Skip to content

Job Specs

Job Name
Senior Penetration Tester
Location
Athens
Business Area
CYBER & STRATEGIC RISK
Seniority
Experienced
Business Function
RISK ADVISORY - DBS

What impact will you make?

Senior Penetration Tester


What Impact will you make?

 

#YourOpportunity

 

Do you thrive at solving complex challenges? Want to work on next-generation, cutting-edge products and services that deliver outstanding value? Work with other experts in your field? Work for a world-class organization that provides exceptional career experience and an inclusive and collaborative culture? Want to make an impact that matters? Consider joining Deloitte.

We are currently seeking for enthusiastic team players with exceptional penetration testing skills and a well-rounded personality to become part of our dynamic Cyber team based in Athens. The team is part of a global network, where brilliant colleagues collaborate across Deloitte locations, to deliver services to our clients both in Greece and abroad.

As a Senior Penetration Tester, you will work in a highly skilled team to perform various Penetration Testing and Red Teaming engagements for our domestic and international clients. Using your offensive skills, you will covertly breach our clients’ networks and provide recommendations to strengthen the client’s security posture. To sharpen your skills, you will be trained with the Offensive Security trainings; you will join the periodic Deloitte Global Ethical Hacking and Red Team knowledge exchange sessions, and perform research on the latest techniques and tools. Moreover, you will serve as a “Subject Matter Expert”, adding interpretive value to findings presented and be responsible for creating and executing custom penetration testing engagements to identify if client systems are vulnerable to security issues.

 

#YourRole


Your role as a Senior Penetration Tester will enable you to work alongside fellow Ethical Hackers, who are incredibly passionate about what they do and are characterised by their commitment to working as a team, and their ever-present customer focus. In this role, you will actively participate in technical planning and the delivery of best-in-class service to our clients. In this role, you will find yourself in a personal learning and development fast track and will be given many opportunities to get exposure and make an impact that matters.


During your tenure as a Senior Penetration Tester, you will be able to:

  • Be part of a truly global community of Deloitte experts in Ethical Hacking and Cyber Security;
  • Work on projects focused on identifying security vulnerabilities on client’s infrastructure, Web and Mobile Apps etc.;
  • Find creative ways to obtain a foothold in a client's network;
  • Apply an adversary mindset to simulate sophisticated actors and achieve project-specific objectives;
  • Stealthily move laterally within client’s IT environments, making sure not to trigger any alarms;
  • Perform research and develop your own tools and sharpen your tradecraft;
  • Share your research within the Deloitte Global Hacking and Red Team community;
  • Turning security weaknesses into tailored and concrete recommendations;
  • Translate technical issues into business risks;
  • Facilitating Purple Team workshops and training defensive teams of clients in to identify tactics, techniques and procedures (TTPs) used by adversaries;
  • Receive training and attain certifications in the use of cutting-edge cybersecurity products but also on various cybersecurity engineering topics.


#WinningRequirements


To qualify for the role, you must have:

  • Bachelor’s Degree in Information Technology, Information Systems Security, Cybersecurity, or related work experience
  • Experience with penetration testing like Web Application, Mobile, Infrastructure and Vulnerability Assessments both on *nix and Windows environments;
  • Expertise using Kali Linux and tools like Burp, Metasploit, Covenant, Cobalt Strike, and Nessus;
  • Experience effectively prioritizing workload to meet deadlines and work objectives;
  • Demonstrated ability to write clearly, succinctly, and in a manner that appeals to a wide audience;
  • Consultant mindset, commitment to teamwork, and ability to build strong client relationships.
  • Strong communication skills (in Greek and in English).
  • Ability to maintain professionalism and always strive for high ethical standards.
  • 3+ years of experience in Penetration Testing and/or Red Teaming;
  • Willingness to research new security testing techniques and tradecraft;
  • Preferred hands on experience with Red Teaming.

 Ideally:

  • Military obligations fulfilled where applicable
  • Preferred professional qualifications: OSCP, OSEP, OSCE, OSWE, CRTO, PACES etc.
  • Web Security Academy (PortSwigger)
  • Hack the Box level: Pro Hacker

#AboutRiskAdvisory


At Deloitte, we work with clients across many industries to flag, analyze, evaluate and manage strategic and operational risks while seeking opportunities to create value by solving the most demanding business challenges in today’s evolving and volatile risk environment. Businesses across the world rely on Deloitte for advice and direction when evaluating these risks. We recognize the importance of mitigating risk – and the opportunities taking the right decisions can create for our clients.


Our distinctive combination of specialist skills, pioneering technology, industry expertise characterized our team who help our client to build effective risk strategies in the following areas:

  • Accounting & Internal Controls: includes services that focus on addressing issues and risks relating to accounting and financial reporting, assurance needs, risk assessment, and efficacy of internal controls system.
  • Cyber & Strategic Risk: helps clients address various aspects of Cyber and other strategic risks to their organizations in order to make risk informed strategic choices, prepare to respond to disruptions, assess and manage enterprise-level risks through their lifecycle, and strategize and respond to the risks associated with the reliability and protection of data, associated processes and technology. We provide advisory and managed services designed to help senior executives spot, assess, manage, and respond to risks and/or catastrophic unforeseen incidents that could undermine their competitive position and jeopardize their critical assets, reputation, and/or financial standing.
  • Regulatory & Legal Support: includes services that help our clients manage regulatory compliance, enforcement actions, financial crime, and other regulatory investigation related matters (but do not include the practice of law). These services are usually in support of the Chief Compliance Officer, Chief Operating Officer, Internal Legal Counsel, External Legal Counsel, and other designated client leaders responsible for regulatory, compliance, and financial crime issues.
     

