Security Tester (Penetration Tester)

Job Requisition ID: 28639

• Work in a highly innovative and transformative business
• Work/life balance with access to flexible work arrangements
• Salary packaging - to suit your personal and financial circumstances

What will your typical day look like?
Do you thrive on developing creative and innovative insights to solve complex challenges? Want to work on next-generation, cutting-edge products and services that deliver outstanding value and that are global in vision and scope? Work with other experts in your field? Work for a world-class organization that provides an exceptional career experience with an inclusive and collaborative culture?

About the team
The Deloitte Global Cybersecurity function is responsible for enhancing data protection, standardizing and securing critical infrastructure, and gaining cyber visibility through security operations centers. The Cybersecurity organization delivers a comprehensive set of security services to Deloitte's global network of firms around the globe.

Enough about us, let's talk about you.
You are someone with:

• Extensive experience in a professional environment preferably as part of an operational security function (application testing, penetration testing)
• Experience in performing network penetration tests
• Familiarity with software security weakness and vulnerabilities
• Must be able to work under pressure and produce content to tight timelines
• Excellent planning skills
• Demonstrated experience working with diverse stakeholders, preferably on a global multi-national basis
• An individual with excellent written and verbal communication skills.
• An individual willing to taking on new challenges, gain new skills and work collaboratively in a dynamic and rapidly growing team.

Preferred:

• Demonstrated experience in penetration testing across several of the following domains: web applications, mobile applications, networks, infrastructure, cloud and container security, thick clients, reverse engineering, applied cryptography, SAP, etc
• Experience in developing hacking tools, security research, advisories and presentations in an advantage
• Ability to communicate strategic information security topics, policies, and standards as well as risk-related concepts to technical and nontechnical audiences
• Sound knowledge of common infrastructure and web application vulnerabilities and common vulnerability categorizations such as OWASP, CVSS
• Secure DevOps experience
• Experience in proactively reducing vulnerabilities before code is deployed, including code review, vulnerability and dependency management
• Industry certifications such as OSCP, CREST (CRT, CCT), or equivalent.
• Training on self-development platforms (i.e. HackTheBox, Pentesterlabs, wechall, etc.)

Why Deloitte?
At Deloitte, we create positively differentiated work experiences that enable our people to feel valued and achieve their full potential. Deloitte Australia opens the door to a career that can cross borders virtually and physically across Asia Pacific to gain experience and access projects beyond Australia's borders. We value difference, and embrace people with diverse backgrounds, experiences, gender identities, abilities and thinking styles. Knowing that people work best in a variety of ways, we are happy to discuss alternative arrangements if the working pattern you are looking for is not specifically indicated.

We're committed to continually building a safe and respectful workplace, where all our people feel appreciated and accepted. Through the creation of endorsed employee-led diversity networks which promote cultural, disability, LGBTI+, Aboriginal and Torres Strait Islander people and gender equality, we're leading the way to shape an environment where everybody can thrive.

We are proud to have been recognised for our efforts in inspiring change and accelerating progress - check out our careers site for recent recognition in this space.

Next Steps
Sound like the sort of role for you? Apply now.

By applying to this job, you will be assessed against the Deloitte Global Talent Standards. We've designed these standards to provide our clients with a consistent and exceptional Deloitte employee experience globally.

At Deloitte, we know we're at our best when we look out for one another; prioritise respect, fairness, development and wellbeing; foster an inclusive culture and embrace diversity in all forms. All qualified applicants will receive consideration for employment regardless of their background, experience, identity, ability or thinking style, and if you need assistance or an accommodation during the application process for accessibility reasons this is available upon request.

The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.