
Offensive Security Consultant
2 weeks ago
== Deloitte ==
Role Seniority - mid level
More about the Offensive Security Consultant role at Deloitte
Description:
Job Requisition ID: 36732
Salary packaging – to suit your personal and financial circumstances
Flexible work arrangements – work in a way that suits you best
Rewards platform – your hard work won't go unnoticed at Deloitte
We currently have multiple vacancies across from Senior Analyst to Senior Manager level in our Offensive Security team
About The Role
As part of the Deloitte Offensive Security team, you'll be responsible for defining, carrying out, and overseeing penetration testing projects to uncover security vulnerabilities in client's IT systems. You will be required to report on the identified vulnerabilities and provide recommendations for their remediation. Additionally, you will play a crucial role in the team, and other members will look to you as a subject matter expert for guidance and mentorship.
In this role you will respond to client requests, anticipating and meeting client problems and needs using innovative approaches when applicable. You will be involved in all aspects of security and vulnerability management engagements which include but are not limited to:
Network and host layer penetration tests and vulnerability assessments
Firewall, networking, and security device reviews
Web application assessments
API assessments
Mobile application assessments
Red Teaming - targeting technical, physical and human layers of an organisation's security controls.
Source code reviews using manual and automated tools.
Malware reverse engineering
Wireless Assessments
Closing meetings to present findings to the client.
Detailed reporting and proposal writing
About The Team
Positioned first globally in Security Consulting Services for the 6th year in a row. Yep, that's Deloitte. The cyberspace is constantly evolving and so are the threats that it brings. That's why our work is more meaningful (and exciting) than ever. Always one step ahead, we predict risks and safeguard our clients through end-to-end solutions. More importantly, we help clients unlock new opportunities through safer and more secure systems and policies.
About
Enough about us, let's talk about you.
We are currently looking for experienced Penetration Testers at Senior Analyst, Manager and Senior Manager levels with the following experience and qualifications:
Hold a current OSCP or CREST Certified Tester (CCT) in either Infrastructure or Web Applications or similar certification or be in a position and level to pass the exam for the certification
For more senior roles, experience in Red Team engagements. With a capability in line with the CORIE framework or similar (e.g. CBEST, TIBER) Experience in working with applications that perform a wide range of business functions - ideally across multiple industries
Ability to understand and assess applications from both a technical and business function perspective
Good experience in performing web application penetration testing and development of supporting business and technical-level reporting
Innovative and analytical in your approach to performing penetration testing, particularly of novel devices and environments
Capable of working to strict deadlines and prioritising work appropriately
The ability to develop scripts or code to automate testing and develop bespoke attacks
Good communication skills with an ability to explain complex technical issues to non-technical business clients
Excellent written skills with demonstrated ability to write reports and proposals. Including the ability to discuss findings from a risk perspective with clear remediation advice specific to the client's environment.
Experience in one or more of the following:
Reverse engineering
Web Applications
API's and Microservices
Exploit Development
Application vulnerability assessment
Mainframe systems
Mobile platforms (iOS/Android/Windows/etc)
Social Engineering
Endpoint protection
Practical exposure to security appliances such as firewalls, proxies, NIPS/HIPS and network security applications
Working knowledge of web concepts such as Ajax, XML, SOAP, and WS-Security
Familiarity with the Open Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP) and National Institute of Standards and Technology (NIST) Special Publications.
Familiarity with penetration testing and vulnerability tools such as Cobalt Strike, Kali Linux, dsniff, nessus, nmap, MetaSploit, CoreImpact, Qualys, tcpdump, wireshark, Nikto, Aircrack-ng, Hailstorm, Burp Suite, etc.
Strong programming experience with Visual Basic and C/C++ or Java languages
Networking: LAN, WAN, interworking technologies
Good understanding of IaaS environments like Azure, AWS and GCP
Why Deloitte?
At Deloitte, we focus our energy on interesting and impactful work. We're always learning, innovating and setting the standard; making a positive difference to our clients and our society. We put coaching at the heart of what we do, helping our people grow their careers in any direction – whether it be up, moving into something new, or even moving across the world.
We embrace diversity, equity and inclusion. We have a diverse collection of people from different backgrounds, with different experiences, gender identities, abilities and thinking styles. What binds us together is a shared commitment to value everyone's perspective and to cultivate inclusion; so that our work environment is a safe space we can all belong.
We prioritise flexibility and choice. At Deloitte, you get trust on Day 1. We know our people get their best work done when they're in control of where and how they work, designing their work week around their client, team and personal commitments.
We help you live and work well. To support your personal and professional life, we offer a range of perks and benefits , including retail discounts, wellbeing leave, paid volunteering days, twelve flexible working options, market-leading parental leave and return to work support package.
Next Steps Sound like the sort of role for you? Apply now.