#ChooseDeloitteif:

  • You want to work with inspiring, ambitious, and supportive people with diverse geographical and academic backgrounds and extensive skills.
  • You get excitement in managing clients shifting priorities and accomplish tasks in a challenging, fast-paced environment.
  • You like to nurture people and share your knowledge with others.

 

#AboutDeloitte


Our services

Deloitte offers Global professional services that include Audit, Risk Advisory, Tax, Consulting and Financial Advisory. Our approach combines insight and innovation from multiple disciplines with global business and industry expertise to help our clients excel anywhere in the world.

We deliver outstanding impact on the reputation and success of our clients, in Greece and globally. In pursuing this we contribute to a sustainable and prosperous society, and are firm believers in the positive impact business can and should have on the world it operates within.


Our Purpose

Our purpose, “To make an impact that matters for our clients, our people and society “- defines who we are and what we stand for. This is not about size, it's about being the first choice. The first choice for the largest and most influential clients, and the first choice for the best talent.


Our values

At Deloitte we foster a collaborative culture where talented individuals can produce their best work. We value innovative thinking, diverse insights and a genuinely distinctive level of customer service. We value difference, with respect at the heart of our inclusive culture, and we support agile working arrangements.


Our talent experience

From day one at our firm, practitioners are part of a community. Our development and career progression framework will help them develop the skills and capabilities to succeed. The wellness of our people and the ability to offer agile working arrangements is at the centre of our unique talent experience. We create a workplace that encourages collaboration, creativity, inclusiveness to ensure our staff are supported, encouraged, and feel a sense of purpose and meaning in what they do each day.

 

Sounds like the sort of role for you? Apply now.

 

This document has been prepared by Deloitte Business Solutions Societe Anonyme of Business Consultants, Deloitte Certified Public Accountants Societe Anonyme and Deloitte Alexander Competence Center Single Member Societe Anonyme of Business Consultants.

Deloitte Business Solutions Societe Anonyme of Business Consultants, a Greek company, registered in Greece with registered number 000665201000 and its registered office at Marousi Attica, 3a Fragkokklisias & Granikou str., 151 25, Deloitte Certified Public Accountants Societe Anonyme, a Greek company, registered in Greece with registered number 0001223601000 and its registered office at Marousi, Attica, 3a Fragkokklisias & Granikou str., 151 25 and Deloitte Alexander Competence Center Single Member Societe Anonyme of Business Consultants, a Greek company, registered in Greece with registered number 144724504000 and its registered office at Thessaloniki, Municipality of Pylaia - Chortiatis of Thessaloniki, Vepe Technopolis Thessaloniki (5th and 3rd street), are one of the Deloitte Central Mediterranean S.r.l. (“DCM”) countries. DCM, a company limited by guarantee registered in Italy with registered number 09599600963 and its registered office at Via Tortona no. 25, 20144, Milan, Italy is one of the Deloitte NSE LLP geographies. Deloitte NSE LLP is a UK limited liability partnership and member firm of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee.

Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited (“DTTL”), its global network of member firms and their related entities (collectively, the “Deloitte organization”). DTTL (also referred to as “Deloitte Global”) and each of its member firms and related entities are legally separate and independent entities, which cannot obligate or bind each other in respect of third parties. DTTL and each DTTL member firm and related entity is liable only for its own acts and omissions, and not those of any of each other. DTTL does not provide services to clients. Please see www.deloitte.com/ about to learn more.

DTTL, Deloitte NSE LLP and Deloitte Central Mediterranean S.r.l. do not provide services to clients. Please see www.deloitte.com/about to learn more about our global network of member firms.

Deloitte is a leading global provider of audit and assurance, consulting, financial advisory, risk advisory, tax and related services. Our global network of member firms and related entities in more than 150 countries and territories serves four out of five Fortune Global 500g; companies. Learn how Deloitte’s approximately 312,000 people make an impact that matters at www.deloitte.com.

This communication contains general information only, and Deloitte Business Solutions Societe Anonyme of Business Consultants, Deloitte Certified Public Accountants Societe Anonyme and Deloitte Alexander Competence Center Single Member Societe Anonyme of Business Consultants, is not, by means of this communication, rendering professional advice or services. Before making any decision or taking any action that may affect your finances or your business, you should consult a qualified professional adviser. No entity in the Deloitte organization shall be responsible for any loss whatsoever sustained by any person who relies on this communication. Deloitte organization refers to Deloitte Touche Tohmatsu Limited (“DTTL”), its global network of member firms and their related entities collectively.

© 2024 For more information contact Deloitte Central Mediterranean.