TC-CS-CTM-PenTesting-Senior

div style=font-family:Arial; EY, we’re all in to shape your future with confidence. /ppWe’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. /ppJoin EY and help to build a better working world. /p/divdiv style=font-family:Arial; /divpstrongspan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptAttack amp; Penetration Testing - Senior/span/strong/pp /ppspan style=font-family:arial, helvetica, sans-serif; part of our Cyber Security team, you shall perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing. You shall also perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations./span/pp /ppstrongspan style=font-family:arial, helvetica, sans-serif; opportunity/span/strong/pp /ppspan style=font-family:arial, helvetica, sans-serif;’re looking for Security Consultant / Senior Security Consultant with expertise in penetration testing. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering./span/pp /ppstrongspan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptYour key responsibilities/span/strong/pp /pullispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptLead engagements from kickoff with clients through scoping engagements, penetration testing and reporting while adhering to the agreed scope and deadlines./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptPerform penetration testing which includes Network, web application, Mobile app (both Android amp; iOS), APIs Cloud Security, Thick Client application, wireless, social engineering, physical penetration testing./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptExecute penetration testing projects using the established methodology, tools and rules of engagements./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptExecute red team assessments to highlight gaps impacting organizations security postures./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptIdentify and exploit security vulnerabilities in a wide array of systems in a variety of situations./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptPerform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptConvey complex technical security concepts to technical and non-technical audiences including executives./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptPerform technical quality reviews and conduct technical conversations directly with clients./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptKeep uptodate with the latest techniques and concepts./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptConfident with OWASP Top 10 and SANS Top 25 vulnerabilities and ability to effectively communicate methodologies and techniques with development teams/span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptUtilize tools such as BurpSuite, Nessus, Nmap, Kali Linux, and Nessus for effective vulnerability assessment and penetration testing./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptUnderstanding and experience with Active Directory attacks./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptStay up-to-date with the latest security threats, vulnerabilities, and best practices in vulnerability management. Knowledge of AI in Pentest, TCP/IP, OSI Layer, IPv4 amp; IPv6, Network Protocols and Wireless Communication skills preferred./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptWorking knowledge with any scripting languages ( Python, Perl, PHP, Ruby) to develop automated solutions that mitigate risks throughout the organization./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptSupport SDLC and agile environments with application security testing and source code reviews./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptServe as a mentor and guide to junior pen testers, sharing your knowledge, skills, and best practices to nurture their growth and development./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptProvide technical expertise and guidance to clients on remediation strategies and security best practices./span/li/ulp /ppstrongspan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptSkills and attributes for success/span/strong/pp /ppspan style=font-family:arial, helvetica, sans-serif; understanding of OWASP Top 10 vulnerabilities and their mitigation strategies. Good understanding of enterprise security controls in Active Directory / Windows environments/span/pullispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptGood to have knowledge in AI in pentest/span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptUnderstanding of TCP/IP network protocols./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptUnderstanding of network security and popular attacks vectors./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptExperience with Operation Technology / Internet of Things, Cloud technologies (AWS, Azure, GCP), Active Directory and penetration testing/span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptStrong understanding of security principles, policies, and industry best practices/span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptProven ability to lead client engagements, build strong client relationships, and deliver exceptional results./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptExcellent communication and presentation skills, both written and verbal./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptDemonstrated thought leadership in the cybersecurity field through publications, speaking engagements, or contributions to industry forums./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptExceptional problem-solving skills, strategic thinking, and the ability to influence and lead./span/li/ulp /ppstrongspan style=font-family:arial, helvetica, sans-serif; qualify for the role, you must have/span/strong/pp /pullispan style=font-family:arial, helvetica, sans-serif; MCA or equivalent/span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptMinimum of 3 years of work experience in penetration testing which may include at least three of the following: Network, web application Mobile app (Android amp; iOS), Thick client, APIs, wireless, social engineering, physical and Red Team assessments./span/lilispan style=font-family:arial, helvetica, sans-serif; of the following certifications: OSCP, OSCE, OSEP, OSWE, CREST, CRTE, eCPTX, or eWPTX/span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptKnowledge of Windows, Linux, UNIX, any other major operating systems./span/lilispan style=font-family:arial, helvetica, sans-serif; years of work experience in Strategy and Operations projects/span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptTeam management skills are preferred./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptConduct technical discussions and perform technical Quality reviews./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptFamiliarity with OWASP methodologies and application security vulnerabilities./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptExceptional ability to educate and guide application developers in security best practices./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptExcellent communication, presentation, and interpersonal skills./span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptStrong Word, Excel and PowerPoint skills./span/li/ulp /ppstrongspan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptIdeally, you’ll also have/span/strong/pp /pullispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptProject management skills/span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptCertifications: OSCP, OSCE, CRTP, CRTO, CISSP, GPEN, GWAPT./span/li/ulp /ppstrongspan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptWhat we look for/span/strong/pp /ppspan style=font-family:arial, helvetica, sans-serif; can perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing and provide analysis for the testing results./span/ppstrongspan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptWhat working at EY offers/span/strong/pp /ppspan style=font-family:arial, helvetica, sans-serif; EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are./span/ppspan style=font-family:arial, helvetica, sans-serif; get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:/span/pp /pullispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptSupport, coaching and feedback from some of the most engaging colleagues around/span/lilispan style=font-family:arial, helvetica, sans-serif;font-size:10.0ptOpportunities to develop new skills and progress your career/span/lilispan style=font-family:arial, helvetica, sans-serif; freedom and flexibility to handle your role in a way that’s right for you/span/li/uldiv style=font-family:Arial;font-size:1.0empbEY | Building a better working world /b/ppEY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets./ppEnabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow./ppEY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories./p/div