By applying for this job, you'll be assessed against the Deloitte Talent Standards. We've designed these standards so that you can grow in your career, and we can provide our clients with a consistent and exceptional Deloitte employee experience globally. The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.
Before we jump into the responsibilities of the role. No matter what you come in knowing, you'll be learning new things all the time and the Deloitte team will be there to support your growth.Please consider applying even if you don't meet 100% of what's outlined
Key Responsibilities
- Conducting penetration tests
- Reporting findings
- Mentoring team members
- Penetration testing
- Vulnerability assessment
- Communication skills
- Scripting and automation
- Red Teaming
- Reverse engineering
A Final Note: This is a role with Deloitte not with Hatch.
-
Offensive Security Professional
1 week ago
Sydney, New South Wales, Australia beBeeSecurity Full time $80,000 - $120,000At our Advanced Security Centre (ASC), we strive to build the strongest and most diverse team of offensive security experts in the market.We provide comprehensive security testing services, including web, mobile, and network penetration testing, as well as social engineering assessments and application security consulting.We are looking for motivated...
-
Senior Offensive Security Consultant
1 week ago
Sydney, New South Wales, Australia Macquarie Group Full timeJoin to apply for the Senior Offensive Security Consultant role at Macquarie GroupJoin to apply for the Senior Offensive Security Consultant role at Macquarie GroupGet AI-powered advice on this job and more exclusive features.Join our diverse team as we embark on our roadmap to strengthen Macquarie Group's security capability. As a security professional,...
-
Senior Offensive Security Consultant
6 days ago
Sydney, New South Wales, Australia Macquarie Group Full timeJoin to apply for the Senior Offensive Security Consultant role at Macquarie GroupJoin to apply for the Senior Offensive Security Consultant role at Macquarie GroupGet AI-powered advice on this job and more exclusive features.Join our diverse team as we embark on our roadmap to strengthen Macquarie Group's security capability. As a security professional,...
-
Offensive Security Expert
2 weeks ago
Sydney, New South Wales, Australia beBeeCybersecurity Full time $80,000 - $120,000Our Advanced Security Centre is a well-established, dedicated and vibrant offensive security team. Our mission is to provide expert security services to our clients.We are looking for individuals who want to kick-start their career in offensive security or tackle challenging projects in the market.The centre offers the following services:Web penetration...
-
Offensive Security Specialist
1 week ago
Sydney, New South Wales, Australia beBeeCybersecurity Full time $80,000 - $120,000Senior Cybersecurity ProfessionalWe are seeking a highly skilled and motivated individual to join our team as an Offensive Security Consultant. Our team provides comprehensive security testing services to clients, and we're looking for someone with a passion for cybersecurity to help us tackle the biggest challenges in the market.About the Role:The...
-
Offensive Security Consultant
7 days ago
Sydney, New South Wales, Australia Deloitte Full timeThis is a Offensive Security Consultant role with Deloitte based in Sydney, NSW, AU == Deloitte ==Role Seniority - seniorMore about the Offensive Security Consultant role at DeloitteDescription:Job Requisition ID: 36732Salary packaging – to suit your personal and financial circumstancesFlexible work arrangements – work in a way that suits you...
-
Offensive Security Specialist
6 days ago
Sydney, New South Wales, Australia beBeeCybersecurity Full time $80,000 - $120,000Job OverviewWe're looking for skilled individuals to fill offensive security roles within our organization. Our team is dedicated to delivering exceptional security testing services and we strive to be market leaders in this field.Key ResponsibilitiesPenetration testing of web, mobile and thick client applicationsNetwork penetration testing (internal and...
-
Offensive Security Specialist
2 weeks ago
Sydney, New South Wales, Australia beBeeCybersecurity Full timeJob DescriptionThe Cyber Security division is responsible for protecting the bank and its customers from cyber intrusions, theft, and loss by effective and proactive management of cyber security, privacy and operational risk.As a Senior Purple Teamer, you will join the Purple Team which sits within the Red Team, and report to the Senior Manager of the Purple...
-
Senior Offensive Security Consultant
1 week ago
Sydney, New South Wales, Australia Macquarie Bank Limited Full timeJoin our diverse team as we strengthen Macquarie Group's security capabilities.As a security professional, your key role will be to deliver complex offensive security engagements and contribute to Macquarie's security practices on both tactical and strategic levels.While Macquarie offers hybrid working arrangements, this role requires three days a week in...
-
Offensive Security Expert
5 days ago
Sydney, New South Wales, Australia beBeeCybersecurity Full time $80,000 - $120,000We are seeking a talented professional to join our team as an offensive security expert. The successful candidate will be responsible for delivering high-quality services to clients, including penetration testing, vulnerability assessments, and security consulting. The ideal candidate will have a strong background in cybersecurity, with experience in web and...