Expired job

Just missed a job?

Sign up and never miss an opportunity again!

Cyber Threat Pentester job

DeloitteDallas, TX
Deloitte jobs

Company

Skills

Company Description

Deloitte is one of the 'Big Four' and the second largest professional services network in the world by revenue and the largest by the number of professionals. Deloitte provides audit, tax, consulting, enterprise risk and financial advisory services with more than 225,400 professionals globally. In FY 2015, the company earned a record $35.2 billion USD in revenues.

Job Description

Position summary

Cyber Threat and Vulnerability Management – Penetration Testing / Red Team Operations As it becomes increasingly difficult to detect infiltrations and unauthorized activity, organizations need to be prepared for the highly sophisticated attacks they may face. Our Adversarial Simulation service professionals leverage deep experience with attack simulation to help clients qualify and quantify the risk and impact of vulnerabilities across the attack surface – including people, processes, and implemented technologies. Our team provides expertise in the areas of red teaming, penetration testing, attack simulation automation, vulnerability assessment, and attack threat profiling. As a leader in Information Security, it is not surprising that our Threat and Vulnerability Management – Adversarial Simulation group is experiencing rapid growth. This is due to the success of and demand for our highly innovative services the in areas of security assessment, social engineering, advanced threat defense, application security and red team assessments, etc. These services are shaping how our clients manage today’s advanced security threats and have the potential to set the standard for the future. We are currently hiring for all levels for people with the below skillset. Work you’ll do The Threat and Vulnerability Management – Adversarial Simulation team will be responsible for working with large organizations’ information, security, technology, and application teams to tailor a program to fit a client needs and culture.
  • Perform Red Team assessments including physical, social engineering, and network exploitation
  • Perform internal and external penetration testing of network infrastructure and applications
  • Perform well controlled vulnerability exploitation/penetration testing on applications, network protocols, and databases
  • Perform network reconnaissance, OSINT, social engineering, and physical security reviews
  • Demonstrate advanced understanding of business processes, internal control risk management, IT controls and related standards
  • Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
  • Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
  • Support and/or lead workstreams on engagements related but not limited to, application security testing and remediation, infrastructure scanning and remediating results, triaging reducing false positives, and coordination of addressing scanning and testing results
  • Demonstrate a general knowledge of market trends, competitor activities, Deloitte & Touche products and service lines
  • Generate innovative ideas and challenge the status quo
  • Build and nurture positive working relationships with clients with the intention to exceed client expectations
  • Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
  • Participate in and actively support mentoring relationships within practice
  • Provide input, guidance and direction on the overall market offering(s) related to Threat Vulnerability Management, and play an active role in building and developing our portfolio
  • The Team Deloitte’s Threat and Vulnerability Management (TVM) – Adversarial Simulation team provides on-site consulting and managed services that help IT security teams better defend and enable today’s dynamic business by redefining what a security assessment is, from a standard vulnerability assessment to a full blown red team assessment. Deloitte empowers customers to more efficiently respond to shifting threats, achieve regulatory compliance, prioritize protection of services that drive revenue and competitive advantage, and measure progress of the overall IT risk management program. Deloitte’s TVM team consists of practitioners from across the country and in locations around the globe, serving clients in a variety of industries. The diversity in background, knowledge, and skills of our team allows Deloitte to deliver results to our clients no matter the challenges that they face.
    Qualifications Required:
  • 3+ years of experience in consulting and/or related subject matter experience.
  • Ability to perform vulnerability assessments and penetration testing using manual testing techniques, scripts, commercial and open source tools
  • Experience in exploiting vulnerabilities
  • Experience in bypassing detection technologies
  • Ability to read, write and modify scripts
  • Experience with network reconnaissance
  • Experience with OWASP
  • Experience with wireless penetration testing
  • Experience with password cracking
  • Ability to read and analyze network packet captures
  • Experience with security forensic analysis
  • Experience with firewall, router, and switch security
  • Knowledge of security best practices: NIST, Mitre ATT&CK, CIS
  • Knowledge of security auditing techniques
  • OSCP certification preferred
  • CISSP, CISM, or CISA certification required
  • Excellent verbal and written communication
  • Excellent presentation skills
  • Willingness to travel 80%
  • Bachelors' Degree Required
  • Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future
  • Preferred technology experience with the following:
  • Network Penetration Testing: Kali Linux, Metasploit, Mimikatz, Powershell Empire, SET, Responder, Impacket
  • Vulnerability Assessment: Nessus, Qualys, Nexpose, VAS
  • Application security penetration testing: W3af, Vega, Wapiti, Burp proxy, Grendal
  • Web application scanner: Appspider, Acunetix, Appscan, Nikto
  • Static applications canner: Fortify, Checkmarx, IBM Appscan source, Appdetective, Onapsis
  • Wireless Penetration Testing: Kismet, Aircrack, netstumbler, hostapd, freeradius,
  • AV evasion: Veil Evasion, Shelter Evasion.
  • Database Testing: Scuba, SQLninja, AppDetectivePro, Havij, Mysqloit, SQLmap, etc
  • Network Assessment: NMAP, Nipper, Wireshark, TCPdump
  • Password Cracking: John the Ripper, Medusa, Cain, rainbow tables, hashcat, Hydra, Cain and Able.
  • Scripting: Bash, Python, Powershell, Gcode, Java, C++, C#, Perl
  • TASKS

    • Develop plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
    • Monitor current reports of computer viruses to determine when to update virus protection systems.
    • Encrypt data transmissions and erect firewalls to conceal confidential information as it is being transmitted and to keep out tainted digital transfers.
    • Perform risk assessments and execute tests of data processing system to ensure functioning of data processing activities and security measures.

