Full Description

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.

The opportunity

As a Senior Consultant in Offensive Security, you will play a pivotal role in enhancing our clients' security posture. You will collaborate with a team of cybersecurity professionals to execute penetration testing, red teaming, simulations of social engineering campaigns, and security assessments for our clients. You will work closely with cross-functional teams to identify vulnerabilities, develop mitigation strategies, and ensure that security practices align with industry standards.

Your key responsibilities

Execute penetration testing projects, having in scope web applications, networks, cloud environments, various hardware and their respective firmware Develop and operationalise scenarios for social engineering campaigns, including setup of supporting infrastructure Prepare detailed reports showcasing project results, such as findings, exploitation procedures, associated risks, and mitigation recommendations Contribute to the creation of supporting materials for client meetings and present technical topics to various client stakeholders from functions such as security, risk, IT or business Stay current with emerging security threats, vulnerabilities, and industry best practices, and promote continual learning within the team Configure and update penetration testing solutions and supporting infrastructure, to ensure optimal performance and security

Skills and attributes for success

Proven experience in penetration testing and offensive security practices, with a minimum of 3 years of related work experience Strong knowledge of automation tools and processes, particularly in the context of offensive security and application security Excellent problem-solving skills and the ability to manage multiple security projects simultaneously Effective communication skills to liaise with clients and internal stakeholders, translating complex technical concepts into understandable terms Proficiency in scripting languages (e.g., Python, Bash, PowerShell) Advanced knowledge of major operating systems Bachelor’s degree, ideally in computer science, information technology, cybersecurity, electrical engineering or a related field Certifications such as OSCP, GPEN, GWAPT, GXPN, CSSLP

What we offer you

At EY, we’ll develop you with future-focused skills and equip you with world-class experiences. We’ll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more.

Get free certifications and enjoy national & international training. Get extra vacation days when public holidays fall on a weekend. Join an EY Community and practice your hobby with your colleagues off-work. Get plenty of discounts, perks and medical coverage. Free access to Udemy, EY Badges Bookster library Medical subscription for employees and family members (wife/husband/children) Life & accident insurance EAP – Employee Assistance Program - Short term confidential counselling services for you and those who live with you.