Penetration Tester with Visa Sponsorship

About the Company

Deloitte is a leading global provider of audit and assurance, consulting, financial advisory, risk advisory, tax, and related services. With a globally connected network of member firms in more than 150 countries and territories, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. Our purpose is to make an impact that matters.

Job Description

We are seeking a highly skilled and experienced Penetration Tester to join our dynamic cybersecurity team in Glasgow. This role offers an exciting opportunity to work on cutting-edge projects, identify vulnerabilities in critical systems, and contribute to the robust security posture of our diverse client portfolio. We are committed to fostering a diverse and inclusive environment and are offering visa sponsorship for exceptional international candidates.

Key Responsibilities

• Conduct comprehensive penetration tests on web applications, mobile applications, network infrastructure, cloud environments, and bespoke systems.
• Perform vulnerability assessments and provide detailed reports on identified weaknesses.
• Develop custom scripts and tools to automate testing processes and discover new vulnerabilities.
• Simulate real-world attacks to evaluate the effectiveness of security controls.
• Collaborate with development and IT operations teams to recommend and validate remediation strategies.
• Stay abreast of the latest security threats, vulnerabilities, and industry best practices.
• Document findings, methodologies, and recommendations in clear, concise technical reports.
• Present findings and risk analysis to both technical and non-technical stakeholders.
• Participate in pre-sales activities, offering expert insights into testing approaches.

Required Skills

• Proven experience in conducting penetration tests for various environments (web, mobile, network, cloud).
• Strong understanding of common security vulnerabilities (OWASP Top 10, SANS Top 25) and attack techniques.
• Proficiency with industry-standard penetration testing tools (e.g., Burp Suite, Metasploit, Nmap, Kali Linux).
• Solid scripting skills (e.g., Python, Ruby, PowerShell, Bash).
• Familiarity with various operating systems (Windows, Linux, macOS) and networking protocols.
• Excellent report writing and presentation skills.
• Ability to work independently and as part of a team in a fast-paced environment.
• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience.

Preferred Qualifications

• Relevant certifications such as OSCP, OSCE, eCPPT, GPEN, GWAPT, or GXPN.
• Experience with cloud security testing (AWS, Azure, GCP).
• Knowledge of secure coding principles and practices.
• Experience in red teaming or purple teaming exercises.
• Master's degree in a relevant field.
• Experience working in a professional services or consulting environment.

Perks & Benefits

• Competitive salary and performance-based bonuses.
• Comprehensive health, dental, and vision insurance.
• Generous paid time off and flexible working arrangements.
• Pension scheme with company contributions.
• Extensive professional development and training opportunities, including support for certifications.
• Visa sponsorship and relocation assistance for eligible candidates.
• Access to state-of-the-art security labs and tools.
• Employee assistance programs and wellness initiatives.
• Opportunity to work with a diverse and international team on high-impact projects.

Apply Now