Cyber SDC - WAM Penetration Tester - Senior - Location OPEN

Overview

Cyber SDC - WAM Penetration Tester - Senior - Location OPEN at EY

Location: Anywhere in Country

EY focuses on helping you shape your future with confidence. You will be part of an international team of cybersecurity specialists that support clients in protecting their business and resilience against cyber threats. You will work with EY's Advanced Security Centers to access sophisticated tools to combat cybercrime.

Responsibilities

• Perform penetration testing including web applications, APIs, and thick clients
• Lead or contribute to penetration testing engagements; provide technical leadership and mentor junior testers
• Identify and exploit security vulnerabilities across a wide range of systems
• Analyze penetration testing results and create reports describing findings, exploitation procedures, risks, and recommendations
• Execute projects using established methodologies, tools, and engagements rules
• Communicate complex security concepts to both technical and non-technical audiences, including executives

What You'll Do as Part of the Penetration Testing Team

• Identify potential threats and vulnerabilities in operational environments; simulate breaches to identify weaknesses
• Collaborate with colleagues to plan, pursue, deliver, and manage engagements to improve client security and, in some cases, operate integrated security operations

Qualifications

To Qualify for the Role, You Must Have

• A bachelor's degree and at least 5+ years of related work experience
• Experience with manual attack and penetration testing
• Scripting/programming skills (e.g., Bash, Python, PowerShell, Java, JavaScript, etc.)
• Updated familiarity with the latest exploits and security trends
• Any two of the following certifications: OSCP, OSWP, OSEP, OSCE, OSEE, GPEN, GWAPT, GMOB, GCPN, GXPN, GRTP, GDAT, CRTO, CRTP, CRTE, CREST CRT, CCSAS, CWEE, Burp Suite Certified Practitioner, CBBH, eWPTx, OSWA, eWPT, eMAPT

Ideally, you'll also have

• A bachelor's degree in Computer Science, Cybersecurity, Information Systems, Information Technology, Engineering, or related field with 3+ years of related experience (or a master's with 2+ years) in penetration testing
• Contributions to the security community (research, CVEs, bug bounty, open-source, publications)
• Understanding of web-based vulnerabilities (OWASP Top 10)
• Strong analytical and problem-solving abilities
• Excellent communication skills, both written and verbal
• Ability to work collaboratively in a team

What We Look For

Intellectually curious people with a genuine passion for cybersecurity. If you're confident in your presentation and technical abilities to grow into a leading expert, this is the role for you.

What We Offer You

• Competitive compensation and benefits; salary ranges vary by location. Total Rewards include medical/dental coverage, pension/401(k), and paid time off
• Hybrid work model; expectation to work in person 40-60% of the time on client engagements
• Flexible vacation policy and paid holidays, with accommodations available for personal and family needs

Are you ready to shape your future with confidence? Apply today. EY accepts applications on an ongoing basis. For more information for California residents, click here.

EY is an equal opportunity employer. EY does not discriminate based on race, color, religion, sex, sexual orientation, gender identity/expression, pregnancy, national origin, protected veteran status, disability status, or any other legally protected basis.