitte.com/about to learn more.

The content on this page contains general information only, and none of Deloitte Touche Tohmatsu Limited, its member firms, or their related entities (collectively the “Deloitte Network”) is, by means of this publication, rendering professional advice or services. Before making any decision or taking any action that may affect your finances or your business, you should consult a qualified professional adviser. No entity in the Deloitte Network shall be responsible for any loss whatsoever sustained by any person who relies on content from this page.

Industry
Consulting & Advisory
Company Size
10,000+ employees
Headquarters
Worldwide, OO
Year Founded
1845
Social Media