    SKILLS

    • Reading ComprehensionUnderstanding written sentences and paragraphs in work related documents.
    • Active ListeningGiving full attention to what other people are saying, taking time to understand the points being made, asking questions as appropriate, and not interrupting at inappropriate times.
    • WritingCommunicating effectively in writing as appropriate for the needs of the audience.
    • SpeakingTalking to others to convey information effectively.

    KNOWLEDGE

    • Administration and ManagementKnowledge of business and management principles involved in strategic planning, resource allocation, human resources modeling, leadership technique, production methods, and coordination of people and resources.
    • ClericalKnowledge of administrative and clerical procedures and systems such as word processing, managing files and records, stenography and transcription, designing forms, and other office procedures and terminology.
    • Economics and AccountingKnowledge of economic and accounting principles and practices, the financial markets, banking and the analysis and reporting of financial data.
    • Sales and MarketingKnowledge of principles and methods for showing, promoting, and selling products or services. This includes marketing strategy and tactics, product demonstration, sales techniques, and sales control systems.

    Deloitte

    Type

    Company - Private

    Size

    10000+

    Revenue

    Over $10B

    Location

    Multiple locations

    Industry

    Engineering/Architecture
    Legal/Lawyer
    Customer Service
    More...

    Founded

    1972

    CEO

    Cathy Engelbert

    Job Filters

    Tax ManagerDeloitte Tax LLPSeattle, Washington
    Tax Manager for Deloitte Tax LLP in Seattle, WA to serve as a global trade automation configuration lead in our Customs and Global Trade practice; help companies understand national and international trade requirements and align the trade function with...Read more
    Advisory ManagerDeloitte & Touche LLPSeattle, Washington
    Advisory Manager for Deloitte & Touche LLP in Seattle, WA to direct engagement planning, organizing, budgeting, audit plan execution, and documentation of audit procedures performed. Conduct financial statement audit, Sarbanes-Oxley (SOX) 404, SOX...Read more
    SAP Enterprise Data Architect - Senior Consultant (Technology) At Deloitte you'll have the opportunity to help clients get the most from their SAP investments-and help position businesses for the evolving digital economy. Ready to reimagine your career...Read more
    Oracle Cloud Infrastructure - Senior Solutions Specialist - USDC Are you an experienced, passionate pioneer in technology - a solutions builder, a roll-up-your-sleeves technologist who wants a daily collaborative environment, think-tank feel and share new...Read more
    SAP BRIM / Hybris Billing - Senior Manager (Customer) At Deloitte you'll have the opportunity to help clients get the most from their SAP investments-and help position businesses for the evolving digital economy. Ready to reimagine your career...Read more

