Technology Consulting- Penetration Tester, ManagerGeneral InformationLocation: DublinAvailable for Work Visa Sponsorship: NOBusiness Area: Cyber SecurityContract Type: Full-Time - PermanentEY's Cyber Security practice is one of the fastest growing areas of the business with an immediate requirement for security consultants with a diverse range of skills and experience. As a leader on our Cyber team you will be providing advisory and technical leadership to help our clients improve their cyber security posture to respond to the dynamic Cyber Security threats. You will provide security domain expertise and utilise your business insight to work closely with our clients to advise, design, build, deploy and test pragmatic security solutions that will give real and tangible benefits and security enhancement.The opportunityYou will be a lead member of a highly skilled and rapidly growing team of Technical Security specialists. Your role will consist of leading and supporting global penetration testing and offensive security teams and carrying out offsite and onsite penetration tests and vulnerability assessments against a wide range of systems and environments, in addition to advancing red teaming and DevSecOps capabilities. As a member of the team, you will have the opportunity to grow your career in leading the delivery of penetration testing and offensive security, with a significant opportunity for leadership experience and career progression.Skills and Knowledge for this role include:Ability to lead and support remote teams in performing complex penetration tests in a variety of environments, managing several teams across different client sitesExperience in delivering penetration test results to technical and non-technical colleagues and clientsA deep understanding of technical security requirements, and conducting research projects to maintain and grow knowledge within technologyAbility to independently perform technical responsibilities and deliver results to a high standardAn in-depth awareness and understanding of advancements in the penetration testing domainAbility to collaborate with colleagues across other relevant teams to enhance service qualityExperience in maintaining compliance with regulations and standards in relation to executing penetration tests, in addition to audit requirements and exacting reporting formatsAbility to take on responsibility for penetration test projects and follow these through to completion including carrying out tests, issuing reports and providing recommendationsExperience in mentoring junior members of teams, you will need to grow on-shore and off-shore capabilities and support overall service improvementHands-on internal and external infrastructure and application penetration testing requiredExposure to a variety of security testing tools and a wide range of exploit techniquesRequirement to stay up-to-date on current security threats, trends and solutionsStrong demonstrated ability to take vulnerabilities and articulate the actual business risk along with excellent reporting writing and client presentation skillsFamiliarity with Open Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP), National Institute of Standards and Technology (NIST) Special Publications, Tigerscheme SST, and CESG CheckA consultative manner and customer facing skills with the ability to communicate with stakeholders at all levels and advise on best practicesAn enquiring mind, the tenacity to overcome technical challenges, and an ability to approach problems from different perspectivesExperience and attributes for successExperience:7-10+ years' experience working in a penetration testing role across various sectorsExperience in 'Big 4' or similar consultancy experience in the Irish marketTrack record in supporting the delivery of a broad range of cyber security projectsGovernment, Utilities, Manufacturing, Financial Services and Pharma experience desirableLeadership experience with a strong focus on mentorshipOnsite and Offsite Penetration TestingOSCP qualification and red team experienceOT pen testing experienceDriven cyber security professional with a passion for information securityStrong analytical skills to solve technical issues and flexibility in handling multiple issues at onceAttributes:Excellent communication and project management skills (verbal and written)Excellent organisational and problem-solving skills in addition to strong attention to detailExperience in drafting proposals, bids and tender responsesExcellent working knowledge of Microsoft PowerPoint, Word, Excel and online research toolsStrong collaboration skills, ideally working with global and multi-functional teamsAbility to prioritise and work to tight deadlines and manage own caseloadThe ability to learn quickly and to work well under pressureThe ability to listen attentively and express complex issues concisely to clientsShow leadership and motivate teams, including project management of consultancy projectsParticipate in implementation or deployment of new tools, processes and best-practices in order to improve knowledge sharing and to raise security level while promoting security awareness among team membersYou will also have focussed on some of these areas in the past:Application, Mobile, IoT, Cloud, Infrastructure and Network SecurityApplication developer background (common frameworks) and understand DevSecOps processes including VA, SAST, DAST, RASP, secure code design reviewUnderstanding of CI/CD, container concepts, agile project management, deployment, automation and orchestrationProgramming/scripting experience (Powershell, ASP, .NET, Python, Perl)OT Security (knowledge of or certification in ISA/IEC 62443 an advantage)Cloud Security (Azure AZ900, AZ500 and AWS Security an advantage)Security Engineering or Architecture (SABSA an advantage)To qualify for the role you must haveMSc degree in information security, computer science, computer engineering, information systems, cloud computing or related field of studyOSCP certifiedIdeally, you'll also haveCISSP or CISM (an advantage)GPEN, GWAPT, GXPN, CEH, EC-Council LPT, CompTIA PenTest+ (desirable)What working at EY offersWe offer a competitive remuneration package. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer:Support and coaching from some of the most engaging colleagues aroundOpportunities to develop new skills and progress your careerThe freedom and flexibility to handle your role in a way that's right for youAll our employees are given a benefits package which they can tailor to suit their individual preferences. Our range of benefits include:PensionMaternity & Paternity leaveDiscounted health insuranceBike to work SchemeWeb Doctor - Free unlimited online GP consultations for you and your familyRecognition AwardsThe purchase of additional annual leaveCash incentives for referralsHybrid WorkingWork MobileFree Gym membershipTECH MBA paid by EYTravel PassWellness rooms Available in some officesCareer ProgressionWhen you join EY, you will be supported to ensure that you are enhancing your skills from day one.Continuous learning, where you can develop the mindset and skills to navigate whatever comes next.As you grow and develop here, you'll discover opportunities to help customise your career journey, so that it's as unique as you are - success is defined by you, we will provide the tools and flexibility, so you can make a meaningful impact, your way.Transformative leadership, we will give you the insights, coaching and confidence to be the leader the world needs.Diverse and inclusive culture, you will be embraced for who you are and empowered to use your voice to help others find theirs.We have embraced Hybrid working at EY adding greater flexibility and autonomy to the roles of our employees.About EYAs a global leader in assurance, tax, transaction and advisory services, we're using the finance products, expertise and systems we've developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime.Inclusion & DiversityWe hold a collective commitment to foster an environment where all differences are valued and respected, practices are equitable and everyone experiences a sense of belonging: Inclusion, diversity, and equity are part of who we are at EY. We believe that the highest-performing teams maximize the power of different perspectives and backgrounds. These teams are both diverse and inclusive and are willing to invite and learn from other perspectives. Our ability to include various viewpoints into our mindsets, behaviours and operations is fundamental to driving innovation, building strong relationships, and delivering the best solutions for our clients.We recognise the strength that comes from having a diverse workforce and building a culture where we support all our people to achieve their potential. You'll be embraced for who you are and empowered to use your voice to help others find theirs.As an equal opportunities' employer, we welcome applications from people of all backgrounds. Reasonable accommodations are offered at every stage of our recruitment process.Join us in building a better working world. That's Why, EY.Apply now.IMPORTANT: Where Agency assistance is required, our Talent Team will engage directly with suppliers. CVs / Profiles should not be shared directly with Hiring Managers. Unsolicited CVs / Profiles supplied to EY by Recruitment Agencies will not be accepted for this role.
#J-18808-Ljbffr