Cyber SDC - WAM Penetration Tester - Senior - Location OPEN Job at EY in San Jos

Join to apply for the Cyber SDC - WAM Penetration Tester - Senior - Location OPEN role at EY

Location: Anywhere in Country

Overview

At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.

The Opportunity

Our security professionals possess diverse industry knowledge, along with unique technical expertise and specialized skills. The team works together in planning, pursuing, delivering and managing engagements to assess, improve, build, and in some cases operate integrated security operations for our clients. We will support you with career-long training and coaching to develop your skills. As EY is a global leading service provider in this space, you will be working with the best of the best in a collaborative environment.

Your Key Responsibilities

• Identify potential threats and vulnerabilities to operational environments as part of our Penetration Testing team.
• Perform penetration testing including web application, API, and thick client testing; simulate physical breaches to identify vulnerabilities.
• Plan, pursue, deliver and manage engagements to assess, improve, build, and, in some cases, operate integrated security operations for our clients.
• Research and discover the newest security vulnerabilities; participate in security conferences; share knowledge with key industry groups; contribute to thought leadership and information exchanges.
• Provide technical leadership and advise junior team members on attack and penetration test engagements.
• Convey complex technical security concepts to technical and non-technical audiences including executives.

Skills and Attributes to Success

• Ability to work independently as well as lead a team of technical testers on penetration testing and red team engagements
• Identify and exploit security vulnerabilities in a wide array of systems across various situations
• Perform in-depth analysis of penetration testing results and create reports describing findings, exploitation procedures, risks and recommendations
• Execute penetration testing projects using established methodologies, tools, and rules of engagements

To Qualify for the Role, You Must Have

• A bachelor’s degree and at least 5+ years of related work experience
• Experience with manual attack and penetration testing
• Experience with scripting/programming skills (eg, Bash, Python, PowerShell, Java, Perl, Rust, Golang, J2EE, .NET, JavaScript, etc)
• Updated familiarity with the latest exploits and security trends
• Any two of the following certifications: OSCP, OSWP, OSEP, OSCE, OSEE, GPEN, GWAPT, GMOB, GCPN, GXPN, GRTP, GDAT, CRTO, CRTP, CRTE, CREST CRT, CCSAS, CWEE, Burp Suite Certified Practitioner, CBBH, eWPTX, OSWA, eWPT, eMAPT

Ideally, you’ll also have

• A bachelor’s degree in Computer Science, Cybersecurity, Information Systems, Information Technology, Engineering, or related field with at least 3+ years of related work experience, or a master’s degree with at least 2+ years of related work experience in penetration testing including internet, intranet, web application testing, wireless, social engineering, and red team assessments
• Contributions to the security community (research, public CVE disclosures, bug bounty acknowledgments, open-source involvement, publications, etc.)
• Understanding of web-based application vulnerabilities (OWASP Top 10)
• Strong analytical and problem-solving abilities
• Excellent communication skills, both written and verbal
• Ability to work collaboratively in a team environment

What We Look For

We’re interested in intellectually curious people with a genuine passion for cyber security. With your specialization in attack and penetration testing, you’ll contribute innovative ideas and grow into a leading expert here.

What We Offer You

EY offers a flexible environment, future-focused skills development, and world-class experiences within a diverse and inclusive culture of globally connected teams.

• Comprehensive compensation and benefits package with base salary ranges dependent on location; Total Rewards includes medical/dental coverage, pension and 401(k), and paid time off options.
• Hybrid work model: expect to work in-person 40-60% of the time on client engagements.
• Flexible vacation policy and designated EY holidays, with accommodations for personal and family needs.

Are you ready to shape your future with confidence? Apply today. EY accepts applications on an ongoing basis. For California residents, please click here for additional information.

EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. EY | Building a better working world. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for today and tomorrow. EY teams work across assurance, consulting, tax, strategy and transactions in more than 150 countries. EY is an equal opportunity employer and provides reasonable accommodation to qualified individuals with disabilities, including veterans. If you need assistance applying online or an accommodation during any part of the application process, please contact EY’s Talent Shared Services Team.

Seniority level

• Mid-Senior level

Employment type

• Full-time

Job function

• Information Technology

Industries

• Professional Services