    Closed Job Filters

    SAP Enterprise Cloud Platform API Architect - Senior Consultant At Deloitte you’ll have the opportunity to help clients get the most from their SAP investments—and help position businesses for theRead more
    Agile Coach – Senior ConsultantAs an Agile Coach you’re focused in estimating work effort, planning sprint backlogs, facilitating daily scrums, and conducting sprint demo & retrospective meetingsRead more
    Agile Coach - ManagerAs an Agile Coach you’re focused in estimating work effort, planning sprint backlogs, facilitating daily scrums, and conducting sprint demo & retrospective meetings throughout allRead more
    Cloud Native ArchitectDeloitteMemphis, TN
    Cloud Native Architect Do you want to be at the forefront of Deloitte's emerging cloud practice? We're looking for exceptional problem-solvers to help address our clients' most compelling Cloud needs.Read more
    Agile Coach Senior ConsultantDeloitteHarrisburg, PA
    Agile Coach – Senior ConsultantAs an Agile Coach you’re focused in estimating work effort, planning sprint backlogs, facilitating daily scrums, and conducting sprint demo & retrospective meetingsRead more
    Similar jobs in the area
    Splunk ITSITM FloydDallas, Texas
    Responsibilities: Design and develop Splunk dashboards using JavaScript, CSS, and HTML Perform requirements gathering sessions to develop the scope and design of new and existing dashboards, alerts, reports, etc. Experience in Agile (Scrum/SAFe) as well as...Read more
    Company Description Sonsoft , Inc. is a USA based corporation duly organized under the laws of the Commonwealth of Georgia. Sonsoft Inc. is growing at a steady pace specializing in the fields of Software Development, Software Consultancy and Information...Read more
    Tier 1: Complete Microsoft stack O365, SharePoint, Teams, Skype for Business, etc. Tier 2: Office 2013 or older to O365 Tier 3: Exchange to Exchange Online This Consultant would need to be familiar with Microsoft stack, cloud migrations, and Project...Read more
    Auto req ID: 187498BR Job Description Imagine when YOUR "Creative Solutions" MEETS OUR Thirst for Innovation At PepsiCo, it takes a global team to solve some of the most complex problems. And our InfoSec group is no exception! From Plano to Poland - we...Read more
    flexjobs
    Thumbtack™ has been trusted by movers across the country to help grow their business. Customers come to Thumbtack to get all kinds of local and long distance moving jobs done. That means your jobs can range in size, whether you want to pick up small jobs...Read more
    Auto req ID: 187498BR Job Description Imagine when YOUR “Creative Solutions” MEETS OUR Thirst for Innovation At PepsiCo, it takes a global team to solve some of the most complex problems. And our InfoSec group is no exception! From Plano to Poland - we...Read more
    flexjobs
    Are you looking for a flexible way to earn extra cash daily, make your own schedule, and provide a great experience to customers, all while having fun? You are in luck, Favor’s personal delivery assistants (aka “Runners”) choose their own hours, drive...Read more
    MTS III Consultant Verizon Irving, TX MTS III Consultant needed by Verizon in Irving, TX to be responsible for software research and design for telecommunication business support systems. To apply, mail resume to Vipul Jha, Sr. Manager, Verizon, 700 Hidden...Read more
    CyberArk ExpertPerformanta North America IncIrving, Texas
    Summary Performanta has an opportunity for a Cyber Security Engineer with strong CyberArk skills. Role: The purpose of the Cyber Security Engineer is to deliver successful technological implementations to meet the customer’s key requirements that will...Read more
    IntroductionAs an IBM Application Architect, you directly help clients transform their business and solve complex problems. You will define the scope and vision for projects that deliver customized solutions using your knowledge of IBM platforms. You are a...Read more
    Sr. NetSuite SMETECH-RBMPlano, TX
    About the Role: As the sole NetSuite position in the company, the NetSuite Admin will assist in Initial stages of implementing NS, onboarding new employees, training users and customizing NetSuite to the growth and changes in our business. Should have...Read more
    • Possesses excellent verbal and written communication and interpersonal skills and the ability to interface with all levels of associates. • Competency in developing effective solutions to diverse and complex business problems • Demonstrated continued...Read more
    Show more jobs
    500+ more jobs

    Similar jobs

    Security Assessor (Senior) Security Assessor (Senior) - Skills Required - PCI Compliance, Risk Assessment, NIST, HITRUST If you are a Senior Security Assessor with experience, please read on! Top Reasons to Work with Us Some of the best in the business...Read more
    Introduction As an IBM Application Architect, you directly help clients transform their business and solve complex problems. You will define the scope and vision for projects that deliver customized solutions using your knowledge of IBM platforms. You are...Read more
    Hands on experience with Zuora Experience in having done client facing work on Zuora during sales cycle Experience in responding to RFP, identifying competitive advantages of Zuora in comparison to other platforms, handling proposal presentations, and...Read more
    Documentum ConsultantINFO KEYS INCDALLAS, TX
    Hi Please find following requirement details ECM Documentum Consultant Location: Dallas, TX Duration: Long term Required Skills: Responsible for developing xcp 16.4 applications, enhancement and support them. • develop core java functionality, able to...Read more
    This opportunity is for an Information System Security Officer (ISSO) at Raytheon’s Intelligence, Information and Services (IIS) business. The ISSO is responsible for daily operations and successful execution of the Information Assurance (IA) program and...Read more
    Threat Modeling-LeadWipro Ltd.Plano, TX
    Mandatory Skills:Threat Modeling-L3Desirable Skills:DevOps & DevSecOps - Tekton-L3Job Description:nAs a member of Cignas Information Protection DevOps and Security Automation & Orchestration Services team you will help build and manage custom security...Read more
    Overview Manages IT project management initiatives involving system requirements, timing and execution for end users. Plans and coordinates the IT change management process. Oversees communication through full cycle of assigned projects with all parties...Read more
    Job responsibilities include Do you have: Ability to operate RF scanner system; previous experience preferred Flexibility to be cross trained on equipment and functions At least 1 year of previous forklift experience Strong attention to detail Accuracy in...Read more
    VRX is seeking a Systems Integrator for work in the Dallas area. Requirements: The ideal candidate will have education or training in some capacity in fields such as electrical, electronics, software, signaling, specifically HMI (Human Machine Interface or...Read more
    Experience in SAP Basis System administration and roles & authorizations Diverse Lynx LLC is an Equal Employment Opportunity employer. All qualified applicants will receive due consideration for employment without any discrimination. All applicants will be...Read more