EY
Cyber SDC - WAM Penetration Tester - Senior - Location OPEN
EY, Cincinnati, Ohio, United States, 45208
Overview
Cyber SDC - WAM Penetration Tester - Senior - Location OPEN at EY. Location: Anywhere in Country. At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Title: Cybersecurity – Attack and Penetration Tester Practice Description
Cyber threats, social media, massive data storage, privacy requirements and business continuity require strong information security measures. As an information security specialist, you will lead the implementation of security solutions for our clients and support them in protecting the business. You will be part of an international team helping our clients with complex information security needs and contributing to their business resilience. You will work with our Advanced Security Centers to access sophisticated tools to fight cybercrime. The Opportunity
Our security professionals possess diverse industry knowledge, along with unique technical expertise and specialized skills. The team plans, pursues, delivers and manages engagements to assess, improve, build, and in some cases operate integrated security operations for our clients. We provide career-long training and coaching and foster a collaborative environment. EY is a global leading service provider in this space, offering an exceptional experience. Your Key Responsibilities
Identify potential threats and vulnerabilities to operational environments as part of the Penetration Testing team. Perform penetration testing, including web application, API, and thick client testing. Lead a team of technical testers on penetration testing and red team engagements when needed. Provide technical leadership and advise junior team members on attack and penetration test engagements. Identify and exploit security vulnerabilities across a wide range of systems. Analyze penetration testing results in depth and create reports describing findings, exploitation procedures, risks and recommendations. Execute penetration testing projects using established methodologies, tools and rules of engagement. Convey complex technical security concepts to technical and non-technical audiences, including executives. To Qualify for the Role, You Must Have
A bachelor’s degree and at least 5+ years of related work experience. Experience with manual attack and penetration testing. Experience with scripting/programming skills (e.g., Bash, Python, PowerShell, Java, Perl, Rust, Golang, J2EE, .NET, JavaScript). Updated familiarity with the latest exploits and security trends. Any two of the following certifications: OSCP, OSWP, OSEP, OSCE, OSEE, GPEN, GWAPT, GMOB, GCPN, GXPN, GRTP, GDAT, CRTO, CRTP, CRTE, CREST CRT, CCSAS, CWEE, Burp Suite Certified Practitioner, CBBH, eWPTX, OSWA, eWPT, eMAPT. Ideally, You’ll Also Have
A bachelor’s degree in Computer Science, Cybersecurity, Information Systems, Information Technology, Engineering, or a related field with at least 3+ years of related work experience, or a master’s degree with at least 2+ years in penetration testing including internet, intranet, web applications, wireless, social engineering, and red team assessments. Contributions to the security community (research, CVE disclosures, bug bounty acknowledgments, open-source involvement, publications). Understanding of web-based application vulnerabilities (OWASP Top 10). Strong analytical and problem-solving abilities. Excellent written and verbal communication skills. Ability to work collaboratively in a team environment. What We Look For
Intellectually curious individuals with a genuine passion for cybersecurity. With specialization in attack and penetration testing, you should be able to contribute innovative ideas and grow into a leading expert here. What We Offer You
Comprehensive compensation and benefits package with base salary ranges depending on location; total rewards include medical and dental coverage, pension and 401(k), and paid time off. Hybrid model: most client-facing roles require 40-60% in-person work over engagements, projects, or year. Flexible vacation policy and designated EY holidays, with additional time off to support well-being. Are you ready to shape your future with confidence? Apply today. EY accepts applications on an ongoing basis. For California residents, additional information is available. EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis. EY is committed to reasonable accommodations for individuals with disabilities, including veterans. If you need assistance applying online or accommodations during the application process, please contact EY’s Talent Shared Services Team. Seniority level : Mid-Senior level Employment type : Full-time Job function : Information Technology Industries : Professional Services Referrals increase your chances of interviewing at EY. Get notified about new Penetration Tester jobs in Cincinnati, OH.
#J-18808-Ljbffr
Cyber SDC - WAM Penetration Tester - Senior - Location OPEN at EY. Location: Anywhere in Country. At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Title: Cybersecurity – Attack and Penetration Tester Practice Description
Cyber threats, social media, massive data storage, privacy requirements and business continuity require strong information security measures. As an information security specialist, you will lead the implementation of security solutions for our clients and support them in protecting the business. You will be part of an international team helping our clients with complex information security needs and contributing to their business resilience. You will work with our Advanced Security Centers to access sophisticated tools to fight cybercrime. The Opportunity
Our security professionals possess diverse industry knowledge, along with unique technical expertise and specialized skills. The team plans, pursues, delivers and manages engagements to assess, improve, build, and in some cases operate integrated security operations for our clients. We provide career-long training and coaching and foster a collaborative environment. EY is a global leading service provider in this space, offering an exceptional experience. Your Key Responsibilities
Identify potential threats and vulnerabilities to operational environments as part of the Penetration Testing team. Perform penetration testing, including web application, API, and thick client testing. Lead a team of technical testers on penetration testing and red team engagements when needed. Provide technical leadership and advise junior team members on attack and penetration test engagements. Identify and exploit security vulnerabilities across a wide range of systems. Analyze penetration testing results in depth and create reports describing findings, exploitation procedures, risks and recommendations. Execute penetration testing projects using established methodologies, tools and rules of engagement. Convey complex technical security concepts to technical and non-technical audiences, including executives. To Qualify for the Role, You Must Have
A bachelor’s degree and at least 5+ years of related work experience. Experience with manual attack and penetration testing. Experience with scripting/programming skills (e.g., Bash, Python, PowerShell, Java, Perl, Rust, Golang, J2EE, .NET, JavaScript). Updated familiarity with the latest exploits and security trends. Any two of the following certifications: OSCP, OSWP, OSEP, OSCE, OSEE, GPEN, GWAPT, GMOB, GCPN, GXPN, GRTP, GDAT, CRTO, CRTP, CRTE, CREST CRT, CCSAS, CWEE, Burp Suite Certified Practitioner, CBBH, eWPTX, OSWA, eWPT, eMAPT. Ideally, You’ll Also Have
A bachelor’s degree in Computer Science, Cybersecurity, Information Systems, Information Technology, Engineering, or a related field with at least 3+ years of related work experience, or a master’s degree with at least 2+ years in penetration testing including internet, intranet, web applications, wireless, social engineering, and red team assessments. Contributions to the security community (research, CVE disclosures, bug bounty acknowledgments, open-source involvement, publications). Understanding of web-based application vulnerabilities (OWASP Top 10). Strong analytical and problem-solving abilities. Excellent written and verbal communication skills. Ability to work collaboratively in a team environment. What We Look For
Intellectually curious individuals with a genuine passion for cybersecurity. With specialization in attack and penetration testing, you should be able to contribute innovative ideas and grow into a leading expert here. What We Offer You
Comprehensive compensation and benefits package with base salary ranges depending on location; total rewards include medical and dental coverage, pension and 401(k), and paid time off. Hybrid model: most client-facing roles require 40-60% in-person work over engagements, projects, or year. Flexible vacation policy and designated EY holidays, with additional time off to support well-being. Are you ready to shape your future with confidence? Apply today. EY accepts applications on an ongoing basis. For California residents, additional information is available. EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis. EY is committed to reasonable accommodations for individuals with disabilities, including veterans. If you need assistance applying online or accommodations during the application process, please contact EY’s Talent Shared Services Team. Seniority level : Mid-Senior level Employment type : Full-time Job function : Information Technology Industries : Professional Services Referrals increase your chances of interviewing at EY. Get notified about new Penetration Tester jobs in Cincinnati, OH.
#J-18808-Ljbffr