Deloitte Global | Penetration Tester
$ cat job-description.txt
Job Requisition ID: 41403
- Exciting role as part of the Deloitte Global Technology team
- Work within a forward thinking, dynamic and innovative business environment
- Mentoring, coaching and leadership programs to help you make an impact that matters
What will your typical day look like?
This role is responsible for providing penetration testing services through a combination of technology and manual ingenuity as part of the Global cyber services organisation for member firms.
Responsibilities of this role include:
- Assisting in technical scoping of security testing activities
- Executing security testing
- Web Application Penetration Testing
- Web Services / Application Programming Interface (API) Penetration Testing
- Network Penetration Testing
- Mobile Application Penetration Testing
- Thick Client Penetration Testing
- Conducting focused research when not deployed on an active project
- Provide consultative guidance to customers on findings identified in a clear and actionable fashion both in writing and verbally.
- Enhancing and updating testing methodologies, processes and standards documentation
- Maintaining proficiency of knowledge through ongoing training paths
- Proficient at analyzing and understanding complex architecture designs.
- Ability to effectively communicate what services and capabilities our group can facilitate to our clients and responsibilities here.
About the team
Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in \"what is\" but rather \"what can be\" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.
Enough about us, let’s talk about you.
Required:
- Experience using common testing tools like Burp, OWASP ZAP, Metasploit, Postman, Swagger, NMAP, Qualys, SQLMap
- Experienced with Kali Linux or other dedicated Penetration Testing OS PlatformAdvance mobile penetration testing, Application Penetration Testing and architectural security principles
- Familiarity with software security weakness and vulnerabilities
- Working knowledge of one scripting language and familiarity with at least one software programming language and framework
- Demonstrated experience working with diverse stakeholders, preferably on a global multi-national basis
- Ability to manage concurrent initiatives and use effective judgment in prioritization and time management
- Strong written and verbal communication skills
Preferred:
- Certified Ethical Hacker (CEH) Certification
- Offensive Certified Security Professional (OSCP) Certification
- Any GIAC Certification (GSEC, GWAB, GPEN, GMOB, GCPN)
- OWASP Application Security Top 10
- OWASP API Security Top 10
- OWASP Thick Client Top 10
- OWASP LLM Top 10
- MITRE ATT&CK Framework
- Cloud Service testing
- Reverse Engineering
- Static Application Software Testing (SAST)
- Dynamic Application Testing (DAST)
- Experience of Agentic development and its application to support penetration testing
first seen 2026-07-06 00:12:01 · last verified 2026-07-06 00:12:01
pentestcareers.com // breach the job market